Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/SnUC3_BP9qW-bFN0ejWoafIKVYI.roa
File: SnUC3_BP9qW-bFN0ejWoafIKVYI.roa (raw, json)
Hash identifier: RRkdxbrwJWARscHQF/2TsQz0zrqrmlpFxCkTvxNkdrM=
Subject key identifier: 4A:75:02:DF:F0:4F:F6:A5:BE:6C:53:74:7A:35:A8:69:F2:0A:55:82
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0C3F
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/SnUC3_BP9qW-bFN0ejWoafIKVYI.roa
Signing time: Wed 24 Nov 2021 03:07:58 +0000
ROA not before: Wed 24 Nov 2021 03:07:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18424
IP address blocks: 103.136.60.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3135 (0xc3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Nov 24 03:07:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4A7502DFF04FF6A5BE6C53747A35A869F20A5582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:bd:52:79:a9:5c:b5:37:e1:ab:c2:29:ca:2e:
7b:84:3a:da:66:83:44:44:19:75:fa:fb:a0:d8:59:
18:4b:8e:aa:6d:bd:3d:05:0a:3d:63:b0:6c:6f:58:
43:04:66:3c:69:1b:45:54:c8:15:48:70:d9:07:a4:
17:0d:e9:53:99:2e:2d:b9:11:8b:5a:e1:a9:4f:6e:
cb:11:8c:5e:f2:f7:2b:59:02:43:23:06:34:ac:37:
8b:84:43:de:52:39:e2:ab:fa:0f:4e:0c:a0:9c:84:
7a:94:1d:d8:e7:cc:2d:71:3b:32:c6:4f:37:53:51:
02:12:af:9e:dd:62:61:0f:08:b5:22:1c:fb:a4:68:
cd:58:f4:38:11:d8:77:08:b5:bd:20:c5:7a:44:0b:
a9:e6:ad:65:59:b9:1d:f8:22:df:39:1e:a6:a5:8f:
ba:7c:58:a1:9c:f9:a4:d5:f8:94:66:ab:23:1c:0b:
59:5e:f9:6d:ca:e3:f0:38:f1:76:e1:95:b1:18:bb:
3e:80:e2:4b:65:72:a2:79:e8:0c:03:48:42:35:58:
68:09:71:c1:0e:9a:f1:42:0d:1c:84:5a:5f:e9:7e:
7e:6e:2d:e8:0b:75:c0:74:bc:ee:52:39:cf:0d:bd:
a8:bc:13:5b:ef:f7:11:11:f7:bc:44:f1:5e:11:4b:
05:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:75:02:DF:F0:4F:F6:A5:BE:6C:53:74:7A:35:A8:69:F2:0A:55:82
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/SnUC3_BP9qW-bFN0ejWoafIKVYI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:44:b2:03:db:a2:88:af:81:3a:22:df:58:b8:72:bd:74:9d:
f7:c5:bc:f5:0c:85:f3:28:2e:3f:cf:77:fe:2f:d4:62:38:0f:
77:87:ef:48:91:ac:19:db:4d:b0:80:06:b5:18:bc:8a:7b:33:
ee:99:89:b6:69:37:7a:00:e9:f1:91:5f:9b:4f:b4:22:e5:c8:
44:4c:55:16:3d:c6:60:25:a1:d6:81:70:cd:be:c3:7a:43:04:
73:22:d6:0b:34:be:7a:6f:c9:b0:bd:6b:7f:d6:e9:00:1b:44:
d7:ff:9c:bf:f5:b4:91:87:ac:9b:d9:b9:d2:ea:67:a8:ec:67:
86:7f:90:c6:66:db:c4:36:fc:2c:b6:aa:b9:41:e2:0b:0e:26:
7c:eb:b9:51:e1:08:40:53:c4:8f:d4:c4:d8:13:ad:2a:c8:80:
7e:8a:f7:be:da:7e:5c:9a:9a:ca:c8:0f:c5:fd:8c:24:e8:f2:
6d:84:30:9f:47:1f:0d:5f:4f:15:a0:e3:e3:43:24:40:e2:f6:
68:8f:47:b5:18:90:b1:34:5c:6e:7e:79:56:66:bf:5a:ea:7e:
df:b4:1e:8c:a6:66:11:eb:b1:14:dd:34:de:0e:79:8a:a6:18:
07:8e:6e:ea:f0:fc:9a:22:d5:19:9c:77:70:4e:c3:d4:90:86:
49:8a:81:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org