Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/WCtJTm--5N4kwzeilejIghhn8O0.roa
File: WCtJTm--5N4kwzeilejIghhn8O0.roa (raw, json)
Hash identifier: v4HrmaSIYoz+yYFWBivrS5sLbtjrXP+3N88Ijtty1cY=
Subject key identifier: 58:2B:49:4E:6F:BE:E4:DE:24:C3:37:A2:95:E8:C8:82:18:67:F0:ED
Certificate issuer: /CN=A082F5D992E6BC25E08997538616180702E857C3
Certificate serial: 04
Authority key identifier: A0:82:F5:D9:92:E6:BC:25:E0:89:97:53:86:16:18:07:02:E8:57:C3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oIL12ZLmvCXgiZdThhYYBwLoV8M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/WCtJTm--5N4kwzeilejIghhn8O0.roa
Signing time: Mon 07 Dec 2020 09:41:05 +0000
ROA not before: Mon 07 Dec 2020 09:41:05 +0000
ROA not after: Tue 07 Dec 2021 08:40:28 +0000
asID: 38839
IP address blocks: 103.159.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A082F5D992E6BC25E08997538616180702E857C3
Validity
Not Before: Dec 7 09:41:05 2020 GMT
Not After : Dec 7 08:40:28 2021 GMT
Subject: CN=582B494E6FBEE4DE24C337A295E8C8821867F0ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:1a:0a:57:95:87:cc:68:86:fb:00:56:02:7c:
64:f5:fc:97:41:37:34:79:99:64:f0:4b:e1:c2:37:
c5:98:99:6c:36:10:3a:92:ab:5c:02:7e:92:5c:11:
0c:e2:ab:29:51:31:df:a8:74:4f:58:9d:7e:68:66:
28:41:35:27:7b:20:05:60:f9:73:68:50:d3:42:8d:
85:c5:07:f4:e1:fd:63:6c:55:26:a0:1e:1e:fd:7f:
45:5b:37:af:55:f2:ec:ca:20:54:85:ee:80:42:1d:
ee:c8:44:5b:d0:56:62:c2:ad:5b:1b:aa:ec:f2:98:
ee:bc:60:ac:2e:92:2e:fa:e7:93:00:94:72:ed:e7:
04:24:09:aa:8b:1d:ed:6f:c4:ee:83:a7:6a:61:c9:
f2:7f:f2:cc:c5:ae:69:77:fc:fe:fa:c3:08:d4:0b:
3b:bb:70:1a:b2:d0:ed:15:b4:cb:b0:1d:17:05:93:
ef:a2:c6:a2:c8:a1:ee:59:c6:cb:b1:65:fd:ab:05:
90:e6:cd:4a:21:78:f7:b5:19:c2:e6:33:1c:a0:28:
16:8d:c8:36:41:bf:c6:1f:50:f6:20:30:17:b9:88:
2d:b5:d9:20:9d:3e:3f:b6:ef:75:ee:28:81:81:54:
3b:a0:78:62:a4:ba:2a:10:32:b3:59:cf:3f:e4:dd:
44:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:2B:49:4E:6F:BE:E4:DE:24:C3:37:A2:95:E8:C8:82:18:67:F0:ED
X509v3 Authority Key Identifier:
keyid:A0:82:F5:D9:92:E6:BC:25:E0:89:97:53:86:16:18:07:02:E8:57:C3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/oIL12ZLmvCXgiZdThhYYBwLoV8M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oIL12ZLmvCXgiZdThhYYBwLoV8M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/WCtJTm--5N4kwzeilejIghhn8O0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.159.176.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:53:d2:3c:39:12:53:dd:ac:da:59:ad:86:ce:57:1f:df:a8:
8a:b2:50:29:f8:4d:db:be:2c:26:8b:1d:70:dc:15:13:7b:cf:
4b:61:e0:fb:34:f3:c6:0d:b7:e5:ca:23:89:4e:4d:3d:2b:b1:
ff:bc:5c:3a:78:8c:f2:cf:40:ca:82:42:12:34:4a:e6:b3:1c:
e9:b6:9e:38:12:f4:9a:49:be:b3:03:6f:c8:c4:c3:43:32:e2:
f5:c0:35:3e:c8:81:7b:e2:7c:95:3c:96:97:80:34:cd:82:e1:
89:ad:bc:13:96:c7:18:2c:63:93:7a:41:47:0d:07:1a:f8:b8:
b6:ef:78:ef:ad:67:08:c6:3f:8f:fb:73:62:49:23:04:a7:8d:
e2:7d:39:9c:7a:cf:ab:34:21:3a:f8:95:11:eb:da:00:4b:dc:
fe:cd:14:09:f2:f3:0a:27:e0:86:54:e9:a7:ca:4d:4a:97:bb:
ab:16:42:36:26:6e:fa:92:8f:2a:ff:de:8a:13:47:65:e5:38:
d2:a0:66:3a:61:09:cd:05:9f:17:8c:e9:e6:c7:1f:01:38:f9:
37:9e:a3:2f:58:8f:8d:e6:f8:99:52:45:67:ec:76:ef:6d:14:
8c:fb:02:30:04:c6:ee:3c:86:ef:cd:a0:09:36:a2:a4:11:58:
f8:ba:bc:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org