Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/TiQvWoLuvwhinLGR9PoCja1iikM.roa
File: TiQvWoLuvwhinLGR9PoCja1iikM.roa (raw, json)
Hash identifier: sq5Li3o0DUQSVVysRznUyyRRKdBAo/rzAqHOiz+oXJY=
Subject key identifier: 4E:24:2F:5A:82:EE:BF:08:62:9C:B1:91:F4:FA:02:8D:AD:62:8A:43
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0B66
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/TiQvWoLuvwhinLGR9PoCja1iikM.roa
Signing time: Sun 07 Feb 2021 11:53:26 +0000
ROA not before: Sun 07 Feb 2021 11:53:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 103.136.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2918 (0xb66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Feb 7 11:53:26 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4E242F5A82EEBF08629CB191F4FA028DAD628A43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:db:ec:78:45:1c:cc:b5:0e:43:2c:f4:25:24:
b2:f3:e6:e7:ea:3b:a5:f0:d6:bf:f1:6a:e9:a5:23:
f2:e5:0e:03:2a:cb:83:45:c9:07:87:87:f3:3e:5e:
07:08:ad:03:d6:f0:b2:5a:ba:6a:56:07:11:a3:23:
36:65:e7:e6:6a:be:93:3e:23:9a:30:b2:f5:92:7f:
9b:63:4a:e4:9d:ba:ee:15:38:33:a5:5e:b6:0e:33:
9d:7a:ea:a8:9a:67:d6:83:ff:73:5d:86:73:57:83:
9f:66:97:e6:a9:04:88:c3:d9:be:88:1d:cf:e3:fd:
1e:84:25:bc:01:c8:01:bd:03:64:04:bb:ea:fa:fa:
ea:6f:8c:a5:27:71:64:09:89:e4:94:50:22:74:43:
24:56:e1:24:52:fe:1e:79:02:03:9e:2c:44:13:27:
ce:a4:91:e3:ab:ab:cd:3e:2a:b4:3b:fc:d3:df:c2:
c5:3c:1f:51:89:91:b6:68:81:70:09:c0:9a:46:91:
7c:0f:27:50:78:d8:62:dc:5e:13:b6:12:5a:0d:10:
e5:8a:fb:05:86:72:a3:01:b4:b1:a2:21:2e:b7:ae:
b7:c4:c0:df:f8:a2:d9:f6:d6:20:ce:64:30:28:75:
75:4e:ee:5b:1d:01:69:fa:30:f6:a8:f1:e3:ed:da:
8a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:24:2F:5A:82:EE:BF:08:62:9C:B1:91:F4:FA:02:8D:AD:62:8A:43
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/TiQvWoLuvwhinLGR9PoCja1iikM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.61.0/24
Signature Algorithm: sha256WithRSAEncryption
80:cc:94:de:58:ce:a0:4e:0e:0d:5d:36:29:f9:3b:85:a8:35:
bc:47:29:0c:ed:1b:f9:98:9d:cd:56:93:b3:7c:80:52:8d:e3:
85:15:11:27:01:39:50:18:b5:3c:6c:5d:d1:02:56:da:00:70:
aa:e8:dd:21:be:be:a2:10:db:5b:61:1b:af:5d:dc:b0:aa:0b:
2e:33:1b:4a:e0:49:80:e4:1d:1c:ed:61:cf:66:ec:19:6a:02:
d3:48:cb:bf:ba:80:6c:8f:fc:dc:9b:be:ea:b8:1f:06:96:5c:
96:01:ed:ab:6a:4b:b3:54:f6:59:dd:5f:75:25:5d:10:06:7b:
3a:12:be:ea:75:58:80:cc:33:f6:4e:19:e0:3d:5d:3b:be:7e:
ed:0d:eb:cb:f1:c0:e0:9b:e5:f5:73:dd:09:f1:fd:72:c1:91:
d4:16:50:d2:a5:32:06:a1:98:cd:9d:45:04:9e:29:4b:96:48:
19:51:64:15:3c:8d:a8:20:ba:6d:d6:b6:1e:36:78:cb:c5:f1:
83:84:6a:65:ef:c2:05:fb:c2:da:91:4c:92:35:c5:ed:30:5f:
de:84:88:19:00:da:04:13:ad:63:5d:7a:09:c9:a1:f4:02:08:
3d:3a:68:69:c1:4f:fc:a2:13:a7:9d:ab:54:f4:31:e4:fd:fb:
6d:98:d1:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org