Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DCT/WePWf2JF78VbdiIpxTAAsonEm3Q.roa
File: WePWf2JF78VbdiIpxTAAsonEm3Q.roa (raw, json)
Hash identifier: Uel781dPDMpqy7Hp9QD7KG5T8jvRuw1eKy6x4NGHSTg=
Subject key identifier: 59:E3:D6:7F:62:45:EF:C5:5B:76:22:29:C5:30:00:B2:89:C4:9B:74
Certificate issuer: /CN=9B062D74C7F512F04AE60955C5456FC19755337F
Certificate serial: 076F
Authority key identifier: 9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/WePWf2JF78VbdiIpxTAAsonEm3Q.roa
Signing time: Tue 29 Sep 2020 10:00:18 +0000
ROA not before: Tue 29 Sep 2020 10:00:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131601
IP address blocks: 103.252.196.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1903 (0x76f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9B062D74C7F512F04AE60955C5456FC19755337F
Validity
Not Before: Sep 29 10:00:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=59E3D67F6245EFC55B762229C53000B289C49B74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:12:ef:4f:7f:fd:da:a5:92:e4:24:0d:68:48:
07:75:62:4c:0a:2c:fa:c3:ea:61:de:69:fa:c2:fb:
50:64:cb:f1:19:b9:f0:c0:6c:bb:04:72:70:8e:20:
c2:3c:22:1f:29:fa:36:3b:f7:41:75:ef:1c:b2:d9:
bc:c1:28:fa:5e:b6:8a:f1:c4:37:8d:35:ef:80:af:
11:16:0d:58:83:48:40:36:f6:98:0f:fe:90:86:77:
dd:25:6d:63:de:b7:dc:e5:9d:07:93:f7:7c:fe:3b:
f9:bf:f9:6c:0e:04:c3:bd:fe:9f:73:93:00:16:2b:
e4:3f:32:36:92:34:fe:06:11:15:c4:53:87:65:ba:
22:ec:00:d7:2b:29:ab:47:6f:41:c4:9c:d7:53:25:
c3:1b:b8:93:ac:7f:02:aa:fe:4a:ee:5a:76:80:5d:
77:c5:9a:58:18:3f:63:16:e1:08:06:c0:88:71:f0:
3a:c9:cb:ac:de:36:a8:74:bf:73:03:c8:e9:ea:f3:
4d:48:ff:fe:9c:fd:c8:b8:79:bb:2e:38:02:4e:34:
b7:66:08:47:0f:09:f4:45:1d:d9:36:ac:4d:84:fb:
24:bb:14:27:cd:3b:35:5b:c1:6d:e1:97:ca:43:df:
df:19:c3:78:9c:be:e5:44:dc:87:28:0e:87:04:5b:
83:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:E3:D6:7F:62:45:EF:C5:5B:76:22:29:C5:30:00:B2:89:C4:9B:74
X509v3 Authority Key Identifier:
keyid:9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mwYtdMf1EvBK5glVxUVvwZdVM38.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/WePWf2JF78VbdiIpxTAAsonEm3Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.252.196.0/22
Signature Algorithm: sha256WithRSAEncryption
78:79:8c:6d:bf:d1:ad:b3:17:6b:05:c6:0c:51:da:a7:51:60:
a4:16:cb:14:3e:89:f4:6c:9e:b7:fb:31:76:90:31:0e:f8:a7:
70:82:e7:f6:3c:58:d2:44:01:ca:4a:cc:cd:da:34:bb:6b:df:
64:23:7d:1e:29:a0:19:16:70:0e:3b:5f:b5:43:ec:5c:df:42:
e2:22:a0:08:32:af:c5:6c:55:48:0c:e9:a4:97:23:08:d6:6e:
cb:67:bf:61:b8:8f:c6:86:6d:1a:98:b5:ef:8c:ca:c1:08:13:
20:03:5b:1f:af:20:b1:6a:80:65:2f:5b:19:70:fc:e3:db:12:
f8:36:a1:f0:84:03:48:bd:ce:a8:a9:90:38:7d:7d:5e:bd:c3:
a5:17:f4:e8:13:ae:46:0b:e6:ee:29:49:18:4e:a8:aa:10:02:
eb:39:61:3e:9e:b4:0a:97:5f:b2:c2:f2:e0:54:ab:a3:56:0a:
75:b6:1b:ea:0e:70:48:69:f6:22:24:f4:c6:79:7c:b6:2b:c1:
eb:12:0f:ce:48:89:9e:11:e9:5b:45:4b:52:90:3e:d1:75:db:
c2:c9:08:d0:45:4d:16:bd:d0:d4:b5:fc:fd:04:2c:ed:c7:86:
aa:20:a5:e2:4f:28:3b:f4:f0:18:6c:8b:56:0b:90:4d:29:ed:
04:49:1e:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:51 2023 by rpki-client on console-ams.rpki-client.org