Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/unDGAsW3efiRcANl4FomGj3lIwU.roa
File: unDGAsW3efiRcANl4FomGj3lIwU.roa (raw, json)
Hash identifier: Gx/nm7vsJR/TRXGw0yyMQAnDHjJM5WHOP06LQ0Ccp+k=
Subject key identifier: BA:70:C6:02:C5:B7:79:F8:91:70:03:65:E0:5A:26:1A:3D:E5:23:05
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0A05
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/unDGAsW3efiRcANl4FomGj3lIwU.roa
Signing time: Tue 29 Sep 2020 10:03:08 +0000
ROA not before: Tue 29 Sep 2020 10:03:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 103.136.60.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2565 (0xa05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 29 10:03:08 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BA70C602C5B779F891700365E05A261A3DE52305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5b:0d:87:76:9a:f2:3c:20:f6:9e:3d:47:b2:
04:b8:77:04:ed:fd:17:81:8f:c6:0b:57:eb:04:cd:
f5:b2:16:81:d5:32:d1:cb:57:16:28:9e:6c:ea:9c:
ef:94:39:d2:da:20:f1:84:03:e9:38:de:a6:67:88:
6e:77:c7:ba:fe:d0:a6:c5:7f:c8:75:7f:5d:aa:53:
0c:de:8f:38:de:52:61:70:94:50:00:07:39:a7:bf:
5f:76:23:a9:5b:c3:1b:cb:10:a6:e2:1e:ba:8e:99:
bf:e7:67:ef:7e:5a:e9:91:fa:ab:45:60:21:fa:8a:
38:fc:c3:95:0f:2e:a5:da:c0:d6:6b:88:ac:32:67:
5c:7b:29:63:9c:ab:af:67:5c:ab:17:dc:cb:fe:80:
12:52:8f:ac:e3:3e:07:76:e2:cc:06:c3:da:03:22:
4d:39:dd:b7:8b:ae:31:33:a9:40:b7:5a:f7:a2:9b:
e4:79:1c:4f:a1:6e:43:14:6a:00:73:a5:7b:17:fe:
4c:7d:b7:b7:4b:64:52:aa:03:1a:8e:7f:ac:e6:4e:
fa:ec:6f:f8:c0:b3:8f:5b:ec:78:73:24:01:32:e9:
8b:ba:ec:89:c5:5f:68:1e:1d:f2:3c:8a:c8:e5:50:
28:39:27:e2:a6:50:b8:1e:28:20:69:e0:ce:ea:4a:
97:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:70:C6:02:C5:B7:79:F8:91:70:03:65:E0:5A:26:1A:3D:E5:23:05
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/unDGAsW3efiRcANl4FomGj3lIwU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:7a:b4:92:42:84:5e:92:9e:06:aa:7e:5b:f7:7a:e6:d9:f7:
0c:b1:e0:53:53:72:b9:6c:18:07:85:86:af:e8:2a:4f:43:fb:
ac:97:8c:6e:14:24:37:6a:da:a4:7e:fa:f2:ca:54:3b:cc:4b:
3a:9b:21:da:30:5e:7b:20:b6:e6:5a:ed:42:60:2d:fb:77:a8:
48:8c:d4:57:c0:7e:5c:06:f6:50:84:aa:fd:b5:10:e6:b2:49:
0f:fa:6f:5f:ba:c7:ea:ef:5a:e5:2d:5a:96:2e:92:da:de:9b:
ef:e3:a5:c2:e8:a9:1f:ed:d7:a6:dd:fc:f7:17:e6:a0:fc:3c:
3f:a5:d4:3e:af:36:8a:a8:6d:64:d9:9e:7d:8c:39:51:10:f4:
f4:be:2c:df:37:fd:d7:f4:22:6b:d4:6a:a2:b8:a6:d1:88:af:
fe:f1:80:77:5e:52:d4:b6:66:b9:10:22:c4:39:53:11:29:02:
96:9d:cb:06:2f:0f:66:69:6e:a1:73:c2:b8:93:5d:11:33:75:
63:c7:d5:12:27:cd:35:ff:22:25:58:ec:44:43:3e:41:af:75:
07:04:e8:1e:3d:24:38:46:1e:20:da:7e:5f:a3:e3:13:43:0e:
41:12:36:fd:bd:fa:35:e9:d7:85:58:9f:fa:96:71:0c:66:50:
6c:a0:d0:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org