Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/Ws2egKl7tl7qnrZ3-T7X-Ko6C1k.roa
File: Ws2egKl7tl7qnrZ3-T7X-Ko6C1k.roa (raw, json)
Hash identifier: 7l4FA6IfGkwKd7viHwLO1vHpvsZLxR2Y+738qdmSnLc=
Subject key identifier: 5A:CD:9E:80:A9:7B:B6:5E:EA:9E:B6:77:F9:3E:D7:F8:AA:3A:0B:59
Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C
Certificate serial: 097F
Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/Ws2egKl7tl7qnrZ3-T7X-Ko6C1k.roa
Signing time: Wed 29 Sep 2021 02:52:23 +0000
ROA not before: Wed 29 Sep 2021 02:52:23 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18046
IP address blocks: 103.234.224.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2431 (0x97f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C
Validity
Not Before: Sep 29 02:52:23 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5ACD9E80A97BB65EEA9EB677F93ED7F8AA3A0B59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2d:49:86:9d:8f:71:01:e0:30:e5:8b:84:40:
08:c7:61:b6:21:e3:55:58:de:d3:ce:1f:cb:04:63:
a5:10:1d:01:43:36:33:8a:c9:bb:53:6a:43:f5:3f:
83:5a:56:2a:05:91:d2:ce:03:ad:75:a2:59:9b:ba:
12:f7:ab:6a:6a:83:63:12:6a:88:76:0d:75:63:3b:
6d:72:23:cc:19:42:2f:f6:e6:36:10:af:d5:5b:3f:
ed:40:56:4f:86:a1:17:0c:2c:0e:df:a0:f3:c0:ee:
66:71:97:3d:32:ee:11:58:a8:a4:0f:dd:7e:97:f7:
c3:72:30:2e:ee:92:64:f8:75:68:83:3d:2b:63:e8:
71:42:72:59:30:45:53:4c:ba:aa:8a:2c:08:29:cb:
d5:5a:fe:64:8b:0d:8c:0e:30:82:60:75:d5:af:17:
95:1e:bf:72:7a:6f:df:1f:87:bc:6f:8e:df:52:90:
bd:7e:d8:5e:34:1f:51:94:bb:46:e4:72:16:c4:f2:
1f:c6:21:7c:c1:87:f7:0d:63:d2:4c:69:5e:c2:bd:
f8:20:90:8c:98:7a:44:c5:ab:8f:35:67:97:5a:d2:
a5:d4:bf:90:04:3d:f5:fa:e7:7d:99:0d:3e:f4:c9:
b3:2e:bb:e7:39:8a:fd:21:c4:f3:48:52:e4:ac:19:
08:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:CD:9E:80:A9:7B:B6:5E:EA:9E:B6:77:F9:3E:D7:F8:AA:3A:0B:59
X509v3 Authority Key Identifier:
keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/Ws2egKl7tl7qnrZ3-T7X-Ko6C1k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.224.0/22
Signature Algorithm: sha256WithRSAEncryption
85:f4:3a:e7:32:94:46:96:e5:db:0c:48:68:12:74:93:67:69:
ab:a5:f8:26:20:94:01:6c:ec:3c:6d:ff:a5:56:76:55:ed:a1:
39:12:d7:8e:ca:e0:79:d3:05:e2:7c:ac:61:b3:85:4f:7c:98:
b9:af:72:1c:a4:c0:4b:86:f2:dd:9b:f4:ad:14:76:bd:ca:3c:
d5:82:7d:7b:23:a8:be:98:bd:3b:00:d6:4c:05:07:f9:4f:22:
5e:21:a5:ca:39:b7:92:2d:ef:cd:dd:f6:f3:3d:f7:5c:b3:c8:
2a:b5:f0:26:78:f5:40:c7:8a:89:04:21:d4:02:7c:0c:b4:96:
1e:ee:ff:38:aa:07:2a:4e:e8:f1:a0:41:b8:ac:7f:8a:41:a8:
89:45:c0:0b:44:ec:e9:bb:d3:d8:57:ed:c8:33:63:5d:76:2a:
e1:1b:68:ee:55:4b:6c:f4:ae:4e:89:14:07:27:0b:32:05:96:
c0:8a:e9:5f:91:df:f9:dd:8f:38:a0:05:e7:9c:db:ea:c1:e6:
45:a4:30:b3:77:02:c2:e0:3b:a7:f6:9d:09:4c:84:54:54:cb:
f5:d6:44:47:3c:19:96:d5:d5:1d:8d:7c:b8:f6:9d:79:7a:58:
c3:75:b2:bf:b1:c3:cd:56:34:e3:9d:ef:f6:bf:32:f9:7c:5e:
5e:57:35:e2
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org