Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/ym2aJr7eCwzJs4tPIt0TF2L4kTI.roa
File: ym2aJr7eCwzJs4tPIt0TF2L4kTI.roa (raw, json)
Hash identifier: 8n6bA/opksAlttya6GQYR32CdsPWNiwd/kMLEigJWFg=
Subject key identifier: CA:6D:9A:26:BE:DE:0B:0C:C9:B3:8B:4F:22:DD:13:17:62:F8:91:32
Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial: 0964
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/ym2aJr7eCwzJs4tPIt0TF2L4kTI.roa
Signing time: Wed 29 Sep 2021 02:38:14 +0000
ROA not before: Wed 29 Sep 2021 02:38:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131662
IP address blocks: 103.123.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2404 (0x964)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Validity
Not Before: Sep 29 02:38:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CA6D9A26BEDE0B0CC9B38B4F22DD131762F89132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d5:d0:77:4b:9a:a4:d7:dc:d3:77:29:ed:d3:
02:8a:42:86:0e:73:a4:75:0b:06:93:3b:fb:0d:f6:
c6:c4:05:32:05:5f:d6:01:12:71:fe:4b:2f:1e:6e:
2a:5e:89:d1:20:bd:0f:b9:a9:fe:32:da:86:9c:90:
c1:c3:00:d3:66:0e:13:ab:65:15:1a:45:ce:a8:77:
56:f5:8d:fa:f4:8a:5b:4d:80:60:70:f0:61:2e:1c:
03:1e:bd:8d:d2:30:80:80:97:fc:83:bf:97:e3:75:
44:11:de:dd:18:c0:37:7b:4a:21:fa:75:f4:e8:ec:
3e:81:42:22:91:e4:67:44:5b:82:de:40:9e:d9:33:
34:7f:71:14:6c:67:b7:07:00:38:6c:ca:95:8e:83:
20:ae:b1:9d:44:6c:e4:0e:50:72:5c:1f:49:74:72:
a1:3d:d5:11:d5:2b:09:54:77:17:a4:90:d3:9c:ff:
0d:5c:a8:2b:43:74:8f:ee:6e:65:3b:2f:78:ad:1d:
8e:ee:61:a1:65:c0:0d:c0:4f:b3:13:c1:71:f6:bb:
b8:6e:12:d3:65:5b:d4:48:10:72:da:f7:e1:57:39:
f6:2c:dc:45:69:fa:d1:c1:d3:0d:e5:cb:b9:87:25:
7e:9a:1a:82:4e:66:d9:55:5b:1a:6c:cc:5c:75:09:
40:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:6D:9A:26:BE:DE:0B:0C:C9:B3:8B:4F:22:DD:13:17:62:F8:91:32
X509v3 Authority Key Identifier:
keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/ym2aJr7eCwzJs4tPIt0TF2L4kTI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.128.0/22
Signature Algorithm: sha256WithRSAEncryption
11:d3:f5:e7:23:5b:3e:99:d9:ed:05:d1:2e:5c:cf:aa:35:55:
20:d3:ef:d2:bc:b1:7f:4d:ba:3d:39:5b:c9:a9:a0:bb:ce:05:
85:7f:12:c6:69:46:f3:aa:ee:ea:c1:e3:ab:e6:42:e7:d6:ae:
14:16:d6:67:fa:cf:35:e5:86:9b:b0:ba:f6:e4:5d:09:28:4e:
de:ae:5c:db:e8:ca:b4:c5:62:90:69:68:f0:6b:ff:e3:bb:a9:
df:f7:15:9e:73:f4:9e:1e:4a:40:ff:11:7c:5f:8c:2c:7f:28:
4f:dc:07:0a:77:f2:07:45:1d:1c:90:48:53:31:69:7f:29:f6:
32:72:55:e7:3f:63:40:fc:50:71:c1:29:44:28:9e:e9:5d:90:
50:b6:84:45:ac:cd:07:ae:43:81:9e:7c:9b:b9:6c:f0:1a:6f:
dd:53:52:cf:46:f2:e3:86:71:c1:ed:a8:d0:91:83:c6:3a:4b:
ee:6d:3c:7f:75:d2:6c:a3:96:a2:85:49:24:8b:5a:b9:79:a9:
2f:1e:95:13:a0:50:62:3f:d5:b6:17:d5:b7:d1:4a:53:a8:1b:
7e:d6:be:cf:e9:a1:85:8f:ac:e8:93:8c:42:37:08:a2:a1:55:
92:ac:23:a2:d0:33:57:2c:5b:ec:9b:5a:f9:3e:93:3e:fa:32:
36:77:13:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org