Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/odfXW7Hbs6iFIOvFAzxNnLRwqDM.roa
File: odfXW7Hbs6iFIOvFAzxNnLRwqDM.roa (raw, json)
Hash identifier: gMgK3zyz2oGMGq5SJ+UK42RUopcQm/NZIz/dQ5RBy6o=
Subject key identifier: A1:D7:D7:5B:B1:DB:B3:A8:85:20:EB:C5:03:3C:4D:9C:B4:70:A8:33
Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Certificate serial: F8
Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/odfXW7Hbs6iFIOvFAzxNnLRwqDM.roa
Signing time: Thu 15 Jun 2023 03:09:19 +0000
ROA not before: Thu 15 Jun 2023 03:09:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 983
IP address blocks: 103.160.180.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 248 (0xf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Validity
Not Before: Jun 15 03:09:19 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A1D7D75BB1DBB3A88520EBC5033C4D9CB470A833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:55:09:b2:35:88:f7:4d:94:1f:af:47:c0:fc:
f9:13:22:8a:c3:b2:23:62:d3:a9:57:57:81:e9:e0:
8b:31:c8:23:d9:96:4a:cd:8c:bd:52:ca:6e:cf:7c:
9a:40:42:34:f5:77:1f:3a:57:5b:9a:16:14:48:8d:
dd:09:3e:0e:db:35:28:3a:4a:c6:d7:0f:5f:2a:e2:
f2:35:fe:eb:b9:5a:8a:86:a3:d0:b3:b6:f6:b2:92:
97:84:be:7d:03:90:af:58:95:2f:39:95:b6:43:71:
6e:06:1d:3c:ec:56:df:87:f3:b6:27:da:b0:21:46:
6e:9f:1d:7b:1b:65:14:bd:d9:7d:1c:fb:31:53:82:
83:d8:ae:da:63:ac:93:e4:1a:ac:87:0f:5a:81:55:
72:41:e0:ee:f3:db:23:48:97:b9:94:de:9e:dc:c7:
dc:11:ee:88:f9:37:cc:f4:8a:92:c3:43:69:fc:44:
2e:4d:04:af:b8:11:24:e8:af:3d:40:4e:55:e5:35:
d2:9d:f8:c2:cd:ce:b0:c9:a5:2f:6e:c6:4d:46:05:
4d:22:5f:e8:a2:ae:18:f1:30:14:27:6e:ef:de:fd:
c6:d6:f4:26:88:86:11:0a:88:02:60:8a:07:4a:ee:
81:a4:6a:10:28:d5:1b:f8:4f:31:2f:be:ce:c0:a3:
89:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:D7:D7:5B:B1:DB:B3:A8:85:20:EB:C5:03:3C:4D:9C:B4:70:A8:33
X509v3 Authority Key Identifier:
keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/odfXW7Hbs6iFIOvFAzxNnLRwqDM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.160.180.0/23
Signature Algorithm: sha256WithRSAEncryption
14:23:24:7d:41:c5:4c:52:22:1e:ec:d2:d3:74:70:54:6b:af:
8a:10:38:bd:70:d9:a4:4d:b0:0e:ad:f2:94:00:d6:aa:8d:10:
40:90:37:bf:81:63:67:02:a7:5a:8b:67:72:a5:76:26:bc:fe:
29:d1:bd:46:5e:fa:70:75:4c:d5:8e:1b:3f:fc:39:be:e9:0d:
0f:32:c1:ad:ce:7e:18:c2:17:7b:92:66:d9:83:f4:fd:c5:cf:
b6:da:73:19:0c:b6:3a:8e:5a:78:99:78:21:f8:80:42:4a:ba:
41:d6:1f:d8:f8:fc:aa:0d:aa:33:38:74:d1:74:b4:b2:be:95:
e3:e6:89:47:37:db:e3:10:80:cc:19:18:e0:f6:ed:2e:8c:de:
ce:ba:fa:f8:32:9f:8a:d7:04:f7:aa:06:9a:0e:e5:ce:e3:5c:
5a:a9:93:c1:02:29:b1:59:6b:30:8d:c4:3e:a7:3d:3a:71:40:
c9:7b:b4:93:e9:7f:93:f7:2a:0f:44:20:12:62:ce:91:35:3a:
4e:78:4a:66:e7:61:df:1f:26:ab:d6:70:3c:ac:80:78:7f:6a:
69:d2:82:e3:66:f8:dc:66:c6:b5:9b:35:15:28:f7:c3:02:5e:
f6:11:6d:d4:b0:84:4e:00:53:44:ff:d4:d4:5e:db:59:bc:4e:
18:78:66:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org