Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/BvzeYkpBFvDlWbxvqZ2nbgCnp0Q.roa
File: BvzeYkpBFvDlWbxvqZ2nbgCnp0Q.roa (raw, json)
Hash identifier: M6ns7dhO5w3vJ7E7fhE7lIkodgHjmblymLFPvWkEUYI=
Subject key identifier: 06:FC:DE:62:4A:41:16:F0:E5:59:BC:6F:A9:9D:A7:6E:00:A7:A7:44
Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Certificate serial: 07
Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/BvzeYkpBFvDlWbxvqZ2nbgCnp0Q.roa
Signing time: Wed 29 Jun 2022 04:12:06 +0000
ROA not before: Wed 29 Jun 2022 04:12:06 +0000
ROA not after: Thu 29 Jun 2023 03:08:49 +0000
asID: 38136
IP address blocks: 103.160.180.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Validity
Not Before: Jun 29 04:12:06 2022 GMT
Not After : Jun 29 03:08:49 2023 GMT
Subject: CN=06FCDE624A4116F0E559BC6FA99DA76E00A7A744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:40:9c:8f:41:4c:d6:5a:b2:ce:27:88:22:14:
6b:98:31:8a:97:28:84:bf:78:a2:71:fc:59:51:5c:
a5:b0:76:81:6b:f3:64:3d:98:cf:04:01:00:0d:0b:
be:d7:20:89:40:0f:8a:55:7f:2f:2a:7d:40:4b:80:
f6:7d:0e:2e:74:2e:7a:06:13:bb:3d:b9:1e:fc:64:
22:83:ff:47:9f:78:65:fd:a1:99:bc:88:84:18:53:
8b:bd:93:f0:8d:15:b7:e7:be:54:5d:9f:87:1d:63:
d3:d3:7d:eb:bd:37:1a:26:bb:be:60:87:91:2b:b5:
df:90:45:d7:60:3c:a0:3c:4d:d8:f8:15:88:06:a2:
d3:8a:2a:8d:1f:76:5f:db:de:a1:83:d5:15:04:1d:
17:ae:83:62:e8:25:03:ab:03:c5:26:f9:fc:9a:a8:
39:f2:bd:c7:a3:a7:3f:f8:bd:50:23:53:0e:ee:82:
82:95:a9:ad:4d:6c:2c:f7:c9:34:db:27:dd:84:96:
e9:2b:92:ff:41:bf:4e:b2:b5:27:78:2b:da:0b:8d:
a9:2b:0f:25:94:f7:01:aa:7b:05:72:e0:df:fa:fe:
1a:e2:ab:ad:a5:71:ac:14:c3:ad:02:c9:7f:8f:dc:
f1:95:5d:d8:98:b8:67:58:07:86:2d:c5:78:08:e2:
e2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:FC:DE:62:4A:41:16:F0:E5:59:BC:6F:A9:9D:A7:6E:00:A7:A7:44
X509v3 Authority Key Identifier:
keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/BvzeYkpBFvDlWbxvqZ2nbgCnp0Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.160.180.0/23
Signature Algorithm: sha256WithRSAEncryption
26:db:93:0b:58:0a:d0:fb:ab:e8:ff:18:d2:e4:f7:39:7e:96:
99:a9:2a:b9:34:73:ce:24:12:38:48:04:be:6c:c1:57:f3:84:
99:d0:10:93:55:97:23:9f:2b:10:0d:3e:ed:a3:61:a5:ef:af:
76:a0:e2:c3:f3:39:a6:7b:f4:39:f9:b4:c5:04:09:77:02:99:
8d:ea:bb:2a:06:4c:51:77:43:a4:e4:d4:ba:20:09:fe:96:90:
e7:3e:05:16:83:c2:8c:7f:41:6a:82:c0:f4:88:56:c6:64:60:
76:62:b9:b1:ac:10:4c:0d:99:3a:a9:1b:51:cf:ed:b2:f4:35:
cb:3b:4a:3a:93:f9:54:aa:e7:3b:b0:18:d0:db:69:a3:cd:4b:
eb:b8:e6:56:74:f1:3f:63:88:cc:05:37:4b:d1:b5:fd:6a:86:
6a:69:cc:17:f9:f0:35:00:b2:4e:24:9a:8c:a8:d9:eb:38:38:
48:84:9c:ec:5b:16:71:91:1b:c1:e5:d2:b0:d7:dc:9d:97:74:
d5:e4:7a:cb:dc:7d:4d:92:ec:02:40:08:fe:7b:f1:ea:8f:65:
bd:1e:46:78:db:07:37:29:30:b1:9f:23:9c:a5:ec:df:d1:dc:
f6:6b:6b:c0:6f:b5:cc:1e:cd:13:7b:8d:4a:ed:4f:a4:15:a6:
4e:7f:a0:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org