Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/KXlB7XB4kUWsHCan2rwbYG9yKK0.roa
File: KXlB7XB4kUWsHCan2rwbYG9yKK0.roa (raw, json)
Hash identifier: ibUPnIcaj3MDWx6Dj3ntg4oau857pQmJpTx74hpeVUs=
Subject key identifier: 29:79:41:ED:70:78:91:45:AC:1C:26:A7:DA:BC:1B:60:6F:72:28:AD
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 077C
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/KXlB7XB4kUWsHCan2rwbYG9yKK0.roa
Signing time: Tue 29 Sep 2020 10:02:54 +0000
ROA not before: Tue 29 Sep 2020 10:02:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20473
IP address blocks: 103.123.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1916 (0x77c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Sep 29 10:02:54 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=297941ED70789145AC1C26A7DABC1B606F7228AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:93:eb:fb:6b:8b:9f:14:0b:67:16:85:cb:85:
75:f1:63:f3:ce:39:dc:ff:ed:3a:ab:da:da:4a:b2:
5b:79:75:33:28:d0:77:27:40:9e:1e:7f:ee:e8:62:
ab:27:88:ef:7d:e7:a1:eb:da:1b:48:24:c2:7f:3d:
87:b2:a7:75:89:9f:d4:14:15:7d:87:78:7c:51:96:
d4:71:ee:d6:1f:b1:90:a4:22:db:4f:b9:89:74:be:
7b:54:9b:7b:59:05:74:c0:65:47:b8:20:9d:25:45:
e1:8e:e5:06:a5:64:3f:4a:d4:ef:e7:f3:bd:ec:62:
fd:53:e8:59:bb:6a:65:82:36:03:c2:1b:c1:9c:20:
c2:cb:94:39:d9:91:8b:3b:94:e5:09:e9:01:6a:79:
0a:74:ad:20:b9:2e:27:7f:99:62:8d:04:61:a4:1e:
88:7e:21:97:04:cc:f2:f3:eb:62:21:af:a1:3f:79:
7f:99:cf:c7:15:ed:e4:97:9a:22:08:34:12:70:66:
31:92:f1:8d:fc:63:30:f5:c6:22:b2:6d:3d:8a:4b:
4d:6a:4f:41:7a:42:85:61:db:a4:3c:1c:52:78:17:
bf:54:03:eb:36:c8:45:99:42:f7:1d:1e:5e:e5:68:
e9:e5:7f:69:eb:44:2d:b7:32:ea:40:f9:da:e0:c5:
77:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:79:41:ED:70:78:91:45:AC:1C:26:A7:DA:BC:1B:60:6F:72:28:AD
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/KXlB7XB4kUWsHCan2rwbYG9yKK0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.128.0/22
Signature Algorithm: sha256WithRSAEncryption
12:10:e4:31:47:be:fe:aa:4a:c1:4b:9d:2b:b9:0d:08:fa:18:
d5:81:6b:b7:fe:2a:d0:31:02:0c:8e:49:22:b0:5b:93:43:77:
2d:f5:ad:82:42:1e:12:66:4e:67:e3:81:9d:d2:7c:ca:a9:2e:
99:c5:fa:c9:74:56:94:f6:0a:65:de:23:1e:fd:f9:63:ab:46:
8c:cc:74:79:be:ca:e0:7f:05:74:df:de:30:b4:d9:35:13:ce:
f2:d4:8e:3f:a8:8b:d5:5b:e3:84:1e:bf:24:0b:cb:8d:95:21:
93:02:be:21:04:ad:2c:b8:b9:fe:f4:e2:86:df:a7:35:4e:42:
0d:0f:fa:de:3d:75:8f:01:4e:36:36:bb:6f:74:85:fb:a1:1d:
aa:30:0f:78:45:d0:5e:32:34:b1:d2:03:aa:89:1e:f9:ab:3b:
d4:ad:aa:eb:08:cc:dd:e2:2e:c6:61:cd:75:5a:4a:39:e3:e4:
7c:5f:61:bd:28:b6:70:2d:f2:1f:b7:35:83:a2:b6:89:8a:32:
6c:e8:b7:bf:fc:f9:81:39:26:ae:6f:f9:22:4a:c7:fb:69:7f:
41:17:3b:c8:d3:44:b2:ce:6f:b6:a6:29:67:57:5b:e0:39:3a:
a0:0e:b6:5c:0b:de:e5:3d:e7:16:51:ec:01:68:2e:33:b7:e9:
02:2b:bb:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org