Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/Pq4UE1jW5o3Af2WXEXWOlt3ySm0.roa
File: Pq4UE1jW5o3Af2WXEXWOlt3ySm0.roa (raw, json)
Hash identifier: X7gSyWIE+VscUMd4t1cUBYEkhIyxJTukDzMtjcQzdQw=
Subject key identifier: 3E:AE:14:13:58:D6:E6:8D:C0:7F:65:97:11:75:8E:96:DD:F2:4A:6D
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0B6E
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/Pq4UE1jW5o3Af2WXEXWOlt3ySm0.roa
Signing time: Sun 07 Feb 2021 13:05:06 +0000
ROA not before: Sun 07 Feb 2021 13:05:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131641
IP address blocks: 103.136.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2926 (0xb6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Feb 7 13:05:06 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3EAE141358D6E68DC07F659711758E96DDF24A6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2d:c2:1c:5a:1f:28:f9:6d:29:15:db:0d:ca:
44:33:88:90:5a:97:d1:65:04:d4:5d:1f:d9:f0:1c:
e4:93:31:17:47:cb:16:94:e5:68:2b:69:54:fd:cc:
61:98:af:c8:e4:53:fd:df:d8:0f:af:21:c8:65:b2:
bd:c3:5e:80:3e:40:ea:56:f3:c1:00:97:b2:2b:f1:
ee:93:36:a9:63:85:4e:19:18:68:9e:4f:a9:29:a8:
45:22:0c:ea:88:aa:a3:8a:8d:2d:7f:30:bb:79:90:
7e:7c:c3:73:bd:82:38:13:ca:b5:cb:a6:6e:15:65:
24:2b:71:9a:ff:b3:6d:aa:46:f7:1a:22:f9:cf:a5:
37:23:90:7e:45:2a:0d:30:8b:7f:4e:df:b9:ef:45:
6f:1c:40:f7:fd:9b:9b:57:6f:9f:ac:41:07:5d:0a:
46:e9:90:87:c5:2b:bf:ac:9e:27:d9:a8:6a:b4:c4:
c5:d6:51:52:04:8e:f8:fc:f2:e3:2b:0e:1d:22:7d:
42:99:55:ce:34:88:18:9e:4a:d8:ad:85:86:c3:f8:
3f:7c:5e:fc:d4:5e:89:f3:ee:f9:5a:ba:66:c4:de:
cf:ba:9c:d1:1e:70:ae:41:ae:e8:5b:7e:5d:6b:ab:
d9:1d:6b:9e:47:85:7e:fb:37:fe:97:7e:d9:e8:ce:
20:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:AE:14:13:58:D6:E6:8D:C0:7F:65:97:11:75:8E:96:DD:F2:4A:6D
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/Pq4UE1jW5o3Af2WXEXWOlt3ySm0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:71:75:9b:ca:49:3b:fd:dd:5e:ec:6b:46:b9:6d:f9:46:ca:
a8:ae:aa:5e:c8:5d:1f:94:07:cd:dd:21:0c:6d:dc:08:62:29:
de:b6:cb:8e:e7:80:f1:85:df:6d:2a:9f:c2:c5:08:54:36:8f:
a4:81:7d:99:f2:f7:ab:40:1c:20:95:91:ad:0a:00:ac:59:94:
da:b2:43:26:ef:c3:44:e5:46:87:7e:27:56:b5:22:2c:e0:ee:
fd:6d:33:7d:45:52:8b:41:7b:aa:9b:17:fa:7f:22:68:f1:bd:
50:dd:76:92:e0:91:08:c7:7a:d6:0e:8e:f5:0c:7e:d0:48:11:
a9:ce:63:e5:cb:92:2b:0a:f0:61:13:f6:8e:f5:a1:3e:5d:c5:
20:49:91:f2:58:3d:84:7e:05:45:7c:75:a0:1f:2e:41:27:20:
da:9d:9e:23:0a:a9:38:36:63:92:03:99:1f:df:ba:c9:0a:8f:
6c:97:00:7b:13:6f:77:02:d0:0f:35:ef:d6:5b:87:eb:d2:11:
ed:7a:df:c5:c2:40:12:42:5e:42:92:cf:6b:52:e6:3d:54:4f:
66:3e:01:ec:d0:90:ee:8e:45:87:ec:8b:3d:1e:7c:4b:b6:5c:
ca:b2:70:7a:4b:03:b8:6f:72:58:f8:16:d5:ba:fe:a8:7b:4d:
12:24:7f:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:00 2023 by rpki-client on console-fra.rpki-client.org