Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/RGlXbujO9lGVBWvlyPTgXHXyyiQ.roa
File: RGlXbujO9lGVBWvlyPTgXHXyyiQ.roa (raw, json)
Hash identifier: VjYkJU5cXpoPtl/njaDO5GcNY8Emg5JrS2HlzSBV/7E=
Subject key identifier: 44:69:57:6E:E8:CE:F6:51:95:05:6B:E5:C8:F4:E0:5C:75:F2:CA:24
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0D05
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/RGlXbujO9lGVBWvlyPTgXHXyyiQ.roa
Signing time: Thu 15 Sep 2022 02:37:08 +0000
ROA not before: Thu 15 Sep 2022 02:37:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131641
IP address blocks: 103.136.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3333 (0xd05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 15 02:37:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4469576EE8CEF65195056BE5C8F4E05C75F2CA24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c4:51:a2:81:b5:7e:0b:78:18:51:a9:ca:41:
9f:d5:5c:15:ee:4b:7f:44:ab:26:e7:1f:8f:20:7f:
45:6d:32:8c:1b:ce:0c:06:36:65:09:52:ff:8d:7f:
e0:e9:ec:a2:23:7a:ff:88:b6:0a:2e:b0:39:10:fb:
d2:e1:c2:df:b4:ed:5f:43:57:03:98:83:37:64:e4:
42:26:ee:85:bb:38:1d:94:4f:2d:ca:21:d8:06:70:
53:d8:18:0f:e7:ed:e9:5d:5f:7c:8d:c0:a4:a4:f2:
f3:6f:99:3b:81:fb:48:9f:ae:83:49:9a:90:04:6a:
a0:22:d4:57:7a:4d:d6:19:eb:6a:05:b2:85:86:26:
b5:c2:03:27:ac:f8:2d:a3:1c:16:04:4c:f5:43:3a:
81:6e:61:2e:e7:c7:f7:a0:13:e6:4f:02:a8:a6:50:
53:fe:57:bd:22:90:46:2c:65:ef:86:08:0e:f6:c0:
fb:1b:80:be:dd:8c:c4:a9:a7:bf:72:d1:a2:78:38:
21:95:87:51:44:fa:02:48:5e:a1:e9:a7:a9:aa:8e:
d2:0d:cd:76:7a:60:13:87:3b:2f:82:90:6d:e7:71:
a7:97:af:37:49:34:2a:a4:43:d3:49:9c:a6:f7:4e:
fe:7c:ee:24:7e:38:e7:1a:9c:66:14:e2:5a:63:28:
b9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:69:57:6E:E8:CE:F6:51:95:05:6B:E5:C8:F4:E0:5C:75:F2:CA:24
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/RGlXbujO9lGVBWvlyPTgXHXyyiQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/24
Signature Algorithm: sha256WithRSAEncryption
87:60:ca:fa:a0:14:0a:2b:b9:4f:ba:c1:f2:61:40:f4:01:03:
55:f6:11:dd:76:45:21:3c:50:43:fb:e7:45:e2:ec:aa:d0:b9:
68:92:38:a0:6f:35:cb:25:ea:4c:97:e4:f8:6b:ac:91:d2:5d:
f8:fe:fc:18:3d:7b:4e:f4:12:c6:ff:ca:72:82:07:ad:c5:a4:
00:a3:86:cc:c4:e4:f7:10:91:fa:f8:e3:3d:81:4d:2e:de:01:
d8:c0:2f:2b:f9:9d:53:47:a5:c6:9b:07:94:91:49:cd:81:08:
e2:77:60:dc:85:6a:9b:1f:3f:d1:4d:3a:fa:18:ec:40:c5:b7:
8a:84:41:9b:81:67:44:fb:51:aa:dc:10:5e:28:b4:93:e7:9b:
34:67:6f:f9:9b:c6:7f:e8:77:31:0a:3a:6f:a7:3f:b2:38:18:
7c:99:a2:35:4c:69:d4:de:a1:33:7f:b0:e3:1c:27:aa:bb:2f:
e5:9e:9a:4c:32:57:1a:dd:46:0a:21:00:7d:3d:f9:28:6c:c1:
2d:9a:ce:d1:47:5c:d0:1d:30:4a:7d:b1:eb:ec:ca:97:e9:cf:
79:a6:c4:24:0e:04:50:f1:c8:22:bb:33:ff:95:94:3d:4a:8e:
f9:f6:49:1b:0c:7e:22:c6:14:ef:9f:95:dc:1a:35:e4:87:87:
cd:9f:a3:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org