Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DCT/owwKfpQ9NCql0MkcIm4QpKPZ388.roa
File: owwKfpQ9NCql0MkcIm4QpKPZ388.roa (raw, json)
Hash identifier: XN7VflZXrklPc+IYIUF1NsMMWKQlJB+AGxxFh2PoQTA=
Subject key identifier: A3:0C:0A:7E:94:3D:34:2A:A5:D0:C9:1C:22:6E:10:A4:A3:D9:DF:CF
Certificate issuer: /CN=9B062D74C7F512F04AE60955C5456FC19755337F
Certificate serial: 08A6
Authority key identifier: 9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/owwKfpQ9NCql0MkcIm4QpKPZ388.roa
Signing time: Sun 07 Feb 2021 11:52:38 +0000
ROA not before: Sun 07 Feb 2021 11:52:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131601
IP address blocks: 103.252.196.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2214 (0x8a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9B062D74C7F512F04AE60955C5456FC19755337F
Validity
Not Before: Feb 7 11:52:38 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A30C0A7E943D342AA5D0C91C226E10A4A3D9DFCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ce:2c:f2:46:c4:29:75:c9:0f:62:f9:c6:6f:
01:28:22:b6:b1:00:85:3e:ed:f0:0f:06:b2:d4:65:
91:62:49:c9:59:d9:0f:3d:d1:8c:c4:21:2b:2e:54:
6a:89:e9:23:d8:0c:60:4b:6d:ed:7c:1f:d8:45:e6:
fc:e3:5e:f1:41:e2:9b:e8:d9:60:88:35:4c:80:6f:
43:d0:b1:da:7e:24:0b:8d:0e:11:d5:45:a3:01:13:
81:e6:f4:65:78:5c:31:ee:71:2a:05:19:72:af:64:
c2:c1:d6:0e:c4:63:5b:22:f8:1c:06:9c:76:bb:bd:
28:b5:d3:7e:1d:10:1b:a3:14:96:34:be:63:ea:77:
2b:ac:be:44:52:ba:48:7e:45:51:1b:23:b2:03:bb:
b2:de:e4:b2:c6:1e:0f:69:99:44:0b:aa:89:ca:be:
7e:7a:c2:31:09:bd:40:77:fd:22:41:1a:fa:d7:5e:
64:3e:97:ab:2a:1c:46:a9:36:cd:1f:df:ee:75:43:
5e:6f:b8:96:c2:79:64:76:7b:1f:80:7f:97:64:69:
7f:c9:d3:f2:24:eb:ae:74:13:ca:18:77:5c:86:ba:
71:da:1f:96:6d:87:96:24:65:de:ec:9e:76:9e:5e:
02:40:30:92:28:5e:7d:8c:4e:ac:10:da:e4:ae:11:
d7:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:0C:0A:7E:94:3D:34:2A:A5:D0:C9:1C:22:6E:10:A4:A3:D9:DF:CF
X509v3 Authority Key Identifier:
keyid:9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mwYtdMf1EvBK5glVxUVvwZdVM38.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/owwKfpQ9NCql0MkcIm4QpKPZ388.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.252.196.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:b4:9b:22:10:bc:75:1f:ff:d9:ed:8d:d5:76:95:06:bf:d9:
60:18:f4:81:ba:2e:ad:e3:c0:8d:31:c6:a0:30:53:f4:21:44:
4a:b4:94:42:8e:a0:c7:32:30:51:c6:c0:23:36:89:c0:cd:52:
2c:21:c3:07:58:16:ef:9b:24:2a:11:61:13:1f:d8:d8:18:92:
16:6e:c0:c9:6f:41:4d:3f:eb:33:52:01:14:11:8e:6f:3b:a0:
78:7a:a4:81:ca:a0:11:50:6c:31:be:a4:24:4d:f6:0d:d3:e4:
21:ae:d8:48:12:9a:70:38:c9:4d:d4:3f:53:f6:b7:da:ec:43:
41:86:de:e7:36:4a:0b:1b:aa:8d:2a:b1:8a:92:f3:18:a2:a4:
86:63:0d:e9:3c:b2:8e:cf:fe:c2:48:eb:10:fa:8b:d4:51:12:
b1:e7:b0:97:7c:44:00:fc:fd:1d:a8:11:7b:04:02:5d:d2:9c:
83:20:a7:6a:40:84:28:d6:72:a9:fd:c5:ae:42:d9:76:16:b5:
6c:b7:72:ff:ca:62:0b:ad:08:78:3b:fd:97:4c:50:b9:f6:ff:
64:00:59:b0:6e:1a:ed:89:e6:c2:b0:cc:4a:99:2e:d0:9c:82:
11:87:6c:bb:62:ac:f8:38:27:71:80:86:3e:e1:42:92:55:20:
34:59:d6:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org