Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/Hs6sGzNGEmMpMVFqyg1eOs3_pmk.roa
File: Hs6sGzNGEmMpMVFqyg1eOs3_pmk.roa (raw, json)
Hash identifier: rMt/Kejw7wVHoOTr+0ctNIY1p5wsZzHvwp3VswgxSA4=
Subject key identifier: 1E:CE:AC:1B:33:46:12:63:29:31:51:6A:CA:0D:5E:3A:CD:FF:A6:69
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0B64
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/Hs6sGzNGEmMpMVFqyg1eOs3_pmk.roa
Signing time: Sun 07 Feb 2021 11:53:24 +0000
ROA not before: Sun 07 Feb 2021 11:53:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131641
IP address blocks: 103.136.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2916 (0xb64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Feb 7 11:53:24 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1ECEAC1B334612632931516ACA0D5E3ACDFFA669
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:42:bd:53:83:8d:5b:9d:3a:54:29:18:c9:1c:
c8:6f:98:c3:4a:ce:84:93:02:f4:77:8c:60:01:e5:
41:3a:0e:a0:17:68:9b:d7:7b:50:87:09:45:bf:6f:
73:5a:2a:c6:bd:1b:b8:5c:4c:ea:99:61:cf:12:fd:
b8:c8:b2:1b:52:5d:9d:f3:2b:56:ec:09:76:6a:d5:
7c:54:ec:a6:76:32:e0:d1:b3:b7:e7:72:1a:0d:a6:
55:94:f1:d2:9c:61:d9:f9:31:a2:26:63:7b:6a:cf:
0e:49:f9:34:d3:f3:07:6f:fc:1a:dc:e4:3e:ee:86:
e5:bd:99:12:69:bc:5f:eb:08:73:2c:2c:9b:7f:56:
e2:60:39:1e:b9:41:7c:f7:7f:7a:d4:9d:87:08:73:
06:23:fb:ff:45:5a:50:70:01:0d:b4:6a:52:59:2c:
1b:86:62:ad:c8:4e:6c:f0:3a:00:c7:2a:23:27:06:
36:89:44:f4:6f:97:8f:85:fa:20:b2:46:e0:c2:5e:
15:18:cb:e8:52:8f:1c:0e:74:9b:d6:54:36:17:25:
6b:38:d8:10:a6:0b:f2:18:74:5a:9b:bd:24:8c:a0:
68:25:24:01:ed:35:72:0e:33:77:58:24:9a:9f:bc:
8e:05:14:cb:78:32:56:0d:1e:39:30:52:64:01:f3:
83:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:CE:AC:1B:33:46:12:63:29:31:51:6A:CA:0D:5E:3A:CD:FF:A6:69
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/Hs6sGzNGEmMpMVFqyg1eOs3_pmk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.61.0/24
Signature Algorithm: sha256WithRSAEncryption
69:f9:78:ac:58:d3:21:18:70:63:fd:63:2c:b5:72:0b:95:8a:
4f:7a:14:9e:f9:c3:d7:ef:50:41:3c:d0:fb:ee:a0:d1:c5:42:
25:63:ec:45:ce:4d:61:89:f2:6f:4b:75:35:d2:0e:81:a9:4c:
14:30:8e:05:d9:31:3d:5e:db:18:26:96:1a:5a:61:09:a4:fc:
79:cd:4c:09:c3:1c:f3:02:50:e5:5c:67:b4:6e:90:68:ff:e5:
6b:b6:64:77:a3:d6:63:e4:86:73:dd:f6:9b:b7:8f:f8:b0:14:
a7:8b:31:fb:41:a0:33:2b:6c:ee:50:6f:30:db:fb:6e:55:c7:
98:73:49:2c:a5:82:f3:1f:1f:a7:26:1e:28:31:25:17:60:f9:
8b:6c:8a:20:76:13:cd:4c:c7:79:4e:fc:3c:8a:91:29:60:22:
f2:f8:94:46:e8:e8:29:70:a3:19:f5:48:a9:60:68:5a:f2:f2:
ae:bf:70:bd:ad:a2:67:15:e5:dd:f9:28:dd:6a:9c:8d:a6:5f:
05:e6:09:4b:8b:54:3e:3b:cf:77:09:98:ce:9d:1d:a1:6a:58:
ad:97:42:c4:88:a8:b1:d1:d0:70:17:97:77:7f:ef:b1:f9:0d:
6a:33:ae:9d:d9:9e:8d:33:e5:c9:22:b4:da:5c:d8:a4:44:6e:
86:90:69:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org