Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/PNhebg3yqk2vVsVchLT4DcBN7w0.roa
File: PNhebg3yqk2vVsVchLT4DcBN7w0.roa (raw, json)
Hash identifier: orxYQI34DHZCM0UuvO4QW5dNnDqjV/mORLyvBgWPndk=
Subject key identifier: 3C:D8:5E:6E:0D:F2:AA:4D:AF:56:C5:5C:84:B4:F8:0D:C0:4D:EF:0D
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 0965
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/PNhebg3yqk2vVsVchLT4DcBN7w0.roa
Signing time: Wed 29 Sep 2021 02:38:15 +0000
ROA not before: Wed 29 Sep 2021 02:38:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 20473
IP address blocks: 103.123.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2405 (0x965)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Sep 29 02:38:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3CD85E6E0DF2AA4DAF56C55C84B4F80DC04DEF0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d7:e5:7b:4b:f4:e8:f6:c5:a3:52:c5:64:76:
3e:2d:d6:54:ca:40:48:67:01:27:1a:fe:c3:ab:eb:
81:8d:d4:bf:73:b9:68:8e:2e:14:22:06:b6:34:fd:
d6:22:02:cb:55:f0:6c:45:6a:a7:29:d4:8e:ba:b3:
b6:ec:c3:44:f6:80:1a:ae:3b:51:a9:52:62:f1:bf:
85:b1:b0:48:8c:80:a4:c3:6a:54:5a:ff:25:94:4a:
f8:b4:56:f0:c9:a1:14:cb:f1:ae:3c:3f:d7:1d:3b:
05:58:1b:fe:14:59:76:a6:bd:b4:81:7c:07:29:c7:
d3:82:8e:31:a7:cf:19:58:67:e4:a8:bb:86:1f:c3:
1a:df:dd:38:c0:6e:ad:b0:13:52:fd:e5:e7:03:ca:
30:bf:73:cd:43:f6:63:f8:a3:d1:7b:81:dc:d2:4b:
85:e8:b2:ce:77:a5:a6:32:a4:5d:96:e5:63:c5:ed:
6a:44:da:93:8c:29:b2:0b:87:81:41:34:2b:fb:49:
ab:b6:72:b8:f5:aa:0d:29:f2:2e:9d:e5:5d:91:67:
68:80:93:df:bb:59:57:01:6a:c1:68:7b:53:2b:03:
2a:f3:64:df:d2:e7:36:cd:a1:fa:94:e1:e2:f3:89:
26:6f:01:00:e7:b0:85:1f:b3:93:2d:d0:93:ff:a0:
49:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:D8:5E:6E:0D:F2:AA:4D:AF:56:C5:5C:84:B4:F8:0D:C0:4D:EF:0D
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/PNhebg3yqk2vVsVchLT4DcBN7w0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.128.0/22
Signature Algorithm: sha256WithRSAEncryption
50:30:5e:69:1d:19:73:9f:3f:61:78:62:43:ec:3b:24:a4:3b:
a4:f5:96:2c:f5:5c:87:49:bd:4f:5f:c9:90:c3:e0:90:e9:a0:
f7:24:2b:6c:bb:21:dc:69:ad:1a:7d:b7:18:c5:49:29:9f:8e:
f2:7b:27:53:ee:c7:2b:d6:41:bb:f7:bd:d1:da:ac:08:b0:31:
8d:6b:d7:8e:ba:c4:10:62:23:42:eb:b2:23:62:6d:cb:55:65:
2b:e3:32:80:39:92:04:9a:22:eb:77:7a:04:2d:b9:05:8a:ce:
45:44:92:5e:f4:b2:f0:0c:96:4d:b8:a5:bd:1f:2f:2b:61:dc:
3c:43:6b:d2:75:9d:7a:7c:d1:7e:0d:ea:83:7a:4d:08:88:e9:
22:63:da:d0:6e:df:bf:0d:d7:d6:fa:5a:3e:71:fa:ac:38:ed:
2e:be:ea:e3:17:bb:55:18:9f:c2:2b:f2:5f:ca:1e:25:80:08:
14:30:06:dc:a2:0c:94:7a:15:6d:04:6e:f5:ab:95:01:f7:ad:
15:c8:b6:ec:50:7d:77:c4:2c:c3:fa:23:5d:26:1f:34:46:63:
6c:db:d8:93:6c:28:01:4c:4a:7a:3c:1a:30:43:93:4c:99:0c:
df:98:ee:75:86:a9:39:79:b9:4a:7f:d6:2f:0e:ee:10:f0:18:
1d:a9:42:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org