Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/Cu-EMKkNd3T3UgoWu4wVRamzlYY.roa
File: Cu-EMKkNd3T3UgoWu4wVRamzlYY.roa (raw, json)
Hash identifier: 7jTWmrRrNEfox5OcklRHKwuIm/PxQkfhBL+m/FJLTS4=
Subject key identifier: 0A:EF:84:30:A9:0D:77:74:F7:52:0A:16:BB:8C:15:45:A9:B3:95:86
Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Certificate serial: 05
Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/Cu-EMKkNd3T3UgoWu4wVRamzlYY.roa
Signing time: Wed 29 Jun 2022 04:11:53 +0000
ROA not before: Wed 29 Jun 2022 04:11:53 +0000
ROA not after: Thu 29 Jun 2023 03:08:49 +0000
asID: 983
IP address blocks: 103.160.180.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Validity
Not Before: Jun 29 04:11:53 2022 GMT
Not After : Jun 29 03:08:49 2023 GMT
Subject: CN=0AEF8430A90D7774F7520A16BB8C1545A9B39586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:9b:7c:24:58:77:03:ad:7c:3f:d6:bc:b6:e2:
5a:0c:af:be:c3:53:a0:24:76:4a:30:6f:e3:44:af:
31:e0:22:14:21:4e:93:22:bc:6b:aa:67:8a:8a:81:
a0:ed:34:bc:d5:96:0e:2d:53:cf:e0:10:49:7a:e4:
3d:07:4e:58:9f:b1:cb:fb:25:90:53:de:12:d4:fe:
08:73:df:fe:40:67:53:27:a1:e0:53:ed:4d:99:52:
4a:9b:6e:e4:e1:1d:ca:24:0e:81:6b:99:d8:25:a1:
bc:b9:b3:2a:9f:5d:d7:91:7d:c4:c5:e6:fa:10:2e:
18:51:46:be:b7:17:53:c5:fa:d5:8d:52:65:e2:4a:
d5:3f:d2:d1:e6:fd:c7:f6:aa:6f:d4:3f:d5:45:48:
bf:a4:dd:a2:f7:da:b6:16:a0:6c:d0:09:ab:4e:97:
90:55:1c:71:3e:dc:c3:15:87:4a:0c:b7:7a:fa:a6:
b4:e4:8b:4b:ec:db:18:9e:95:f9:07:d7:07:34:f3:
0e:be:39:fa:60:1e:13:44:ee:5a:eb:05:72:35:23:
e9:5a:67:2c:b4:1d:28:b7:f0:8e:7b:18:18:4d:4f:
e0:93:7b:2b:42:41:52:09:3a:c2:97:a2:fb:65:59:
e9:c3:57:a4:5a:39:63:94:a6:3f:13:49:76:f5:02:
22:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:EF:84:30:A9:0D:77:74:F7:52:0A:16:BB:8C:15:45:A9:B3:95:86
X509v3 Authority Key Identifier:
keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/Cu-EMKkNd3T3UgoWu4wVRamzlYY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.160.180.0/23
Signature Algorithm: sha256WithRSAEncryption
85:8c:a8:24:f7:a3:d6:61:16:62:24:bb:a1:58:d5:48:c8:4f:
41:64:b9:49:d7:39:fc:c7:ae:eb:01:c3:17:0b:f4:59:66:67:
b7:23:3d:c3:e5:58:c1:bf:96:0c:33:56:c0:06:1b:25:84:b5:
58:7e:1b:5b:66:33:8b:76:7c:3b:9d:f0:34:f3:af:5e:ba:2a:
c1:d0:bc:8c:cc:3f:fd:99:a4:31:32:ce:89:b6:3c:61:aa:56:
e2:3c:d8:8d:ec:8e:b0:5c:d6:2b:0e:2f:9a:37:ad:31:43:39:
ef:04:70:4a:4c:66:6c:41:b0:61:22:40:ff:f8:41:94:41:a8:
17:49:95:61:21:6d:6d:b3:9b:38:9e:44:ca:34:bb:d2:8b:e9:
72:61:a8:f0:ab:a8:c8:b0:04:1d:84:ba:d5:0f:07:2b:36:42:
60:46:f6:80:7d:c8:77:b2:ee:f2:4e:b5:b8:8f:8c:c6:27:0c:
40:32:d0:8b:22:fe:f2:76:7f:7b:9a:9e:63:47:98:89:08:60:
5b:17:ff:28:d1:47:06:ae:0e:f5:f0:09:db:6b:7d:02:81:bd:
44:0a:1f:13:e0:27:be:1d:bc:24:87:13:23:4a:c9:82:69:19:
48:f2:67:34:d9:0c:63:a0:c2:c6:ac:9f:38:fe:c7:37:2a:a4:
e8:32:f4:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org