Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DQWL/CogriYI8rXdtGjoyFWNePY4s_3g.roa
File: CogriYI8rXdtGjoyFWNePY4s_3g.roa (raw, json)
Hash identifier: n2SPJnC6uySPWVGFfeacs5gbsRbLvCT9eEROow0XV+4=
Subject key identifier: 0A:88:2B:89:82:3C:AD:77:6D:1A:3A:32:15:63:5E:3D:8E:2C:FF:78
Certificate issuer: /CN=7CBA374F4F7A0D1E6CB59F8A7B564066C67DD19D
Certificate serial: 0559
Authority key identifier: 7C:BA:37:4F:4F:7A:0D:1E:6C:B5:9F:8A:7B:56:40:66:C6:7D:D1:9D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/CogriYI8rXdtGjoyFWNePY4s_3g.roa
Signing time: Thu 04 Nov 2021 01:41:10 +0000
ROA not before: Thu 04 Nov 2021 01:41:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131678
IP address blocks: 103.149.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1369 (0x559)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CBA374F4F7A0D1E6CB59F8A7B564066C67DD19D
Validity
Not Before: Nov 4 01:41:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0A882B89823CAD776D1A3A3215635E3D8E2CFF78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d8:b9:3e:de:d8:83:f7:90:76:d4:4b:f7:16:
53:3c:ec:5a:f9:cf:b9:18:16:be:db:b7:f4:f2:e7:
d4:9a:c5:b9:62:d9:26:48:d6:89:f8:ca:1e:8d:d0:
d0:81:e7:87:25:c8:c3:64:ba:b2:82:92:3f:41:ad:
f7:89:90:60:3b:83:84:9c:f1:25:86:71:ba:0c:1e:
a4:ec:27:78:23:ce:88:d6:04:18:71:8f:54:15:87:
0a:0a:e3:56:2c:49:61:16:b7:55:a3:e6:0d:a0:e5:
0a:de:a2:17:08:d1:47:07:37:41:c5:21:ff:55:57:
66:04:8c:4d:2c:74:e3:e5:12:bb:c2:10:d9:9d:04:
5a:8f:4d:9d:35:50:44:15:93:7d:dc:9e:71:38:12:
29:fe:fc:ed:96:3b:0b:96:38:d6:f7:88:cf:63:63:
a1:f1:35:da:28:d8:6a:34:5a:3d:22:d3:2a:fb:ce:
d8:d1:74:a3:45:d8:b9:b4:e6:a8:74:9c:c6:08:f1:
bf:ba:a1:4a:c5:bf:79:43:6b:57:8e:f9:b0:7a:b9:
6f:38:a0:1a:61:1e:46:a9:a1:72:a8:8c:6c:a4:a6:
79:6d:e2:4b:06:b1:35:af:e6:45:d2:7f:35:60:6e:
49:1a:0a:ae:07:f6:08:31:22:91:de:b9:1d:af:b1:
3d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:88:2B:89:82:3C:AD:77:6D:1A:3A:32:15:63:5E:3D:8E:2C:FF:78
X509v3 Authority Key Identifier:
keyid:7C:BA:37:4F:4F:7A:0D:1E:6C:B5:9F:8A:7B:56:40:66:C6:7D:D1:9D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/CogriYI8rXdtGjoyFWNePY4s_3g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.149.67.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:a6:3f:d3:78:25:f4:12:01:a2:7e:83:e9:9a:bd:9c:0e:d5:
7c:d2:e8:8b:61:f1:2b:8e:f1:ca:de:37:4d:13:a0:e8:44:8e:
1e:2f:8a:fc:0a:95:20:51:ec:36:dd:39:5f:2a:d8:c4:e3:65:
f3:68:3c:24:3d:48:4c:9f:9e:81:5b:7e:26:57:fc:64:00:c4:
ea:30:c6:26:ac:22:8f:04:dc:33:91:04:84:27:07:41:a7:12:
e8:ee:03:39:2f:e6:b6:d3:0f:e1:be:da:1d:63:7d:f4:a7:01:
45:a2:5b:72:ab:04:53:b7:23:ab:eb:42:45:52:54:f1:94:ff:
18:eb:cf:17:66:af:9a:46:6c:93:79:e6:1c:c1:fc:cc:87:e3:
7d:80:60:d2:cc:b6:2a:bd:5b:08:1e:df:fb:97:c6:6d:88:d0:
39:8f:a6:e9:ae:ce:57:5a:d2:5a:df:3b:7c:05:0c:3c:b3:2c:
17:db:e3:de:62:d6:33:aa:7d:4d:b6:4c:4f:67:6c:e8:ed:1e:
d5:9b:55:e3:a2:b4:6d:9b:43:8d:75:2f:1d:27:2d:be:59:6a:
f2:8f:8e:7e:e1:0d:63:8d:b7:91:53:92:41:0d:95:d0:3e:e0:
06:fc:b1:be:b6:df:d3:91:34:12:13:0d:12:e4:9a:5a:82:be:
5b:7d:de:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org