Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DQWL/X0Ne0gjAzjuNBCgEzBQJeQFxzW0.roa
File: X0Ne0gjAzjuNBCgEzBQJeQFxzW0.roa (raw, json)
Hash identifier: 1EdqYexgdbAwf351ml0xMjA13m9jef7JVwtQBKpLgkQ=
Subject key identifier: 5F:43:5E:D2:08:C0:CE:3B:8D:04:28:04:CC:14:09:79:01:71:CD:6D
Certificate issuer: /CN=7CBA374F4F7A0D1E6CB59F8A7B564066C67DD19D
Certificate serial: 062E
Authority key identifier: 7C:BA:37:4F:4F:7A:0D:1E:6C:B5:9F:8A:7B:56:40:66:C6:7D:D1:9D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/X0Ne0gjAzjuNBCgEzBQJeQFxzW0.roa
Signing time: Thu 15 Sep 2022 02:37:59 +0000
ROA not before: Thu 15 Sep 2022 02:37:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131678
IP address blocks: 103.149.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1582 (0x62e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CBA374F4F7A0D1E6CB59F8A7B564066C67DD19D
Validity
Not Before: Sep 15 02:37:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5F435ED208C0CE3B8D042804CC1409790171CD6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:dd:82:6c:72:c3:b1:40:c9:99:12:b1:31:2c:
9e:c9:e4:b5:ac:a8:f4:d4:84:d2:29:06:f1:04:d2:
47:3b:86:94:25:69:e6:4b:3d:42:3e:04:ee:ed:c0:
8c:35:73:5a:b3:25:aa:7c:e6:cb:13:4c:12:14:22:
6a:2c:df:b8:2f:e4:80:9f:f8:35:6b:74:72:30:be:
2b:06:e4:eb:d1:7e:51:e8:88:61:1b:2e:da:01:3f:
4e:dc:ac:b5:ef:0a:80:e0:8c:9a:3f:7c:19:de:86:
9f:68:86:eb:4d:c0:e3:38:84:2c:22:42:d5:af:fb:
1c:bf:45:e3:13:a3:43:33:c6:63:cc:58:cf:db:5c:
9f:6d:69:3d:6f:64:41:3f:ca:94:f2:56:f8:bf:f3:
86:3f:71:e1:4b:e2:63:94:d2:56:2f:5b:aa:9a:ea:
4e:67:e3:af:43:83:ae:cc:2b:d2:14:7e:6c:db:57:
14:a6:41:7d:b9:48:f4:3b:c7:75:0f:95:d0:a0:2a:
34:a0:58:27:f7:d8:cc:64:08:36:b6:0c:8a:ac:32:
3e:d3:44:24:00:ba:e6:ae:41:e8:ca:90:36:b8:4a:
05:30:57:70:9d:cc:91:e6:d5:c1:71:2f:64:83:24:
59:7b:2f:ef:eb:fa:b7:0a:f0:fc:f5:4b:89:75:2c:
eb:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:43:5E:D2:08:C0:CE:3B:8D:04:28:04:CC:14:09:79:01:71:CD:6D
X509v3 Authority Key Identifier:
keyid:7C:BA:37:4F:4F:7A:0D:1E:6C:B5:9F:8A:7B:56:40:66:C6:7D:D1:9D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/X0Ne0gjAzjuNBCgEzBQJeQFxzW0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.149.67.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:2e:df:46:a5:9c:fd:0d:ea:67:b0:77:74:f5:f3:e0:f8:ac:
10:68:19:1f:6e:92:48:bc:95:a3:19:9b:01:e6:32:fc:d0:6e:
82:6b:2b:b3:8c:e4:e5:e7:e6:ca:19:fc:7f:74:76:5c:1c:7b:
88:9e:58:80:60:ef:a3:13:c3:c5:b7:1f:d6:a3:26:df:cc:13:
a2:b4:2c:70:75:7e:2c:bb:4d:37:31:df:f5:5a:43:35:9f:58:
0f:95:e6:df:66:13:75:7a:c5:5b:76:3c:7f:43:db:a4:31:d4:
43:f9:e9:88:57:57:ed:1a:1e:85:99:04:b6:dd:cd:3e:b5:59:
2d:22:7b:a9:f1:9f:f3:91:ce:5d:a4:a6:6b:42:7e:fa:0a:f0:
cb:2a:8a:af:a9:a4:00:4d:f8:a6:dd:45:6d:6f:34:3e:36:4f:
84:f0:9a:b4:cf:43:ab:4b:a0:f1:81:91:a4:7d:63:54:71:f0:
e4:d7:f4:64:42:20:c3:b1:c4:1d:03:42:02:ce:49:fd:9a:41:
6a:4a:72:06:76:7e:a2:b4:95:c6:aa:19:99:8e:9e:bb:13:32:
fe:5c:80:49:52:5c:63:51:fd:2a:f0:bf:c3:08:08:7c:06:bf:
91:03:39:59:e3:68:27:9d:16:24:b2:58:d2:3c:af:b4:ee:10:
b7:51:6a:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org