Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/BjvceDILu4510DdPSAXWTa8lm9k.roa
File: BjvceDILu4510DdPSAXWTa8lm9k.roa (raw, json)
Hash identifier: MRoRHVz5TtslGK2nJv/RFjQnqih3rCcJzeU+LhUTatM=
Subject key identifier: 06:3B:DC:78:32:0B:BB:8E:75:D0:37:4F:48:05:D6:4D:AF:25:9B:D9
Certificate issuer: /CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C
Certificate serial: 087C
Authority key identifier: 8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/BjvceDILu4510DdPSAXWTa8lm9k.roa
Signing time: Sun 07 Feb 2021 13:00:00 +0000
ROA not before: Sun 07 Feb 2021 13:00:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131618
IP address blocks: 103.103.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2172 (0x87c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C
Validity
Not Before: Feb 7 13:00:00 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=063BDC78320BBB8E75D0374F4805D64DAF259BD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b7:e3:36:02:61:b6:d8:fc:da:d2:86:23:0c:
58:7b:bf:14:0e:f6:f7:85:50:50:e2:15:ab:98:31:
93:77:c5:4c:14:5d:02:de:32:bd:38:23:f9:89:a5:
02:45:ff:c9:77:96:a4:f7:50:c6:24:d9:f4:56:0d:
e0:54:c0:4f:14:7f:40:b2:9d:99:ff:63:d1:e4:f1:
46:1f:e8:a2:40:e7:9d:aa:6a:5e:13:ae:7d:4c:7d:
bd:d0:e4:26:ab:41:87:93:ab:c8:46:9b:93:f8:f0:
d9:53:72:4d:e2:57:05:0e:f9:3a:4e:ae:ed:89:d0:
8d:b2:21:a5:dd:a4:59:d5:d6:db:30:ed:5f:74:49:
4d:1f:a4:cc:02:77:68:4d:cb:bc:03:3c:4d:7a:6f:
2a:65:12:b7:3c:f8:7f:10:21:bf:0c:c8:41:3f:bd:
19:02:06:85:e3:34:7d:07:37:a2:31:01:db:d2:55:
48:59:a8:4a:d7:23:8f:33:5b:09:5d:a0:f1:70:09:
a9:4c:a5:d8:0e:65:3e:d6:39:f4:06:dd:32:ee:0b:
9b:d3:80:81:ff:9e:3a:6b:d6:2a:a0:97:6c:b3:36:
d3:a3:6e:f0:6b:e6:8f:29:8d:57:de:7b:7c:a7:9a:
11:f1:1a:4c:6e:98:5e:23:dd:8e:f3:4c:5a:93:fc:
de:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:3B:DC:78:32:0B:BB:8E:75:D0:37:4F:48:05:D6:4D:AF:25:9B:D9
X509v3 Authority Key Identifier:
keyid:8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/BjvceDILu4510DdPSAXWTa8lm9k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.103.80.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:05:07:be:5e:6b:72:fd:ea:78:bf:52:0d:cb:47:ac:87:ee:
da:02:1a:b6:88:d7:3a:da:b7:7b:e0:86:00:62:8d:96:f3:62:
86:c6:2d:be:18:3b:d7:36:3a:c4:3f:39:d7:8e:b2:80:60:b7:
4f:1b:62:21:93:be:23:f6:95:e5:9e:1b:c9:64:94:a3:20:e6:
a6:e0:55:52:e6:fa:73:be:e2:f5:25:44:61:aa:b6:b9:c3:88:
0d:af:94:34:b8:f4:cb:ed:6e:2c:07:16:9e:cb:c0:2c:21:2e:
49:03:16:31:63:63:3b:ab:2b:bf:9a:92:78:1d:f5:dd:ae:c8:
04:53:12:7d:9d:31:da:64:3b:fd:6b:62:e8:b7:0a:0f:d1:f7:
da:fd:04:38:d7:09:e6:1d:cd:06:6d:3b:3d:22:78:e1:27:6f:
6f:0e:28:6f:0a:b2:38:39:43:49:0a:7a:f7:a5:1c:bf:dd:38:
21:bc:79:1b:b0:8c:a7:52:51:04:28:73:c9:51:9d:d3:9a:ba:
7e:a3:ec:a0:49:ef:73:b1:c3:bb:4c:2e:c4:ea:a9:68:af:68:
59:3b:93:ff:b6:77:ff:1c:a0:15:e0:2b:f4:a9:27:2f:8d:f9:
28:16:5c:57:fc:1d:c6:d9:69:01:36:04:2e:ab:51:9d:60:71:
b3:c8:fb:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org