Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CKMATES/v60XuSIC3WlaTwEkK_KJ_I7E6jw.roa
File: v60XuSIC3WlaTwEkK_KJ_I7E6jw.roa (raw, json)
Hash identifier: GmL8vakfIKEyCLVgf/2Vv8adM9R0nWHz3H/5UUYMEsI=
Subject key identifier: BF:AD:17:B9:22:02:DD:69:5A:4F:01:24:2B:F2:89:FC:8E:C4:EA:3C
Certificate issuer: /CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Certificate serial: 073F
Authority key identifier: 5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/v60XuSIC3WlaTwEkK_KJ_I7E6jw.roa
Signing time: Tue 29 Sep 2020 09:59:52 +0000
ROA not before: Tue 29 Sep 2020 09:59:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 14618
IP address blocks: 103.119.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1855 (0x73f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Validity
Not Before: Sep 29 09:59:52 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BFAD17B92202DD695A4F01242BF289FC8EC4EA3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8e:77:7d:b6:4e:17:43:42:7e:bc:ac:35:8c:
07:55:c3:9b:3b:f6:9c:7e:2c:92:91:ad:fa:74:1a:
fb:1a:5f:be:87:a5:4e:6c:59:7a:9e:92:9c:9d:c0:
cb:e3:c7:d2:bf:e9:f4:76:8f:33:d0:0e:d6:84:46:
47:ec:ed:cc:98:be:8d:ef:28:1a:24:b3:c2:5a:f1:
c0:3e:f9:27:89:30:80:fd:ab:aa:67:28:08:27:3b:
0e:8b:a8:71:b8:6c:a2:66:a0:23:b6:d7:a7:ba:d6:
3a:c9:b9:b2:07:4a:41:a7:8b:85:bc:ce:16:88:6e:
dc:8b:5d:9b:0e:4f:64:f9:1b:07:69:da:e2:c9:83:
4d:f5:2f:c5:fa:0a:5e:a4:c2:6e:91:4f:3e:40:3c:
03:d7:3a:82:f9:72:90:9f:53:b6:a3:9e:27:f4:23:
88:79:6d:68:42:ce:f4:b2:b4:d1:5b:27:ff:26:ac:
1e:75:04:49:ec:49:9a:ef:47:b9:1c:5f:47:c9:ae:
b7:0f:d8:c6:5d:17:c2:8e:2c:c1:a4:43:19:2a:91:
a6:50:4c:bc:2b:42:17:3a:ef:16:44:bc:80:04:33:
f7:97:1b:aa:6e:28:18:1e:0d:1a:11:ac:a4:4b:fc:
6e:12:a3:32:f3:65:cc:cf:3f:8c:a8:8b:a4:b7:db:
aa:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:AD:17:B9:22:02:DD:69:5A:4F:01:24:2B:F2:89:FC:8E:C4:EA:3C
X509v3 Authority Key Identifier:
keyid:5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/XNEK1bakd108UE1mEHH4ziQ-KAc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/v60XuSIC3WlaTwEkK_KJ_I7E6jw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.119.213.0/24
Signature Algorithm: sha256WithRSAEncryption
14:77:0e:b1:f0:53:d6:a9:9c:b6:0b:ca:58:29:2c:6f:ac:48:
5a:6f:44:53:b8:97:60:94:7f:bd:5f:3e:8a:70:ef:cb:7a:33:
9b:6a:e1:09:fd:82:68:c5:13:07:08:71:ee:23:50:fb:fe:aa:
e8:2c:ec:70:14:06:f7:5c:aa:85:54:a9:37:2e:a3:c8:c3:cd:
13:e5:67:a2:4d:94:9c:30:b2:cc:fb:7a:a2:55:d7:8d:b6:41:
54:94:54:c9:f4:fe:73:bb:48:3a:c3:d8:da:cd:65:e5:0c:93:
69:b1:f0:f7:af:b0:d2:b1:b3:a3:3f:79:42:05:9f:89:d0:17:
b1:89:dd:f1:66:a7:8e:1d:3e:e7:a0:b4:38:e9:d6:32:0c:5a:
64:d8:43:52:01:e6:cf:4b:7a:18:95:95:5e:80:48:9e:e2:be:
fb:69:82:c4:99:b2:35:5f:c1:03:a8:3e:41:bc:77:1e:9b:c2:
8f:f0:a2:de:b1:6f:59:f9:d9:8e:2d:84:37:1c:c2:41:21:54:
f7:c9:9e:28:1d:d9:0d:6a:5b:15:6f:b1:2a:5f:c1:67:b0:8c:
cc:39:2e:fa:1b:ec:2b:a9:7b:0f:ec:9e:c8:27:33:cf:ce:06:
40:3e:ee:89:83:07:d0:fb:09:f5:40:3b:7c:d4:f2:84:07:8d:
50:4c:10:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org