Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/WNW-SS_gk8D5gDP2s6iWm9lE_bg.roa
File: WNW-SS_gk8D5gDP2s6iWm9lE_bg.roa (raw, json)
Hash identifier: ijHwpg8eLalea3SADLOjO8veAZ2unok+V0tNsND/uYA=
Subject key identifier: 58:D5:BE:49:2F:E0:93:C0:F9:80:33:F6:B3:A8:96:9B:D9:44:FD:B8
Certificate issuer: /CN=EB7F4A8B7B210DB9208ED580357045E5971DE0D3
Certificate serial: 03
Authority key identifier: EB:7F:4A:8B:7B:21:0D:B9:20:8E:D5:80:35:70:45:E5:97:1D:E0:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/WNW-SS_gk8D5gDP2s6iWm9lE_bg.roa
Signing time: Tue 05 Jan 2021 03:33:00 +0000
ROA not before: Tue 05 Jan 2021 03:33:00 +0000
ROA not after: Wed 05 Jan 2022 01:37:26 +0000
asID: 131618
IP address blocks: 103.161.6.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB7F4A8B7B210DB9208ED580357045E5971DE0D3
Validity
Not Before: Jan 5 03:33:00 2021 GMT
Not After : Jan 5 01:37:26 2022 GMT
Subject: CN=58D5BE492FE093C0F98033F6B3A8969BD944FDB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b9:a0:4c:ae:ff:82:c9:8e:46:f2:98:bd:a9:
cf:8a:5d:14:7a:52:d5:57:98:da:57:51:c0:9e:32:
68:ab:17:50:e4:c5:db:f2:53:d3:ff:4e:80:06:39:
49:49:50:0b:23:38:3d:84:b1:88:ff:12:6a:e0:96:
d7:71:ce:18:8f:e8:6f:81:83:a5:8f:9f:43:2e:3e:
9d:e6:23:b8:69:c6:52:bc:0d:bf:00:88:d3:92:49:
64:2d:bc:b0:dd:f0:3c:7f:f2:be:6e:1d:2b:e8:4d:
05:82:e2:68:fb:c8:13:dc:2a:98:28:02:b1:80:59:
4d:19:39:23:d3:20:89:f9:25:4d:3c:67:a0:66:9f:
2a:61:db:37:ce:a4:6f:37:b3:1c:52:d4:eb:87:7e:
96:14:e3:a2:08:0f:d2:bc:6c:fd:b7:dc:63:b9:84:
7a:99:b8:ec:b4:da:3e:f1:bd:da:ea:18:ae:36:c8:
3b:bf:8f:c0:b3:8d:66:9e:0b:fc:56:70:c9:c4:1e:
ff:80:f7:67:f3:cd:9c:10:70:39:2a:36:37:bf:18:
84:87:f1:b5:eb:49:69:60:95:92:47:08:2e:a4:f3:
64:be:b6:f1:c3:0e:05:23:1e:ef:4d:de:72:1a:2f:
36:c5:3d:05:f3:c8:ee:1f:b5:b9:92:1a:76:ee:11:
1a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:D5:BE:49:2F:E0:93:C0:F9:80:33:F6:B3:A8:96:9B:D9:44:FD:B8
X509v3 Authority Key Identifier:
keyid:EB:7F:4A:8B:7B:21:0D:B9:20:8E:D5:80:35:70:45:E5:97:1D:E0:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/WNW-SS_gk8D5gDP2s6iWm9lE_bg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.161.6.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:c5:a1:b9:9b:51:6e:cd:54:87:5f:2c:e1:8f:18:3f:99:cc:
55:34:5a:ec:fa:96:c7:0e:9d:97:92:5d:19:73:0a:da:36:ed:
09:4e:8e:aa:a1:58:23:b4:5e:7c:22:eb:57:dc:1a:d3:43:10:
d1:ce:de:77:d3:af:e5:c1:95:5c:e5:aa:22:b3:58:62:67:04:
d9:fd:31:bd:96:2a:7e:59:d6:ff:c6:f6:df:97:9e:30:ff:06:
4f:d1:79:21:9c:0a:b4:51:f9:ff:8e:48:4b:13:35:55:b2:9e:
6d:da:98:eb:1c:68:49:47:e9:ad:f1:2d:c8:b4:ee:0b:4c:2f:
f6:70:5f:1c:f6:60:a1:d3:a7:68:c7:b6:77:8c:55:e4:5d:c4:
32:00:2e:55:61:08:b5:42:8c:12:cc:17:03:47:ea:76:fe:d8:
5b:cc:64:0a:5c:03:e3:70:2e:9a:84:71:a1:80:26:54:57:94:
d0:a4:c6:2a:e1:ce:51:67:e8:b6:6a:e7:93:3c:69:58:68:f2:
b9:c1:1a:0d:5a:d6:cb:f8:6a:e1:a3:13:90:fb:73:db:ad:32:
99:2e:40:fc:27:84:9a:bb:87:0d:38:a7:cc:00:1d:0d:1b:c4:
77:84:b6:5b:03:d7:cc:d3:71:9a:29:41:2d:54:fd:c7:4b:41:
92:2f:59:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org