Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/r7Mq4Jc557ws1GaoHoVgOEvpagU.roa
File: r7Mq4Jc557ws1GaoHoVgOEvpagU.roa (raw, json)
Hash identifier: IFlAn8YvuHbnnF3H6wb0sgZNxs55U2JQX/Dhxq/xgbc=
Subject key identifier: AF:B3:2A:E0:97:39:E7:BC:2C:D4:66:A8:1E:85:60:38:4B:E9:6A:05
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0C12
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/r7Mq4Jc557ws1GaoHoVgOEvpagU.roa
Signing time: Wed 29 Sep 2021 02:36:28 +0000
ROA not before: Wed 29 Sep 2021 02:36:28 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24168
IP address blocks: 103.136.60.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3090 (0xc12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 29 02:36:28 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=AFB32AE09739E7BC2CD466A81E8560384BE96A05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f7:73:2f:db:e1:53:cb:ad:f3:01:16:38:cf:
d5:79:89:6e:49:fd:6b:3b:f8:c3:68:50:b6:68:31:
0b:65:42:4b:f7:68:a3:09:54:37:a5:1b:18:8c:6c:
f3:30:2e:47:bd:54:98:c0:46:49:bd:b0:04:c7:a7:
42:d3:ad:15:38:4d:6c:b7:76:c8:9b:98:bf:79:fa:
8c:db:86:95:61:3a:60:89:59:2c:1a:83:fc:c4:45:
c5:5c:2d:c3:05:a3:1e:bf:be:ed:58:11:60:fc:c5:
63:bb:92:f3:47:e4:18:1d:cb:95:a2:78:7e:fd:d4:
93:ce:c3:98:31:59:df:17:4c:a0:7c:93:36:9d:66:
5b:48:af:66:e0:9b:dd:d9:fc:22:e7:9b:b2:89:db:
20:d1:79:4b:0d:78:37:dd:20:fa:23:57:f2:af:8b:
26:7b:e0:6c:32:84:2f:cf:42:27:3a:89:a8:c8:04:
80:52:bb:66:21:dc:14:16:78:f7:24:57:31:3e:8d:
3e:17:eb:04:b4:6b:87:c1:94:26:02:45:95:0a:b3:
a6:40:73:7e:6f:6f:5c:9c:ca:16:d4:57:2b:9c:98:
49:19:14:9a:8a:a6:dd:ad:02:eb:c2:84:51:6c:2f:
ca:89:c2:69:cb:b1:39:f6:e1:7d:df:bb:15:d5:5e:
a7:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:B3:2A:E0:97:39:E7:BC:2C:D4:66:A8:1E:85:60:38:4B:E9:6A:05
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/r7Mq4Jc557ws1GaoHoVgOEvpagU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/23
Signature Algorithm: sha256WithRSAEncryption
62:7d:43:2a:7a:7b:7a:9e:22:42:22:a6:10:33:29:8f:be:2b:
62:54:c8:d9:f1:49:e7:0f:58:53:63:5b:db:ad:90:5c:86:23:
be:c4:52:ed:16:80:17:ca:12:57:01:ad:a1:2a:30:1b:81:20:
c3:03:c2:d1:23:fe:e9:06:58:5e:7e:36:b6:a4:b1:c7:d2:c0:
0f:e5:34:d6:21:ec:70:78:d4:ef:99:ff:32:c0:6d:d4:59:2a:
fe:5a:ba:87:f6:12:1d:5c:b6:b0:92:58:b7:45:33:01:3a:81:
59:94:b1:98:f8:ce:74:04:f7:f7:ac:5c:57:6c:83:8b:b4:61:
01:c4:74:5f:04:92:8d:c7:e8:c8:e0:32:11:bb:bf:a2:e2:da:
a7:e5:ef:e0:d5:f0:9e:d2:e3:92:17:3d:f0:b6:08:de:09:83:
6e:66:f3:6a:d4:5d:95:e0:25:e9:c7:6b:ca:c9:57:30:27:f7:
c8:a3:3a:cc:ea:16:63:80:63:df:9e:6c:ee:12:89:7e:2c:2f:
11:80:b0:8f:11:ef:1f:ca:d6:9a:aa:74:7c:ad:75:6a:f8:8b:
c9:26:d9:3c:ba:6a:09:c3:ec:8b:0d:ad:c6:ed:e5:65:83:5a:
6c:68:41:a0:28:44:76:ee:5c:c4:96:3f:cb:c8:b1:f0:29:7c:
73:e6:b9:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org