Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/IxyB0IBlu8FfBnBNTrrwMye3GJU.roa
File: IxyB0IBlu8FfBnBNTrrwMye3GJU.roa (raw, json)
Hash identifier: 1ZW2xDUxztL2zBBSYCumRDwLhZz2lq2wuFZJ1b0WZ0w=
Subject key identifier: 23:1C:81:D0:80:65:BB:C1:5F:06:70:4D:4E:BA:F0:33:27:B7:18:95
Certificate issuer: /CN=578183A0FE5DA4A0F3C0546FB6EC26CBD1232F99
Certificate serial: 16
Authority key identifier: 57:81:83:A0:FE:5D:A4:A0:F3:C0:54:6F:B6:EC:26:CB:D1:23:2F:99
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/IxyB0IBlu8FfBnBNTrrwMye3GJU.roa
Signing time: Tue 22 Mar 2022 00:10:00 +0000
ROA not before: Tue 22 Mar 2022 00:10:00 +0000
ROA not after: Tue 21 Feb 2023 08:34:33 +0000
asID: 63893
IP address blocks: 103.180.14.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22 (0x16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=578183A0FE5DA4A0F3C0546FB6EC26CBD1232F99
Validity
Not Before: Mar 22 00:10:00 2022 GMT
Not After : Feb 21 08:34:33 2023 GMT
Subject: CN=231C81D08065BBC15F06704D4EBAF03327B71895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:00:31:4a:1a:7a:3f:37:4f:8e:6e:d5:54:9b:
2b:da:7f:3b:df:e4:1a:49:43:fb:6d:a1:7f:1a:d0:
d5:59:17:ec:70:84:27:8d:3d:d9:ff:d3:72:83:42:
1a:62:53:e7:c2:0a:a1:ea:c1:92:78:b6:c9:b5:77:
ef:fe:ed:7e:ad:76:1c:ec:1a:a6:f2:d6:8e:76:fe:
eb:dd:46:75:c7:92:f3:e4:1a:0f:96:39:cc:33:3c:
a8:d6:0e:e4:96:c0:fe:be:7c:c3:79:58:79:0c:70:
68:96:71:db:38:52:1e:86:3b:28:2a:1a:27:4c:86:
55:27:d0:45:f3:59:1f:57:09:9f:76:43:3c:24:4d:
96:32:6a:66:a7:2f:5d:85:e0:50:00:74:89:46:52:
fa:20:9e:79:73:38:90:95:12:a5:6b:68:fa:9f:b0:
26:59:38:57:02:d6:73:66:a6:8d:79:98:74:7a:2f:
02:e9:e7:8f:e6:43:b8:4a:4a:92:9e:57:cf:4b:e0:
56:fa:e1:1f:1e:6b:26:ca:c0:10:a2:b4:a8:b3:77:
b3:40:ce:bf:43:af:b3:20:7a:f7:5d:50:01:70:31:
d3:aa:b3:ea:89:94:d9:16:cb:a3:22:09:c5:7f:a1:
d6:06:0a:c7:07:7e:31:36:ce:5e:95:d2:d1:27:e1:
87:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:1C:81:D0:80:65:BB:C1:5F:06:70:4D:4E:BA:F0:33:27:B7:18:95
X509v3 Authority Key Identifier:
keyid:57:81:83:A0:FE:5D:A4:A0:F3:C0:54:6F:B6:EC:26:CB:D1:23:2F:99
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/IxyB0IBlu8FfBnBNTrrwMye3GJU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.180.14.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:76:98:10:51:01:b9:e1:ae:4c:74:7f:b9:5e:63:e3:40:30:
22:e7:ed:27:14:5e:3f:a4:2e:e7:81:f3:11:77:88:d5:3c:e1:
fd:25:8f:7b:75:92:ee:6e:e2:de:c5:ce:4d:73:12:83:e6:6f:
6d:76:ad:e2:c6:66:c0:70:06:26:d9:0d:ad:e5:2a:fe:e6:6d:
36:f1:8d:10:d3:0c:2f:7e:e5:d4:13:3d:d7:d1:04:3e:9f:b7:
cd:d4:36:69:88:e9:b2:2d:35:db:2b:d6:87:83:2a:91:da:b9:
2e:31:f0:a6:72:36:ca:fa:dc:fd:31:d0:85:8a:07:b2:4d:c2:
aa:83:ab:af:1d:2b:ce:72:3e:c6:da:48:cd:d6:01:47:8e:81:
c5:37:5d:a0:2b:40:c1:cc:22:b9:36:14:8c:d0:f5:2c:4f:24:
ba:7f:fc:3c:80:2b:87:28:11:be:40:2d:56:17:b7:04:bb:d5:
6e:cd:a8:47:69:2a:b6:74:5d:61:fb:3d:75:a3:c9:e3:7f:b9:
6b:e9:d0:ef:71:10:90:df:4e:d6:db:c9:8c:3a:4b:55:9f:aa:
80:c5:37:cf:3d:7d:d2:43:9e:ef:f9:d9:48:2a:79:f5:e3:a3:
17:ee:86:14:95:44:e8:b6:a9:cc:fc:a0:13:01:00:83:ba:89:
a5:1f:5f:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org