Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CWTW/STpJx633bWG5WjlnaSfl0aS8m0g.roa
File: STpJx633bWG5WjlnaSfl0aS8m0g.roa (raw, json)
Hash identifier: eKdJsV3fuGQlDuCRhTzjkz19uXbIPqYnAaoNhan1W58=
Subject key identifier: 49:3A:49:C7:AD:F7:6D:61:B9:5A:39:67:69:27:E5:D1:A4:BC:9B:48
Certificate issuer: /CN=996D67023ED27754ACB1B568433D4376C88200F5
Certificate serial: 59
Authority key identifier: 99:6D:67:02:3E:D2:77:54:AC:B1:B5:68:43:3D:43:76:C8:82:00:F5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/STpJx633bWG5WjlnaSfl0aS8m0g.roa
Signing time: Wed 21 Jul 2021 08:23:26 +0000
ROA not before: Wed 21 Jul 2021 08:23:26 +0000
ROA not after: Fri 18 Mar 2022 08:28:02 +0000
asID: 131646
IP address blocks: 103.161.78.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89 (0x59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=996D67023ED27754ACB1B568433D4376C88200F5
Validity
Not Before: Jul 21 08:23:26 2021 GMT
Not After : Mar 18 08:28:02 2022 GMT
Subject: CN=493A49C7ADF76D61B95A39676927E5D1A4BC9B48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a3:f0:e1:67:f8:1d:52:e8:79:bd:e2:ed:18:
85:be:05:fb:6c:fb:33:18:1f:28:8f:ec:a3:21:0c:
68:99:b0:e1:6e:47:15:97:cb:24:7f:c2:16:74:d2:
e2:96:b2:16:f6:72:a4:f3:e4:d6:cc:36:ca:1f:93:
3e:d4:ea:6f:a9:d9:6e:70:c2:9b:1a:a1:05:bd:cb:
c6:a3:9f:94:d8:44:d8:97:27:4e:0b:94:9f:07:89:
e2:db:1e:40:08:4e:62:ca:8d:71:05:9e:ca:5c:f1:
6b:e9:be:43:93:c0:a0:7c:9f:63:36:84:f1:e9:08:
e4:56:7f:a8:d9:e2:6a:68:eb:69:2b:0b:d3:b0:5d:
24:93:fc:33:34:31:8d:c4:9a:af:25:f7:fa:16:80:
b1:63:85:7f:2d:af:bf:47:1f:9f:f0:9b:ad:6f:b0:
de:a4:09:09:f4:53:5c:c4:4c:84:58:ad:44:6d:aa:
ce:f3:e6:04:14:4d:94:9f:e4:98:24:72:80:17:f0:
5d:16:2e:04:5b:0c:d5:01:9f:4d:da:ce:27:11:b5:
85:be:c8:fb:71:85:2f:b5:4a:a0:b3:e2:be:e7:af:
fa:a4:86:2d:32:33:37:2c:64:a4:ba:f8:81:5a:d7:
e2:5f:78:93:4c:1a:b0:30:2e:fd:84:0c:a6:9c:5e:
06:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:3A:49:C7:AD:F7:6D:61:B9:5A:39:67:69:27:E5:D1:A4:BC:9B:48
X509v3 Authority Key Identifier:
keyid:99:6D:67:02:3E:D2:77:54:AC:B1:B5:68:43:3D:43:76:C8:82:00:F5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/STpJx633bWG5WjlnaSfl0aS8m0g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.161.78.0/23
Signature Algorithm: sha256WithRSAEncryption
31:0a:ca:db:21:b1:00:35:8a:a9:e6:44:5d:bf:7d:eb:3a:8e:
36:0a:1e:06:55:f4:a1:2e:20:64:a8:4a:69:15:8e:89:92:9b:
0b:ab:90:89:94:eb:8c:fe:f4:a3:ed:87:d4:26:0f:51:80:ed:
99:9b:b0:cb:b8:c4:bd:35:ef:72:d7:b1:ba:5b:51:7f:41:1d:
45:bd:68:14:73:a0:83:a1:16:38:e8:82:7e:c1:41:d6:1f:1e:
24:68:94:54:26:82:a0:d5:61:e1:02:1e:26:89:f9:35:d8:a4:
a3:d9:68:5c:0b:0c:ec:21:c6:f4:6b:d4:2f:0f:50:de:0e:7f:
cf:88:74:01:b7:ca:06:81:46:35:82:0a:5a:34:8e:c3:55:18:
63:18:f7:c4:1f:59:18:53:a0:8d:5d:9a:e8:6a:3a:fe:7f:40:
66:55:95:77:9f:ab:cb:56:91:19:14:5c:5a:7d:85:89:74:c6:
65:f3:8a:5f:54:83:2f:c5:dc:90:37:ee:5d:3e:b3:75:d2:c3:
1d:f3:78:da:03:01:81:94:e8:ab:1f:08:14:49:08:c1:a0:5a:
b4:83:16:e5:a4:a9:a0:e0:e3:8e:f9:f0:de:f4:59:c0:3d:69:
b3:53:51:5d:84:15:72:4e:16:3c:a9:e1:1e:81:4f:0f:99:95:
da:44:de:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org