Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/UIT02dXxuNSlQ9bz2oX-KaDDZF0.roa
File: UIT02dXxuNSlQ9bz2oX-KaDDZF0.roa (raw, json)
Hash identifier: RA4v5ZEHkdfWg6WCAybZtT5dZ3CU+gcn9b3UD3nip6I=
Subject key identifier: 50:84:F4:D9:D5:F1:B8:D4:A5:43:D6:F3:DA:85:FE:29:A0:C3:64:5D
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0A06
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/UIT02dXxuNSlQ9bz2oX-KaDDZF0.roa
Signing time: Tue 29 Sep 2020 10:03:08 +0000
ROA not before: Tue 29 Sep 2020 10:03:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 103.136.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2566 (0xa06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 29 10:03:08 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5084F4D9D5F1B8D4A543D6F3DA85FE29A0C3645D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:14:64:1c:53:54:2f:aa:24:9a:d5:d8:4a:8d:
e9:c6:d2:2e:75:0b:8e:ac:06:07:e5:ab:53:c6:a8:
1f:32:86:bc:b8:d8:3c:6a:49:64:60:24:86:f1:ad:
b9:f9:5e:1e:54:cd:28:78:e6:95:72:62:0c:2a:db:
a1:41:3c:03:a1:cb:29:95:88:89:ca:d3:a5:ea:e6:
9d:3c:86:6d:0a:c0:a9:1a:7c:cb:d1:e0:2f:08:f9:
87:5e:0e:67:3f:aa:54:23:fb:8a:d2:80:5e:3f:1d:
67:04:ef:44:0d:1a:e3:d0:66:c1:0a:44:2d:eb:39:
e1:07:57:a9:8f:2e:31:51:c3:d5:dc:e9:10:4e:e7:
ed:99:96:38:e0:e2:6d:28:67:61:b8:cf:dd:81:db:
02:85:91:02:27:18:d0:12:ec:81:d1:ee:4c:11:f6:
f0:7f:df:f9:bc:0a:de:74:03:4f:a8:4d:d8:1e:88:
33:ea:bb:0f:5f:eb:d3:22:6f:47:6f:a9:e6:e2:38:
ba:e3:d2:c1:9b:23:03:d4:c8:66:0e:b3:ed:b6:34:
2e:28:53:ad:3a:15:2b:d7:29:df:44:c9:e7:50:f6:
1b:e6:9a:ed:8f:88:27:5b:0d:3d:9b:72:65:2e:bc:
21:e2:73:5b:fc:57:26:17:d5:7d:54:2f:08:78:5c:
c6:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:84:F4:D9:D5:F1:B8:D4:A5:43:D6:F3:DA:85:FE:29:A0:C3:64:5D
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/UIT02dXxuNSlQ9bz2oX-KaDDZF0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.61.0/24
Signature Algorithm: sha256WithRSAEncryption
15:ba:77:3e:a6:bb:96:5e:9a:24:16:88:26:f4:6b:c7:15:1a:
40:79:19:ab:bb:7f:be:ee:25:b7:47:c7:92:0d:92:e6:67:f0:
f8:44:32:70:d4:b1:46:3b:21:b6:1d:d0:63:b0:58:03:2d:0a:
80:86:c0:90:9a:a4:68:d8:97:25:11:8c:b0:03:10:25:31:93:
0d:40:e5:3e:51:bd:b7:11:69:f7:ce:e7:bc:b6:11:4c:fa:71:
e5:55:26:4d:91:b3:4b:44:8f:ad:2e:bb:f3:b0:41:9d:ba:ea:
4b:2b:d3:56:43:25:8e:3e:97:f1:fc:a4:14:f7:ce:b7:9c:ff:
5c:af:b2:d5:5c:ba:a2:39:65:c2:c5:cf:71:88:1a:80:40:4c:
d1:7b:63:f0:2e:e6:b7:97:bd:65:4b:e8:b9:2d:68:ad:59:de:
b2:11:6d:25:4c:53:6d:07:3e:1d:22:43:40:19:03:ee:79:c0:
1a:6c:3f:b8:6e:41:a4:65:ea:eb:33:8c:ed:a6:fd:3a:f8:8d:
f2:81:e5:69:90:7b:5f:d7:9a:29:c4:a4:1e:1d:fc:1e:8b:d7:
48:52:f2:ac:0b:d2:c0:3a:38:4b:66:61:16:fb:d3:af:e1:5e:
b8:02:34:2a:0b:b5:e4:ea:65:97:a3:56:b7:04:7c:28:50:f7:
ac:ad:1a:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org