Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CKMATES/ORr1ai9XeL7w8BGxfGBHoaxUE1c.roa
File: ORr1ai9XeL7w8BGxfGBHoaxUE1c.roa (raw, json)
Hash identifier: xyGJFVZIOzlUE7VngFCpYMPqFPQb0t5BfMEhV1FTE/Y=
Subject key identifier: 39:1A:F5:6A:2F:57:78:BE:F0:F0:11:B1:7C:60:47:A1:AC:54:13:57
Certificate issuer: /CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Certificate serial: 087E
Authority key identifier: 5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/ORr1ai9XeL7w8BGxfGBHoaxUE1c.roa
Signing time: Sun 07 Feb 2021 13:03:56 +0000
ROA not before: Sun 07 Feb 2021 13:03:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 16509
IP address blocks: 103.119.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2174 (0x87e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Validity
Not Before: Feb 7 13:03:56 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=391AF56A2F5778BEF0F011B17C6047A1AC541357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:24:a6:21:ce:2c:87:db:4f:dc:fc:db:a5:65:
a1:72:18:7e:0c:88:a3:c7:7d:99:30:7d:cd:00:03:
d0:ab:84:91:b5:93:a7:62:c2:db:8c:fc:65:e7:1c:
57:ef:7d:b8:11:6d:79:5e:b2:b0:6a:60:15:6f:dc:
6a:1d:39:0b:4f:3e:a7:a8:7e:b5:20:9d:4b:6c:0d:
4e:34:f7:0b:55:5f:df:72:1d:1b:46:09:5c:d6:de:
1f:fa:66:3c:5e:82:e4:df:3c:80:16:c6:77:1c:8d:
1a:8f:52:a1:72:ec:58:9c:f3:fe:a6:d6:e4:f8:c8:
1e:27:77:7b:54:fe:2a:18:db:19:eb:95:8f:24:48:
f3:71:e8:ca:d7:33:7a:49:82:d2:f5:ff:13:8d:16:
32:2f:e6:df:bc:36:77:19:8e:13:d0:ed:86:21:f2:
ba:36:7b:23:cd:c5:7e:1a:c3:0b:3b:e2:cf:71:d5:
91:c8:f4:af:93:78:f4:72:04:96:ec:be:6e:e6:9d:
8b:99:b8:56:a0:1f:5d:14:c1:f5:5e:f1:5a:88:b9:
2c:04:cc:6c:ee:93:0f:91:53:ae:b3:ee:b3:75:fc:
cc:64:30:ee:9a:98:0d:be:59:74:7e:56:20:03:bd:
5a:65:05:d8:28:e0:4f:78:d0:02:03:88:fe:eb:30:
7f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:1A:F5:6A:2F:57:78:BE:F0:F0:11:B1:7C:60:47:A1:AC:54:13:57
X509v3 Authority Key Identifier:
keyid:5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/XNEK1bakd108UE1mEHH4ziQ-KAc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/ORr1ai9XeL7w8BGxfGBHoaxUE1c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.119.213.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:ee:dd:2b:7d:74:2a:86:10:84:9e:ac:44:72:3b:20:f3:46:
cc:ee:85:43:39:66:da:0c:41:2e:92:e0:c5:fa:45:a1:af:2b:
24:2d:50:96:94:11:4a:42:2e:7b:72:49:dd:d0:d7:9a:71:64:
60:b0:34:9e:c4:71:85:4b:c2:82:a7:58:37:bd:b9:4e:c1:38:
4d:84:95:05:5b:08:50:40:d7:20:7d:7c:5f:4d:6a:8b:3a:ad:
4b:96:19:ed:a1:ba:d8:cc:59:71:ec:10:33:b9:68:e9:44:fe:
8f:f6:a7:14:ed:11:6e:6f:4f:77:6c:b7:6c:2a:e3:d7:31:3a:
e3:44:e2:25:23:9b:ad:08:6a:6a:d2:03:08:47:ff:3c:86:cb:
7e:73:10:7b:5d:7a:31:7f:98:71:c5:fe:8a:4f:43:c8:06:72:
66:4e:8a:01:f0:ef:e3:70:b8:3b:d5:25:04:08:27:52:68:e4:
70:8b:96:cc:f7:e4:02:bb:69:a8:c1:57:d4:0c:ab:17:4a:c5:
47:45:51:d6:aa:3b:71:9d:0c:09:f7:bd:32:bc:8c:fb:aa:5a:
cc:bd:cd:2b:29:5a:52:ab:96:03:d2:20:4d:4b:81:f4:cb:cc:
5c:8d:59:10:c8:86:da:f6:e1:6e:84:a0:3a:29:58:7d:2f:f3:
2c:95:b5:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org