Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/1GHvVEx2HaN-unondzDVimjNooc.roa
File: 1GHvVEx2HaN-unondzDVimjNooc.roa (raw, json)
Hash identifier: d8Tzd32ZGWpgRAxvsCPsXm+25byBBpuIE4yE9flP1Uc=
Subject key identifier: D4:61:EF:54:4C:76:1D:A3:7E:BA:7A:27:77:30:D5:8A:68:CD:A2:87
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0C10
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1GHvVEx2HaN-unondzDVimjNooc.roa
Signing time: Wed 29 Sep 2021 02:36:27 +0000
ROA not before: Wed 29 Sep 2021 02:36:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24168
IP address blocks: 103.136.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3088 (0xc10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 29 02:36:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D461EF544C761DA37EBA7A277730D58A68CDA287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5d:4b:1f:e2:94:2c:0d:80:c2:aa:f6:98:00:
c7:44:9f:c6:76:c2:44:2c:52:b9:5c:a6:fb:f4:33:
05:b1:34:1d:bd:90:7b:c2:b1:fe:0f:a4:35:b3:14:
20:73:a3:c0:38:24:66:12:d9:cc:9f:7c:2e:86:19:
9d:10:d6:8a:44:81:9c:ba:5a:91:d2:d5:d4:23:1b:
b4:c9:d9:68:9e:17:30:7f:b2:ff:26:e0:b2:97:e4:
53:b5:77:29:d8:b1:15:c0:aa:17:da:f8:f1:84:f2:
e5:82:60:1e:48:11:02:6e:fd:e4:45:8d:55:d5:c4:
55:c0:92:e7:e6:6c:99:19:a8:ef:7d:10:af:10:e3:
83:2d:03:1e:de:51:8a:ee:24:c3:56:1d:b3:42:e4:
18:71:e0:b0:4a:56:36:22:6e:36:c8:79:ce:b1:59:
85:05:f1:6f:0f:43:d4:58:b4:6e:be:a5:3f:97:8d:
c3:1f:2e:60:cf:7e:9d:aa:c7:e4:33:d9:9d:dc:20:
61:fa:67:a8:c5:34:d9:75:77:e5:83:dc:56:7b:b7:
d0:03:6e:e3:17:cf:74:c1:12:ae:9d:51:8e:a4:57:
8d:40:64:23:e6:37:de:b2:e4:8d:29:5d:34:0b:8e:
92:3e:3e:4f:c1:8a:fd:43:40:cf:16:03:48:43:ec:
77:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:61:EF:54:4C:76:1D:A3:7E:BA:7A:27:77:30:D5:8A:68:CD:A2:87
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1GHvVEx2HaN-unondzDVimjNooc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.61.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:b9:42:c3:81:ae:68:ec:cf:7b:e7:8c:f2:b3:c8:b5:7c:6c:
0a:4a:a4:77:f5:11:c1:32:4d:bb:a5:81:43:ee:d5:2c:9d:6c:
e0:c2:83:96:03:e9:04:f1:09:12:e8:26:12:aa:fa:8f:36:75:
95:85:08:a8:7a:e8:fa:bd:1b:10:75:ff:8c:55:0e:5c:a8:bc:
2e:fe:1a:33:87:06:06:e6:c3:4d:ad:05:84:d2:9c:f3:66:0e:
87:11:67:b7:5e:22:12:cb:a0:30:38:90:a4:ce:08:3a:a5:eb:
d0:b1:ee:19:81:fb:aa:76:2e:ed:96:b7:ee:0c:41:28:1b:3b:
27:3f:d4:29:de:7b:8f:1c:47:cd:e0:36:8f:0b:62:9f:7c:50:
76:4d:cf:ea:ab:0d:b4:7f:42:fd:34:b2:59:0e:ca:ef:0b:f5:
76:96:95:0c:88:91:77:be:91:1b:84:5d:e5:c2:b4:30:d3:86:
ec:b8:2e:be:51:65:c3:3e:a7:98:c8:11:6b:0d:62:68:87:a1:
8e:98:71:6e:dc:17:b8:4b:96:b2:25:20:3a:3d:71:92:4f:58:
78:4f:53:4c:34:ec:44:29:b6:c4:b8:9a:6b:8a:83:34:94:63:
27:92:58:c7:b7:05:91:3b:25:d4:9e:e6:f3:e1:28:4f:e7:51:
cf:17:3e:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org