Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/4G4tFNZtNis3ZkWIO37Zl9bftuU.roa
File: 4G4tFNZtNis3ZkWIO37Zl9bftuU.roa (raw, json)
Hash identifier: VN0aPctWe0bxAmqgXr+TCKZdzMbgb7DNIHsLEM/Qt8M=
Subject key identifier: E0:6E:2D:14:D6:6D:36:2B:37:66:45:88:3B:7E:D9:97:D6:DF:B6:E5
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0C11
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/4G4tFNZtNis3ZkWIO37Zl9bftuU.roa
Signing time: Wed 29 Sep 2021 02:36:27 +0000
ROA not before: Wed 29 Sep 2021 02:36:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131641
IP address blocks: 103.136.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3089 (0xc11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 29 02:36:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E06E2D14D66D362B376645883B7ED997D6DFB6E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:1e:ff:f0:5e:1f:52:6c:7c:8f:05:ec:1c:b1:
89:70:1f:03:e9:ac:da:ab:a9:10:fc:52:d4:bc:03:
76:cf:20:02:43:f1:d0:0b:cb:f8:eb:f1:a4:97:88:
47:4a:0c:f2:54:2c:7f:6d:4e:89:44:e8:5a:12:f2:
fc:51:fd:ef:25:e0:08:b4:df:9d:73:c4:9f:08:53:
90:da:8b:88:a1:52:1d:be:14:2a:6a:c5:ef:15:89:
f8:17:70:ab:1b:74:0a:45:4c:0d:4b:b5:39:54:cb:
32:43:91:43:5c:6a:34:f9:c2:07:25:02:fe:fb:a2:
40:62:3c:58:7e:6c:d5:aa:3a:1a:c6:55:33:8e:41:
ba:b5:d2:06:c4:16:75:5c:ec:51:53:18:55:fe:6d:
a6:33:bc:e9:b8:47:ea:8e:40:c0:59:4a:26:6e:b8:
63:70:21:c7:48:72:ae:2a:64:4b:6f:18:dd:0a:3d:
d9:1a:59:48:80:13:b6:a7:ed:05:f6:41:22:d8:f4:
45:df:e1:9c:c3:1c:7c:83:96:8c:74:e8:ea:29:94:
47:2c:6b:6f:e3:39:ca:60:e8:03:09:75:fd:6c:f0:
47:64:74:ed:37:e4:cd:57:de:d8:f6:23:dc:ce:86:
58:5e:90:f7:54:fa:71:2c:48:a4:79:77:0c:85:67:
49:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:6E:2D:14:D6:6D:36:2B:37:66:45:88:3B:7E:D9:97:D6:DF:B6:E5
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/4G4tFNZtNis3ZkWIO37Zl9bftuU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.61.0/24
Signature Algorithm: sha256WithRSAEncryption
98:a0:98:17:72:8a:6a:b3:30:02:c6:9c:62:e9:c9:0f:e4:2b:
50:9a:fb:0c:a1:80:a4:7f:1c:45:e3:ed:d8:69:ce:94:b2:d4:
2d:07:4c:99:25:d1:66:95:23:ab:94:48:73:a4:42:12:0e:b3:
65:f9:e8:71:f2:78:37:6e:1b:d1:a5:ff:41:91:13:8f:a8:66:
bb:f6:38:01:13:63:de:b7:ba:05:ea:21:87:a6:a4:70:24:0c:
24:2f:55:09:86:cb:f9:c1:93:f0:e2:6c:87:0d:2e:e7:e7:fe:
e8:11:c9:66:c5:c6:4d:8b:f0:b2:67:21:d4:7a:35:29:68:77:
87:d7:e0:30:f2:6b:b5:8f:11:62:9f:73:2f:fc:2d:16:f2:8a:
de:b3:f5:e0:ee:20:b0:aa:09:13:75:20:d7:ad:42:b0:aa:ce:
76:59:d7:2c:09:83:67:f7:21:36:2f:7b:e9:fb:ea:d6:0f:24:
ac:5f:a4:c0:4e:6a:cf:e1:92:41:25:fb:a8:13:4f:b8:86:36:
3c:2b:d1:7f:98:2f:d1:b4:76:f8:3a:e7:4b:d3:48:2d:3c:38:
70:fa:2b:f0:7d:bb:b9:26:6e:af:3c:b8:ef:56:8d:dc:a8:03:
1e:b6:e5:1c:6d:23:bc:ab:ee:ab:b0:33:5b:65:d6:f8:64:2a:
0c:3e:de:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org