Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/ysEKL9vlMk9vMUAkFGnWDOyqc-E.roa
File: ysEKL9vlMk9vMUAkFGnWDOyqc-E.roa (raw, json)
Hash identifier: A61BRLcUVrOFSQLFDFPX8xQDjUUBhcGLrOx0duXrroM=
Subject key identifier: CA:C1:0A:2F:DB:E5:32:4F:6F:31:40:24:14:69:D6:0C:EC:AA:73:E1
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0A09
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/ysEKL9vlMk9vMUAkFGnWDOyqc-E.roa
Signing time: Tue 29 Sep 2020 10:03:09 +0000
ROA not before: Tue 29 Sep 2020 10:03:09 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131641
IP address blocks: 103.136.60.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2569 (0xa09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 29 10:03:09 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CAC10A2FDBE5324F6F3140241469D60CECAA73E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8a:3d:06:80:df:9c:b1:29:22:de:0a:50:f3:
72:f4:72:f5:16:3d:f3:69:ef:7a:c4:e2:4e:6d:c6:
40:ec:57:06:97:df:78:b1:0d:50:0d:31:fc:e2:48:
50:ac:61:fd:f2:bc:cd:6d:bd:c5:42:ba:fb:2d:08:
be:b4:b8:26:ee:ae:76:cc:2d:1e:02:f5:d4:ae:9a:
af:4b:58:01:10:ad:3b:29:b6:f5:43:6e:8a:cc:b4:
ad:d2:80:3f:98:32:5e:72:fd:00:8d:df:62:b8:08:
c4:ae:3b:0d:32:56:37:55:35:dc:23:46:f2:0e:ed:
f6:16:66:eb:96:9a:d5:52:f0:ca:49:c3:5c:a9:95:
33:c8:6a:d8:6c:ef:02:4e:d9:bf:0e:c5:44:25:80:
43:f5:4f:ad:a6:67:0c:06:02:bc:a3:bd:28:ca:f6:
1e:8f:c3:db:cb:1a:cb:56:a0:aa:80:39:9b:f4:af:
f6:05:8b:ca:f6:90:83:c6:59:31:cb:2a:b9:22:e6:
14:4d:5b:c5:2b:66:74:97:a9:35:a7:bf:24:34:dd:
e2:7f:02:e0:74:36:89:8f:14:c1:54:79:5c:c4:46:
2e:10:0e:00:93:20:95:14:d0:e7:b1:60:f2:59:e2:
80:9b:61:96:a6:8d:f2:25:d3:cf:ad:b9:16:3f:97:
0b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:C1:0A:2F:DB:E5:32:4F:6F:31:40:24:14:69:D6:0C:EC:AA:73:E1
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/ysEKL9vlMk9vMUAkFGnWDOyqc-E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.60.0/23
Signature Algorithm: sha256WithRSAEncryption
00:40:b3:7d:10:cd:96:c0:23:8f:0c:ad:27:92:56:c7:fc:66:
77:fe:9a:99:bc:3b:18:69:6f:10:72:b7:8f:33:8f:14:37:15:
b9:10:f8:1c:13:c4:e5:17:0f:ca:e0:c7:7f:4f:4c:d1:65:56:
7f:92:a5:da:b8:f8:cd:c9:97:9e:5a:a6:43:d5:81:ca:6e:22:
00:8a:7f:af:cf:c7:23:32:8d:58:2e:66:a0:a2:b7:7e:77:b9:
78:5c:ad:6e:ec:15:ca:45:18:ee:0e:76:aa:db:12:85:16:f9:
0a:08:99:40:80:21:52:53:33:ec:af:c4:1b:5e:a0:8e:a7:46:
b4:c1:54:18:e7:c9:67:75:68:82:88:c8:fd:64:e6:f3:f2:b9:
be:0a:eb:45:94:1d:71:3e:bd:c4:21:d9:5d:d4:39:6e:da:31:
a8:a1:e4:99:de:98:9d:5b:1b:57:e9:e0:0c:97:b6:06:29:77:
62:c9:42:14:f8:57:dc:f9:a1:26:ed:15:ce:83:20:53:4f:1b:
b1:e1:1e:a9:53:98:81:81:21:43:82:81:2c:77:5b:b0:c0:4a:
9f:07:e4:5d:ac:69:30:80:bb:53:b1:49:8a:6a:b7:00:3e:cd:
86:00:30:fb:ce:5c:b1:8a:5b:40:d1:e3:c3:0c:c5:94:6b:35:
94:d6:ce:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org