Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/kf35avS088Mk2_F8ZrAPgGGj8Bc.roa
File: kf35avS088Mk2_F8ZrAPgGGj8Bc.roa (raw, json)
Hash identifier: Nb0XFjKUYR+GjO0uvDH0HgiyEzlh8YBx7s0xGzl1KmI=
Subject key identifier: 91:FD:F9:6A:F4:B4:F3:C3:24:DB:F1:7C:66:B0:0F:80:61:A3:F0:17
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0A89
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/kf35avS088Mk2_F8ZrAPgGGj8Bc.roa
Signing time: Thu 15 Sep 2022 02:37:51 +0000
ROA not before: Thu 15 Sep 2022 02:37:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38851
IP address blocks: 103.234.76.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2697 (0xa89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 15 02:37:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=91FDF96AF4B4F3C324DBF17C66B00F8061A3F017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:88:8f:c8:50:80:4e:2b:fd:b2:f9:fd:ff:3d:
cd:66:eb:35:4e:04:cb:e2:3d:84:6e:f1:bf:28:77:
f4:bc:16:58:1a:9d:7e:64:60:64:1a:e4:76:b5:c3:
5c:7d:3e:e8:b4:e6:9e:cf:17:f2:52:31:8a:ab:38:
52:b2:a6:5f:09:72:4d:57:38:12:88:d2:75:60:f5:
63:37:04:99:de:61:36:05:ba:41:de:8c:c9:73:c5:
44:fb:8f:ca:38:5a:31:37:e3:41:c5:c4:cc:fa:b1:
8b:23:2c:8d:40:6f:7d:b1:fe:43:cb:e2:4c:41:f3:
0c:dc:c5:1c:fd:cc:27:42:a6:93:13:5e:95:32:be:
03:74:c9:85:10:fa:63:f0:f2:10:6c:71:6f:e0:24:
2b:b5:48:a6:97:fa:60:15:f9:93:69:c3:5b:c1:67:
6c:27:26:e1:98:02:84:35:5e:e2:fb:d2:15:7a:16:
8d:5b:fe:be:99:31:d6:ca:aa:06:f7:a5:d5:cd:d3:
21:39:16:ef:e8:f6:18:b7:47:5b:62:ca:e9:1e:8b:
41:a7:05:cc:20:83:c2:c7:eb:92:42:28:cc:53:f6:
ce:48:ab:7a:77:df:72:a6:25:bb:ee:27:18:c4:19:
ff:5c:fe:0d:b1:29:e2:52:74:74:36:42:2b:79:3b:
19:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:FD:F9:6A:F4:B4:F3:C3:24:DB:F1:7C:66:B0:0F:80:61:A3:F0:17
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/kf35avS088Mk2_F8ZrAPgGGj8Bc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.76.0/22
Signature Algorithm: sha256WithRSAEncryption
57:1e:29:f8:a3:5c:f1:80:6a:45:a8:9c:89:d0:4a:6c:b6:64:
38:6c:1a:fb:ef:c1:d8:68:0c:4a:a2:d9:7d:e4:22:fd:a8:0e:
f4:7a:8b:3e:0b:57:f9:55:db:d7:e8:04:b0:0d:89:0f:2a:ee:
9c:fa:ae:8c:b8:2c:86:93:01:62:c7:73:f4:53:06:d6:99:79:
54:67:01:92:c1:34:05:91:32:b0:fa:97:a7:df:df:58:ae:96:
fc:04:0e:fc:9b:91:39:d2:1a:4a:14:86:81:68:7c:16:eb:42:
1d:67:a1:11:3f:68:d5:01:49:03:85:95:9e:ef:09:9d:7f:a5:
c0:21:5e:79:43:0a:a5:46:8a:85:1b:40:a5:54:ab:8c:97:8a:
ec:19:90:ad:b8:0f:8c:82:eb:65:f0:19:4a:5c:07:e4:ac:f3:
a1:fb:d6:8d:8b:36:eb:33:7e:f2:9b:76:de:0e:f6:b7:b0:58:
d3:28:a2:4a:6e:c2:ac:74:e1:03:fc:c7:63:3a:52:fc:f5:e5:
87:70:8e:b5:ee:1e:ac:60:60:bd:74:23:36:9e:f3:27:c8:6c:
c2:57:df:dc:da:10:55:5c:55:24:51:39:f2:54:14:69:34:b1:
51:d3:93:25:f8:ed:66:a2:1b:7a:1c:ef:5c:5d:6b:78:ff:d2:
45:a0:ed:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org