Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CENTROID/VD9QCvS3Tavs7e7Q98Gq444aqyY.roa
File: VD9QCvS3Tavs7e7Q98Gq444aqyY.roa (raw, json)
Hash identifier: 6SudrQplxTulbhmp8RW7Sp/HdGhVBV+UPq5QBA+IsP0=
Subject key identifier: 54:3F:50:0A:F4:B7:4D:AB:EC:ED:EE:D0:F7:C1:AA:E3:8E:1A:AB:26
Certificate issuer: /CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8
Certificate serial: 0870
Authority key identifier: 79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/VD9QCvS3Tavs7e7Q98Gq444aqyY.roa
Signing time: Sun 07 Feb 2021 13:00:05 +0000
ROA not before: Sun 07 Feb 2021 13:00:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 135293
IP address blocks: 103.104.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2160 (0x870)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8
Validity
Not Before: Feb 7 13:00:05 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=543F500AF4B74DABECEDEED0F7C1AAE38E1AAB26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:12:73:28:e4:8e:77:9d:bc:a4:0f:17:12:eb:
b6:d5:ea:24:5a:81:a1:5a:12:8b:80:14:38:69:69:
18:10:c0:81:dc:5b:b9:00:54:62:ff:f2:05:d4:7a:
9d:46:f8:b5:f1:5a:2d:45:f7:34:f3:84:a6:76:8e:
49:58:04:0b:ba:53:07:4b:ba:7d:02:cf:96:fa:36:
e8:ea:16:45:5f:83:8e:6d:08:92:63:ac:a5:cf:b9:
62:17:9b:d2:67:3b:3e:03:9d:4b:61:7a:12:69:7c:
41:18:d1:d5:f5:52:78:82:bd:f2:3d:05:af:af:47:
f3:68:84:2c:08:cf:a8:bd:ed:33:48:74:07:06:cf:
a2:a9:a7:6d:be:d8:df:29:60:ca:3e:e2:68:45:de:
91:62:97:2a:79:d6:f0:d9:07:74:16:df:51:81:75:
00:e9:dc:b1:c6:90:2d:be:d1:b6:5b:e5:11:cf:22:
7b:c0:f6:6c:61:f6:a4:78:99:f8:f3:03:6b:d1:b6:
a8:41:c9:94:7e:82:5d:b0:84:ee:be:84:94:44:5b:
23:2b:ce:48:f4:63:54:b6:d8:02:ac:9e:ac:86:ea:
bf:3f:d7:fa:c8:27:f5:81:75:24:07:61:ad:e2:b9:
3b:bb:41:df:5e:5f:88:c0:5d:a3:05:d2:c0:fa:e4:
b1:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:3F:50:0A:F4:B7:4D:AB:EC:ED:EE:D0:F7:C1:AA:E3:8E:1A:AB:26
X509v3 Authority Key Identifier:
keyid:79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/VD9QCvS3Tavs7e7Q98Gq444aqyY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.104.150.0/24
Signature Algorithm: sha256WithRSAEncryption
69:6a:59:cf:83:49:1b:e6:d9:c5:de:16:ee:71:2f:66:22:a4:
b4:fb:97:0d:7b:f8:23:32:75:9c:b7:00:cd:57:18:9e:1c:de:
a5:a6:06:db:a7:24:0e:24:2c:d1:ae:8b:90:76:57:fe:f6:09:
4d:2c:74:7f:98:5d:92:26:b7:46:26:28:8c:c9:9d:69:6a:9a:
85:d6:93:3a:c3:19:69:a5:c3:63:d6:c0:99:02:c6:33:d7:e0:
ba:1b:90:28:f0:0a:a5:b1:dd:e4:af:c6:6a:21:13:8c:27:c7:
c7:99:ed:dc:d4:d7:7a:2e:6c:9a:68:37:56:66:b8:b2:b0:a4:
99:15:33:b5:76:bf:a7:8e:a5:28:1d:49:af:9f:4c:e9:b9:86:
ed:85:9b:f1:62:12:d0:e3:68:d2:b0:94:29:c4:86:c5:02:bc:
a1:a0:96:90:3e:2a:8a:2c:67:fa:5e:84:07:05:05:3f:62:7e:
1d:6c:d2:96:04:b5:5e:84:71:54:c1:9d:50:16:9d:4f:74:59:
27:7e:e5:6e:57:dc:cb:e9:0d:0c:b1:d7:5d:e4:24:92:e6:51:
40:76:fc:05:3a:0b:27:28:9c:91:4b:b2:de:64:d7:4e:f2:ce:
b4:21:53:ca:a3:13:13:b4:46:09:46:66:a8:9d:a3:42:ff:12:
48:3c:46:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org