Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CKMATES/9O6SZ3AV5XB0QodXdLbC1Cy0jG0.roa
File: 9O6SZ3AV5XB0QodXdLbC1Cy0jG0.roa (raw, json)
Hash identifier: l0Invmo06UCmROjA58Jr8sGe482cqp+f/eMGs9quPag=
Subject key identifier: F4:EE:92:67:70:15:E5:70:74:42:87:57:74:B6:C2:D4:2C:B4:8C:6D
Certificate issuer: /CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Certificate serial: 0880
Authority key identifier: 5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/9O6SZ3AV5XB0QodXdLbC1Cy0jG0.roa
Signing time: Sun 07 Feb 2021 13:03:57 +0000
ROA not before: Sun 07 Feb 2021 13:03:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 14618
IP address blocks: 103.119.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2176 (0x880)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Validity
Not Before: Feb 7 13:03:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F4EE92677015E5707442875774B6C2D42CB48C6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:14:41:96:7b:c9:44:28:db:a8:b2:6b:2a:00:
e7:84:89:bb:42:89:eb:af:cd:51:2c:cd:ed:b7:c6:
1f:4e:51:bb:b4:4b:f2:fd:c6:c7:c3:af:9c:a5:c8:
9e:8a:05:39:61:e9:1b:27:99:60:f3:34:f4:19:a4:
65:28:c1:04:ca:0b:a2:ae:8b:8c:74:8b:9f:db:4d:
8e:92:87:c9:56:9d:0b:90:82:fc:da:f6:a9:48:e9:
90:e3:8f:0a:0c:37:be:11:bb:5a:9c:5a:29:3e:05:
c7:1e:c1:96:9d:9c:97:02:df:e4:41:31:fb:a7:e3:
a0:85:33:32:dc:c3:2e:7c:d5:12:02:6b:00:53:5a:
80:f4:ea:93:6c:d2:3a:6f:f7:a3:b7:60:8b:57:48:
0e:99:c4:90:a3:f3:1e:fb:fd:7f:de:ff:e0:b2:bb:
35:55:78:20:7f:a3:cb:1c:bd:95:67:03:1d:f3:ee:
96:01:03:9d:7c:6d:ae:8c:df:6e:7b:fc:6b:6a:9b:
4f:96:11:e9:5e:60:6a:b2:45:f8:8a:57:62:3f:62:
59:c7:2b:25:37:ea:ca:83:e3:3e:fa:a1:08:34:b8:
8f:54:29:05:6d:26:4a:fc:61:f8:8c:ee:64:e5:9a:
b1:81:51:ea:47:f6:86:da:b4:08:9e:40:0c:0f:73:
69:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:EE:92:67:70:15:E5:70:74:42:87:57:74:B6:C2:D4:2C:B4:8C:6D
X509v3 Authority Key Identifier:
keyid:5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/XNEK1bakd108UE1mEHH4ziQ-KAc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/9O6SZ3AV5XB0QodXdLbC1Cy0jG0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.119.213.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:c1:d5:f3:d9:24:a3:5e:ae:28:f8:1f:ce:5d:12:29:2f:ba:
f0:04:37:66:4c:16:d6:7b:ed:c5:82:fe:01:8f:51:e5:c7:b5:
c8:af:2c:37:a2:e5:1e:da:d6:f9:0d:eb:8b:1c:7e:ba:ca:92:
28:26:e9:0d:ce:90:f3:38:70:8d:f0:0f:a9:73:9b:e0:94:b5:
b1:18:f3:48:da:5a:d0:32:a5:b8:e0:e2:4b:ec:97:30:1f:97:
ef:e1:4e:a6:d5:9c:5f:08:e9:e0:fe:21:53:22:da:b0:9b:00:
ef:c8:79:37:d1:89:24:b2:7b:b2:51:a2:32:2f:fe:37:30:8d:
9c:50:b4:75:4a:9e:04:76:69:33:7a:08:d8:0e:58:50:b4:c1:
45:a9:de:7c:67:71:d3:27:30:e0:69:99:72:33:f7:51:25:b0:
1d:8a:01:71:bb:b1:37:5d:93:d6:f4:5f:86:56:fd:03:58:59:
5e:bf:a7:5c:9f:8b:d0:92:48:2e:bd:e1:78:1a:91:70:af:aa:
d3:c3:61:d4:4c:95:9c:4a:e6:68:07:1c:87:20:b3:a5:f2:f5:
fe:da:b2:69:d0:96:be:e2:6a:e6:61:0c:c0:e7:c2:0d:1d:a5:
7b:91:4c:35:2a:45:55:df:2b:5b:5b:da:26:ef:be:73:f2:ba:
b3:6f:1f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org