Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CKMATES/sDBlp25bW-SFO8PxTHPmrmijU5Q.roa
File: sDBlp25bW-SFO8PxTHPmrmijU5Q.roa (raw, json)
Hash identifier: Y9GlE9yjBU4dmLZABTpuRj6P4PBwNPO0QS9CDElRC3c=
Subject key identifier: B0:30:65:A7:6E:5B:5B:E4:85:3B:C3:F1:4C:73:E6:AE:68:A3:53:94
Certificate issuer: /CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Certificate serial: 0A0B
Authority key identifier: 5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/sDBlp25bW-SFO8PxTHPmrmijU5Q.roa
Signing time: Thu 15 Sep 2022 02:50:00 +0000
ROA not before: Thu 15 Sep 2022 02:50:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 133747
IP address blocks: 103.119.212.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2571 (0xa0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Validity
Not Before: Sep 15 02:50:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B03065A76E5B5BE4853BC3F14C73E6AE68A35394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ae:0f:c8:fa:ee:67:a4:7a:0a:22:5b:69:a0:
3c:44:6f:18:41:9f:06:54:5b:6b:f6:06:e6:4c:b0:
00:78:a0:3d:c1:84:ec:c9:b5:9f:12:ae:e1:79:31:
81:8f:53:81:cc:9e:07:e3:f3:81:73:c8:f6:33:3f:
03:ef:fd:52:2f:1a:2a:ee:f7:fb:33:ad:c6:23:43:
4b:65:39:7e:0b:08:73:7e:72:d6:53:71:14:33:d3:
1f:f0:f5:e4:05:fa:6d:55:4f:49:d0:c1:2c:89:f4:
e5:14:e5:d8:d4:2e:d7:e3:ee:8c:c9:95:70:e3:13:
24:70:1e:3f:30:4d:b4:c6:6d:f7:53:c4:be:68:4b:
c7:e7:29:7f:4b:bb:3c:6e:14:ab:f0:14:87:de:5d:
ba:a7:23:eb:5e:1b:77:0f:3c:14:b9:62:80:dc:be:
f0:6b:f6:ab:f8:23:23:c4:fc:7f:a7:f6:2e:44:93:
2a:e2:3a:c2:a7:8d:80:01:06:8a:18:bc:c2:d5:af:
cf:7d:4f:3a:10:40:46:6a:db:99:48:70:43:3f:72:
5a:c0:10:42:1b:60:88:f6:86:34:0c:16:bc:77:97:
44:ab:ee:37:fa:4a:76:1d:8d:98:6e:7d:d9:a3:9d:
3f:f7:b8:41:e9:74:46:0b:6c:7a:dc:3b:2e:b8:b8:
00:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:30:65:A7:6E:5B:5B:E4:85:3B:C3:F1:4C:73:E6:AE:68:A3:53:94
X509v3 Authority Key Identifier:
keyid:5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/XNEK1bakd108UE1mEHH4ziQ-KAc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/sDBlp25bW-SFO8PxTHPmrmijU5Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.119.212.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:f9:09:35:d1:37:e9:c5:e5:25:8e:28:a7:77:34:01:ad:b5:
52:77:96:fd:a5:c3:c5:c0:8f:2b:a9:f6:9d:19:1f:7a:66:6b:
3b:73:06:ff:37:0c:72:e1:cd:a4:e6:8e:4c:8a:9a:41:98:4b:
88:30:f2:c2:42:4e:67:06:fa:d1:45:5e:88:45:fd:85:c0:9c:
6f:2a:4a:fb:30:78:d3:12:77:c5:a6:7a:c4:b6:1b:89:6b:2c:
70:26:84:7c:4a:d5:e3:ed:6c:1c:eb:af:4e:4e:2f:25:17:1a:
d0:76:91:be:9f:f0:09:7b:29:cd:7a:f2:ac:b7:b8:74:2b:03:
da:32:d6:71:1c:1d:91:2f:93:9c:41:ae:9c:29:7a:bb:34:fe:
43:48:15:ed:c3:67:35:ba:f7:24:d8:50:aa:40:75:8c:fc:e6:
e8:8a:1e:ea:ff:f3:a0:41:18:82:8a:13:7b:33:a2:5d:48:78:
67:13:e0:0d:fb:b0:3f:16:00:89:f3:2d:c9:e4:97:b0:22:2c:
f8:7b:cb:7f:31:6d:5c:7f:e1:34:51:d8:79:b0:b1:51:89:07:
04:a0:c5:d2:36:0c:9f:ca:13:ca:6b:74:6d:8a:52:dd:bf:81:
eb:7d:2f:46:d7:55:7a:21:72:06:f5:31:dc:9e:ad:fc:f8:01:
22:e9:64:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org