Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/AcGPXYvN_jvGBLmfLds68QYw-Pk.roa
File: AcGPXYvN_jvGBLmfLds68QYw-Pk.roa (raw, json)
Hash identifier: eka97bn4t5rnDgVB+Jaw+N+BwHDP9YkOLMMPageYkJk=
Subject key identifier: 01:C1:8F:5D:8B:CD:FE:3B:C6:04:B9:9F:2D:DB:3A:F1:06:30:F8:F9
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0C14
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/AcGPXYvN_jvGBLmfLds68QYw-Pk.roa
Signing time: Wed 29 Sep 2021 02:36:29 +0000
ROA not before: Wed 29 Sep 2021 02:36:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24168
IP address blocks: 103.136.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3092 (0xc14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 29 02:36:29 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=01C18F5D8BCDFE3BC604B99F2DDB3AF10630F8F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4a:41:86:48:97:c3:77:c5:34:f0:48:62:ee:
1e:05:dc:d4:b6:e5:9a:b1:2d:82:16:09:8c:19:9c:
b5:be:2e:0d:3c:ba:46:0f:47:41:88:23:b0:5e:14:
86:e8:73:cb:b2:2d:3f:0d:4a:94:04:41:ff:0c:e6:
17:5c:39:85:90:97:2d:36:54:b7:40:6d:45:c1:45:
e2:3e:c2:6d:08:2f:e2:53:a7:48:a7:f0:2d:99:4a:
ee:f5:a8:ea:79:fd:30:d0:b1:16:cc:14:44:bb:31:
f0:69:db:06:c0:4a:5e:02:25:22:e3:91:b2:9c:e7:
79:a9:da:e0:7e:99:78:01:cc:16:b3:49:1d:9a:f9:
5f:0a:45:67:14:ca:19:e8:04:a4:a6:27:d5:b1:58:
90:66:19:3e:5c:8f:c3:8b:c9:9c:73:8e:82:79:3d:
ed:b4:a7:38:83:b0:84:eb:f1:63:95:39:24:f6:9d:
ce:7f:ec:3a:d0:3a:c4:87:7e:43:4d:0b:b2:56:27:
04:fc:46:43:46:ed:43:4a:5a:ca:23:79:78:84:4e:
1e:a8:e1:36:ac:44:54:b6:a5:41:7b:fd:3a:e3:58:
ff:ac:6d:46:75:66:f1:9c:42:46:55:02:e7:a4:26:
70:18:de:dd:02:5f:36:84:fd:3c:09:75:46:3c:5f:
8a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:C1:8F:5D:8B:CD:FE:3B:C6:04:B9:9F:2D:DB:3A:F1:06:30:F8:F9
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/AcGPXYvN_jvGBLmfLds68QYw-Pk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/24
Signature Algorithm: sha256WithRSAEncryption
23:dc:90:ea:b6:e1:f9:7a:03:92:f0:81:40:7c:9c:33:97:26:
06:92:f2:0c:05:db:dc:35:be:a5:cd:32:00:77:15:0a:11:d1:
4f:4d:bd:2e:91:42:f6:a5:ba:29:fd:38:bb:bc:6a:94:cb:74:
21:61:3f:71:c4:4a:b3:cf:9c:7a:7d:70:71:d4:b9:cf:41:d4:
ad:01:ac:f3:bb:5e:33:af:f2:b4:1b:01:e5:4e:11:b5:fc:80:
ac:49:38:fa:fd:0b:d6:47:02:7d:a8:76:61:8e:f3:5e:aa:26:
39:84:29:2d:82:7b:a4:b9:c3:9e:f4:2d:f8:5d:d0:9f:2c:05:
9d:be:df:7d:dc:c5:1b:cd:32:a0:c4:2b:3c:03:02:fa:82:f8:
74:5e:d4:57:f1:0c:f2:bd:45:bf:0c:a4:d1:2d:24:f7:c2:55:
bb:e1:5f:8b:fd:96:5c:ee:93:bb:ec:c9:c8:e5:d7:52:61:29:
4f:9d:c6:1b:a0:92:ba:02:86:c2:76:05:26:4e:c4:00:a7:fb:
3d:b4:c0:68:b5:6b:19:71:16:0c:fe:5c:16:b9:ce:6e:79:0d:
83:96:b9:8a:de:9e:83:9a:ac:1b:21:4d:db:a9:27:23:42:b2:
d0:f5:af:20:48:e4:c2:a3:d3:bc:2b:86:83:fd:1d:e9:77:66:
e5:ab:8c:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org