Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/ExbhebcBr74sf3vdy7A7NeblKp0.roa
File: ExbhebcBr74sf3vdy7A7NeblKp0.roa (raw, json)
Hash identifier: KywX6ex96eyfuhle7KdIwwHWc13RWX3KlIwe0jTIlmQ=
Subject key identifier: 13:16:E1:79:B7:01:AF:BE:2C:7F:7B:DD:CB:B0:3B:35:E6:E5:2A:9D
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 0AE3
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/ExbhebcBr74sf3vdy7A7NeblKp0.roa
Signing time: Thu 13 Apr 2023 00:18:16 +0000
ROA not before: Thu 13 Apr 2023 00:18:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 20473
IP address blocks: 103.123.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2787 (0xae3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Apr 13 00:18:16 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1316E179B701AFBE2C7F7BDDCBB03B35E6E52A9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c7:ca:34:b7:91:84:6e:91:46:91:56:c3:f5:
ce:79:b8:96:ec:1e:1d:ec:e0:b3:d3:f9:c7:3d:a5:
f0:39:ee:8f:37:8d:6d:a5:a4:10:bd:d6:43:ad:eb:
15:40:18:5b:7d:59:39:be:44:d0:cb:25:8f:c0:01:
ce:00:45:7f:80:08:0b:59:eb:d6:7f:b3:2a:fe:61:
3d:6b:5b:0f:a3:b9:61:f2:d0:a7:89:b2:c2:d8:41:
42:d3:5e:5d:7e:79:f9:62:80:d0:95:7a:a0:4b:7b:
fc:d9:49:a9:5b:87:7c:6b:cc:49:70:41:92:38:04:
b7:b7:89:3d:09:ca:80:5f:68:a7:a0:8a:ef:a2:41:
24:6d:59:10:fc:97:21:3c:8a:2c:a1:3f:b2:1c:52:
3c:3f:f8:f8:d7:e8:88:ff:0b:d2:a6:21:a7:0d:d0:
dc:a7:f2:09:8f:10:d1:78:81:e6:89:22:f5:55:d1:
9d:2e:9a:33:65:80:e1:39:08:5f:3b:a5:3d:0e:db:
4c:83:66:ea:1b:a9:23:46:83:c9:d6:fb:11:9b:37:
f8:58:c9:ae:39:08:20:df:88:f5:76:8c:94:f5:18:
6c:ba:74:f5:6f:e1:38:0f:bf:c3:29:be:57:9a:8b:
43:73:db:12:25:3c:2e:28:3b:5c:c7:ac:62:71:fd:
cd:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:16:E1:79:B7:01:AF:BE:2C:7F:7B:DD:CB:B0:3B:35:E6:E5:2A:9D
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/ExbhebcBr74sf3vdy7A7NeblKp0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.128.0/22
Signature Algorithm: sha256WithRSAEncryption
d5:7c:55:dc:19:4b:56:0b:f9:eb:d7:c8:64:65:9e:5b:a9:f9:
fb:14:36:0b:1d:31:2a:6e:36:bd:ec:a6:be:c0:a9:66:93:5f:
34:13:c8:1d:d2:52:3b:96:e6:0d:5f:f8:d3:df:c7:f6:31:2d:
5a:f4:d5:30:42:79:d4:54:09:20:c7:bd:29:bd:0d:f5:b8:19:
3b:13:c1:a6:f7:a4:a4:8d:55:ea:94:cd:d2:bd:a5:fa:29:72:
ea:e2:1b:02:44:ca:51:94:7c:6c:a8:76:2b:18:d2:fc:94:b9:
d9:7d:3e:53:43:59:48:8d:b1:cf:ae:05:e1:f0:74:b7:68:0f:
26:fe:c0:8f:5f:16:e5:08:89:b7:a9:5f:47:23:56:26:08:db:
e8:64:8b:75:21:b9:80:f7:ed:af:01:e0:32:a3:52:23:49:9b:
b4:64:79:ed:a8:84:fc:19:ab:96:c8:8b:24:6c:64:b0:d2:b5:
08:f9:4d:4a:ea:4c:ac:98:ee:a0:c7:61:55:e9:f4:0e:a2:0b:
74:83:aa:dd:83:ae:b5:07:8f:b5:51:9a:48:93:8e:df:c6:ab:
6f:9c:f5:1c:ae:8f:bd:92:57:a8:ff:9d:48:d2:3a:46:32:c2:
0e:62:d4:ea:fd:97:29:b7:5e:71:ed:95:2e:ad:4b:65:70:df:
35:ab:58:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org