Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/k8iaoRemc0XZubl-QKTMV-0AkfQ.roa
File: k8iaoRemc0XZubl-QKTMV-0AkfQ.roa (raw, json)
Hash identifier: iK70YUxAqq1KgO0iUiI3TGk6Y51dLdDQN9yXIzGk05w=
Subject key identifier: 93:C8:9A:A1:17:A6:73:45:D9:B9:B9:7E:40:A4:CC:57:ED:00:91:F4
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0B6A
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/k8iaoRemc0XZubl-QKTMV-0AkfQ.roa
Signing time: Sun 07 Feb 2021 13:05:03 +0000
ROA not before: Sun 07 Feb 2021 13:05:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18424
IP address blocks: 103.136.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2922 (0xb6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Feb 7 13:05:03 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=93C89AA117A67345D9B9B97E40A4CC57ED0091F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:3e:8a:11:93:93:09:4a:c9:95:34:7a:aa:6a:
68:bf:22:96:fe:30:b5:a0:06:2a:f2:9e:08:c5:bc:
a9:78:cb:14:20:89:87:4b:b8:99:f4:74:47:ed:1d:
18:b8:3e:23:ff:61:32:c0:d4:bb:7b:7a:4f:80:cf:
42:32:41:7d:05:fc:fa:98:4b:c5:60:d8:8d:ec:bc:
dc:17:c8:0b:55:50:f1:bc:ef:85:16:67:da:8f:62:
ec:08:c9:99:8f:71:e7:c0:61:a3:0e:4a:6b:2b:87:
52:79:5c:c3:3e:78:bd:44:09:59:7e:fc:ff:4f:c0:
9f:2f:b3:de:a6:1b:16:76:9f:26:5b:95:2d:ba:18:
79:77:fb:41:ed:bb:57:e7:f2:c9:da:5f:c3:72:b4:
5d:e1:f4:58:70:0f:d6:d0:cc:ff:48:41:d2:52:9f:
e1:6d:94:75:a8:bd:7c:cd:af:1c:2c:74:61:d3:55:
6a:8c:f4:7d:db:0b:a8:34:c0:f3:b3:27:92:60:fa:
2b:ff:c5:78:8c:58:f1:a7:d2:a5:0f:58:57:7e:3a:
a4:9f:75:e7:c0:80:a5:17:aa:5b:5c:60:62:d1:b4:
c0:a9:71:c1:61:33:bf:6d:c1:a8:5c:5f:d7:bd:1b:
cd:a8:29:57:ae:0b:29:88:5f:1e:a3:14:9d:d7:ee:
33:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:C8:9A:A1:17:A6:73:45:D9:B9:B9:7E:40:A4:CC:57:ED:00:91:F4
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/k8iaoRemc0XZubl-QKTMV-0AkfQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:a8:38:28:dc:6a:55:be:e8:64:0a:84:57:da:34:8a:10:74:
5f:90:36:08:09:51:18:80:44:33:f7:8a:a0:07:c1:fc:8e:e4:
11:1c:99:cd:71:0b:09:d6:b9:f5:ad:d4:d6:f7:f6:62:c2:16:
0c:02:e4:95:10:c2:e2:ef:a0:8e:d5:62:3c:4c:7f:70:39:a0:
48:33:52:46:e2:f1:92:c8:93:84:d7:06:6d:d0:18:4a:d0:3b:
5f:e1:78:e9:e3:33:28:ab:8f:b9:71:22:07:a4:45:74:92:30:
4e:a7:85:d3:a3:6c:3a:16:25:86:f9:2d:32:3d:0c:e2:ac:46:
99:5c:17:f9:38:9a:76:61:56:3f:45:ad:51:7f:ea:53:0d:ca:
7e:78:d8:de:0e:db:92:04:25:11:c5:a6:a5:29:ea:a4:63:88:
69:1c:0a:92:0c:82:c5:f9:a4:77:8f:0e:7e:34:62:96:b9:51:
17:82:e8:ef:0a:a2:0d:db:95:23:ef:55:e5:75:6d:ab:a3:dd:
5c:6e:5c:90:bf:33:aa:0e:f9:1c:4a:48:e2:e8:9c:50:9d:fb:
28:60:6f:85:05:59:2b:e5:b2:0f:20:a1:25:e8:9f:cb:27:86:
3e:a0:86:27:91:5b:5d:bd:e6:6a:88:5a:d4:5d:b8:32:c9:96:
40:16:e9:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org