Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/hrHdO7QdrJNzn7DSEA75EevEM1c.roa
File: hrHdO7QdrJNzn7DSEA75EevEM1c.roa (raw, json)
Hash identifier: aDO54Vy+Ia2PPhKiwWxjJxBmCwQcJqqfRHBX6O3gTMI=
Subject key identifier: 86:B1:DD:3B:B4:1D:AC:93:73:9F:B0:D2:10:0E:F9:11:EB:C4:33:57
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0B6C
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/hrHdO7QdrJNzn7DSEA75EevEM1c.roa
Signing time: Sun 07 Feb 2021 13:05:05 +0000
ROA not before: Sun 07 Feb 2021 13:05:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 103.136.60.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2924 (0xb6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Feb 7 13:05:05 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=86B1DD3BB41DAC93739FB0D2100EF911EBC43357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:63:5d:15:f7:9e:b9:5f:ff:c8:a7:5a:ae:1b:
94:27:e8:5d:ff:5c:00:5b:dc:46:3f:ef:f3:87:b3:
d6:2d:b4:66:be:7e:11:51:18:96:c2:4e:0e:c2:be:
4e:52:cc:e9:fd:13:d5:cd:e8:86:69:00:40:62:ab:
0f:da:14:94:55:04:ea:ac:1d:eb:90:f6:95:66:47:
30:8e:29:1d:1b:77:c7:47:3a:fb:54:8b:cc:ae:2f:
2c:bb:83:0a:96:d4:3b:cf:ea:b0:9e:86:11:4c:d6:
51:8a:46:10:71:ff:06:ab:40:42:72:58:46:8e:21:
37:3a:fd:6f:8b:c8:5e:e5:25:0a:f3:2b:ce:4c:b9:
72:44:75:45:90:ff:e0:5e:80:59:b3:c0:e9:95:75:
dc:e0:8c:b6:35:0f:bb:4b:89:0a:89:c9:16:83:2d:
e2:50:09:92:ba:62:89:6f:10:30:71:a7:f8:40:fa:
ef:67:b1:2c:4c:3a:7b:7c:5e:e0:6a:e2:ad:1c:76:
33:1a:ae:fb:33:dd:20:71:3d:4e:aa:59:16:02:ab:
57:2b:3b:84:c0:9d:32:4c:6d:32:bc:d6:a7:c8:d6:
d1:27:9a:cd:d5:2a:49:40:50:aa:91:2a:23:cc:f9:
ab:4c:54:99:bf:7d:60:41:fd:85:20:cd:c9:3c:09:
48:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:B1:DD:3B:B4:1D:AC:93:73:9F:B0:D2:10:0E:F9:11:EB:C4:33:57
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/hrHdO7QdrJNzn7DSEA75EevEM1c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:36:d0:cc:2a:fe:df:2e:95:63:80:b6:6e:e6:20:68:e1:a6:
af:00:d4:10:39:e1:83:a6:2c:e0:c1:86:3c:7e:c9:a6:9b:d5:
95:05:21:09:bb:53:5b:9a:71:d4:d7:d7:f1:bc:8b:41:bf:00:
8a:1b:a0:9b:a2:5c:33:74:2c:ea:db:60:c8:1c:fc:0f:1b:61:
a1:5d:7a:b2:cc:14:bd:73:82:e4:6a:95:5a:fa:ec:f1:79:3e:
14:55:6a:1c:d7:de:06:83:4f:b0:3a:c5:d4:13:e8:7a:72:f2:
39:4b:d0:e9:b4:6f:90:ed:fa:bb:8c:83:71:e8:f5:0b:16:ca:
16:18:29:d1:49:d4:0d:1e:44:06:cc:f1:ae:49:e3:9a:12:10:
3b:08:eb:5b:58:f9:ef:f2:72:f2:92:41:4e:a6:30:51:59:ec:
61:19:88:90:bc:33:02:48:fb:4b:1d:d3:42:1a:d8:34:97:6c:
8b:80:ae:a3:9e:e2:29:0d:f2:d1:a7:58:44:f9:83:17:45:d2:
1f:76:cd:f3:ca:c3:85:e9:3c:b1:f2:61:2e:e3:5d:30:3e:c9:
eb:f2:7e:69:ea:c0:87:27:a5:c5:9b:10:2e:bc:cc:b1:bf:07:
c6:25:ae:7e:b0:8f:83:af:30:ea:6b:9b:79:70:8c:27:b7:71:
bd:be:e9:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:52 2023 by rpki-client on console-ams.rpki-client.org