Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/uVcYh4QZi08xRzW9RBnn-PSyhQ0.roa
File: uVcYh4QZi08xRzW9RBnn-PSyhQ0.roa (raw, json)
Hash identifier: 1yufn7jHBqM+Z9O3z55Smj55rF1Zby4S6REMIyunqbQ=
Subject key identifier: B9:57:18:87:84:19:8B:4F:31:47:35:BD:44:19:E7:F8:F4:B2:85:0D
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0B62
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/uVcYh4QZi08xRzW9RBnn-PSyhQ0.roa
Signing time: Sun 07 Feb 2021 11:53:23 +0000
ROA not before: Sun 07 Feb 2021 11:53:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 103.136.60.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2914 (0xb62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Feb 7 11:53:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B957188784198B4F314735BD4419E7F8F4B2850D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c8:83:52:c1:1d:54:42:3f:1a:8a:5b:46:8e:
ac:36:23:ad:c5:f2:b0:3d:fa:1f:50:b1:79:ac:41:
d8:a5:05:ff:68:c4:09:75:45:fb:7a:21:7a:b2:c1:
a3:1e:1a:33:35:03:96:ea:c8:f0:fa:03:07:8b:51:
67:e6:54:b1:c2:f7:1c:c8:66:9b:3a:75:1c:40:f0:
6a:48:97:71:ff:41:b9:89:55:08:82:22:47:ec:d9:
58:b8:c3:65:35:eb:c2:51:7e:ec:63:e2:7b:87:00:
75:63:f2:5b:c4:8c:c9:0b:69:43:33:7c:c1:74:83:
62:b7:a6:c3:f4:59:58:49:70:82:40:88:7a:95:63:
a0:40:6c:bb:6e:21:65:f4:fd:4d:16:d0:24:d2:23:
32:31:37:fd:ad:fc:82:3d:57:f4:3a:95:60:0f:5a:
cf:ef:d4:60:62:54:eb:e4:7b:af:cd:22:32:ad:d7:
29:5c:87:cf:51:eb:81:46:73:f3:a6:5b:85:b1:6b:
b8:e1:dd:06:84:cd:2e:c1:30:af:6f:ec:78:2f:9b:
cf:ff:b3:ad:42:8b:96:e3:d3:e7:a0:b4:34:cd:91:
38:e2:43:ef:c1:63:c1:69:a2:85:7e:79:29:4a:56:
da:66:e6:8f:e8:d4:72:28:e3:5d:5f:29:68:e4:75:
26:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:57:18:87:84:19:8B:4F:31:47:35:BD:44:19:E7:F8:F4:B2:85:0D
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/uVcYh4QZi08xRzW9RBnn-PSyhQ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/23
Signature Algorithm: sha256WithRSAEncryption
67:7e:3e:20:8a:fe:c4:b3:bc:ae:f9:cf:c0:0b:ae:51:24:14:
74:7d:32:22:1c:e9:71:67:af:c2:0a:81:b1:30:8f:7e:4e:93:
48:ee:1c:dd:fd:da:b2:5f:4a:76:21:2b:7f:dd:a5:67:58:c5:
df:18:82:34:66:ee:79:d2:50:75:97:b9:e8:49:41:4a:35:1f:
c9:bb:f4:24:26:64:61:6a:3a:1f:fe:17:04:ca:6e:74:74:ca:
71:d9:b5:03:41:3f:0a:c9:71:7b:63:fa:c3:ca:74:38:ef:c4:
06:71:88:f2:ba:de:ab:33:3a:64:f8:35:a2:83:dc:fd:d2:e2:
e5:c4:3d:ed:59:e9:28:94:45:c4:fb:ae:92:f8:d6:e8:28:32:
06:bf:f8:1c:36:37:ad:dc:29:90:70:92:33:85:51:00:ed:64:
4d:77:e4:c9:a2:83:dd:d9:d9:40:d4:17:04:2f:82:54:52:e6:
1f:6a:8f:eb:cd:16:4a:e7:d6:c6:48:a7:7f:fe:1b:74:89:b6:
a7:71:61:34:5a:82:b8:9a:c7:19:05:2d:c4:48:6d:68:29:c2:
a6:3d:a2:22:d0:64:d6:b5:67:c5:bc:00:41:f4:88:11:8a:ea:
8e:a4:21:81:12:17:5e:6f:48:2f:26:c9:91:11:5d:8e:8d:ea:
5b:57:c9:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org