Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/YuyDONOnYz8zNmPXDyKt-LyLP6s.roa
File: YuyDONOnYz8zNmPXDyKt-LyLP6s.roa (raw, json)
Hash identifier: AaMbaYdw84MXGWAtGogZjShyu8npPxUc3+ulRepOxpU=
Subject key identifier: 62:EC:83:38:D3:A7:63:3F:33:36:63:D7:0F:22:AD:F8:BC:8B:3F:AB
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0C0D
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/YuyDONOnYz8zNmPXDyKt-LyLP6s.roa
Signing time: Wed 29 Sep 2021 02:36:27 +0000
ROA not before: Wed 29 Sep 2021 02:36:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18424
IP address blocks: 103.136.60.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3085 (0xc0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 29 02:36:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=62EC8338D3A7633F333663D70F22ADF8BC8B3FAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f9:4c:e2:fa:44:df:47:5f:6b:c1:08:bb:e7:
6c:13:4b:b6:d7:7d:fe:2c:9a:2f:65:cf:40:27:0b:
22:d1:c3:b0:1b:61:c5:04:76:99:bf:d4:12:ce:ed:
f8:dc:cb:5e:9f:b5:6f:7b:0b:a1:52:bf:15:43:da:
d8:82:fa:10:a8:b7:ed:3f:6e:7e:fe:ec:6e:90:1e:
57:dd:c3:78:2d:44:ba:ee:1c:e1:c2:12:ce:93:2b:
c3:b3:92:72:a6:74:6a:75:80:dd:80:de:26:ae:de:
15:74:a1:ee:17:85:5a:81:e6:b3:f5:03:a5:96:b4:
93:5f:24:85:bb:e7:e0:85:df:35:77:d2:57:4b:8d:
bc:6a:b3:fd:54:43:ea:99:5c:94:e9:8f:d1:bb:04:
72:e6:ff:4a:42:c1:c5:f1:16:81:b3:3f:eb:77:be:
de:7c:d5:7e:c8:0b:03:d5:1f:f0:11:ec:5b:36:dd:
3f:9b:9f:a6:28:83:31:d3:54:47:26:e3:db:4e:28:
98:0f:87:5a:1f:e7:a7:c0:5c:a9:8b:62:72:42:58:
c0:d0:79:bc:75:19:31:29:2d:3b:dd:03:71:1f:d6:
bb:4c:97:43:eb:33:7e:b3:54:95:75:6e:e3:28:18:
4a:31:a6:92:d1:aa:9e:a9:b4:9f:df:88:7f:62:1b:
eb:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:EC:83:38:D3:A7:63:3F:33:36:63:D7:0F:22:AD:F8:BC:8B:3F:AB
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/YuyDONOnYz8zNmPXDyKt-LyLP6s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/23
Signature Algorithm: sha256WithRSAEncryption
51:aa:01:47:28:d5:fa:75:d9:41:c2:c8:b1:e9:da:f7:51:25:
fa:5c:0e:7e:26:65:f4:db:d1:70:f8:f5:4c:94:41:3a:f2:db:
5c:53:79:a9:12:84:0e:7b:52:a1:10:e5:ec:5c:1e:d9:48:99:
c8:34:1f:79:e9:17:43:fd:54:ae:fc:5f:9d:f4:96:da:db:28:
fa:8c:3f:97:05:73:8f:92:ee:3e:a9:38:f1:a7:d3:c7:9b:d0:
e2:c7:40:58:57:0b:3e:a8:77:d2:42:ac:fb:9e:fe:b4:70:ae:
b2:f2:c7:77:f9:7f:4c:d5:b9:2d:36:e7:2d:84:8c:0c:77:07:
89:db:86:84:a2:e4:dd:8d:96:a5:62:55:a5:4b:b5:3e:b3:72:
f8:cb:90:1e:6f:3c:b1:96:2d:f9:2d:2f:43:7b:6b:df:4a:44:
09:0c:0c:b7:ad:a8:b5:9b:08:82:45:e9:fc:05:b1:e9:75:ea:
92:10:c1:6c:e5:2f:32:3a:c4:81:ee:9d:74:b9:11:e6:c7:69:
fe:42:db:90:b8:77:72:0c:94:d9:4e:05:24:b3:39:35:d8:68:
e1:59:17:9f:36:35:5f:23:68:fb:5b:8b:6c:b6:c7:5d:6a:49:
da:f4:9a:c9:f1:28:52:ff:bc:8e:3b:7a:4a:5c:5c:a8:d7:30:
51:4e:e2:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org