Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CENTROID/DqmO2QZvTuItynhxJfMkUKcaAiU.roa
File: DqmO2QZvTuItynhxJfMkUKcaAiU.roa (raw, json)
Hash identifier: CLlvDrU13vS4k4aVuRIlNI1mSZL+wR3Y3zhkChS9Blc=
Subject key identifier: 0E:A9:8E:D9:06:6F:4E:E2:2D:CA:78:71:25:F3:24:50:A7:1A:02:25
Certificate issuer: /CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8
Certificate serial: 0916
Authority key identifier: 79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/DqmO2QZvTuItynhxJfMkUKcaAiU.roa
Signing time: Wed 29 Sep 2021 02:51:58 +0000
ROA not before: Wed 29 Sep 2021 02:51:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 41095
IP address blocks: 103.104.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2326 (0x916)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8
Validity
Not Before: Sep 29 02:51:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0EA98ED9066F4EE22DCA787125F32450A71A0225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:be:a5:f5:ef:98:35:43:d6:f7:56:77:a4:2f:
96:73:10:e0:2d:6d:8b:ea:82:8c:35:49:95:57:be:
31:1a:cc:f6:10:86:0a:d8:15:1b:8f:ea:33:d6:3d:
c6:87:fd:20:c0:89:30:9f:f9:e3:da:6a:65:90:a9:
02:cc:39:15:6b:68:00:42:a6:35:fe:84:d2:b3:8e:
37:ab:2a:ca:92:60:06:3e:69:32:bc:57:5a:f2:6b:
4b:86:5d:c2:37:17:2d:4c:e4:93:b2:f9:72:88:0e:
f4:16:41:fc:a8:10:aa:59:4e:0b:af:61:af:4b:eb:
6f:3b:4d:3f:38:21:08:ef:a6:f0:b8:62:46:a3:41:
ef:34:51:7e:ef:9a:89:e3:d3:7c:3b:ec:d3:46:b8:
e9:2f:d4:6b:38:90:17:ba:fb:d1:62:ef:30:c7:0c:
67:5f:67:e2:27:e5:fb:e8:ab:3d:cb:2f:03:00:19:
e4:74:00:26:95:65:2d:22:23:26:2e:70:8e:a3:c6:
15:f5:1c:fc:08:3f:0c:29:16:52:cd:8a:53:78:0a:
b6:d0:61:92:a7:be:12:de:42:2a:c1:14:cd:49:3a:
9c:07:a2:ab:cb:1a:31:ae:95:51:22:0a:86:be:4a:
40:22:f0:16:f2:b0:03:b5:9b:5d:a6:db:a0:0d:71:
4f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:A9:8E:D9:06:6F:4E:E2:2D:CA:78:71:25:F3:24:50:A7:1A:02:25
X509v3 Authority Key Identifier:
keyid:79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/DqmO2QZvTuItynhxJfMkUKcaAiU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.104.149.0/24
Signature Algorithm: sha256WithRSAEncryption
30:c4:85:d5:c0:05:3d:4e:da:e4:4f:61:04:f4:10:8d:9e:22:
f2:72:1c:14:51:0c:8f:19:19:f6:6e:6a:67:42:22:e1:26:c9:
e0:c7:87:64:55:2d:54:89:0c:f0:88:63:94:34:f0:3b:76:4f:
ad:22:bb:12:fe:0b:b6:be:64:2e:d2:12:b4:df:3b:69:2b:12:
50:77:97:16:38:cc:1e:31:3d:a1:53:3e:8b:6e:96:c9:8b:e2:
71:61:ac:fe:ca:91:cc:7e:5e:e0:fb:59:1e:2b:60:34:81:33:
b3:cf:e7:f6:1d:3a:04:d3:f8:74:eb:94:70:62:55:aa:c5:b1:
a6:ee:ed:5b:66:da:5e:23:65:44:83:26:ec:c2:57:15:33:e3:
46:d8:86:78:42:ce:63:2d:fa:5c:38:5d:fc:50:98:2c:d9:55:
b5:74:3a:a8:1f:f1:8f:e2:51:59:27:77:2a:5d:e4:0b:d0:94:
db:ff:f5:e5:bc:cf:23:5e:93:f8:34:63:f8:74:b2:66:f1:c7:
93:71:37:cd:0e:1d:b6:87:2c:e1:07:64:b8:f5:80:33:30:53:
c0:34:36:f9:51:99:44:9c:b3:98:9a:76:c3:e5:11:52:2c:63:
73:ba:3a:ae:c5:d4:78:94:36:27:43:66:09:31:3e:e0:a5:23:
11:6d:ac:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org