Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/OtiTtRjRIBRx20KNOlL2eMg4pZ0.roa
File: OtiTtRjRIBRx20KNOlL2eMg4pZ0.roa (raw, json)
Hash identifier: HYgGbknOrEhQHMdbG3aciMkeoakaW5O+avEZqAXYth4=
Subject key identifier: 3A:D8:93:B5:18:D1:20:14:71:DB:42:8D:3A:52:F6:78:C8:38:A5:9D
Certificate issuer: /CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Certificate serial: 0B73
Authority key identifier: 16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/OtiTtRjRIBRx20KNOlL2eMg4pZ0.roa
Signing time: Wed 29 Sep 2021 02:37:49 +0000
ROA not before: Wed 29 Sep 2021 02:37:49 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38042
IP address blocks: 103.137.246.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2931 (0xb73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Validity
Not Before: Sep 29 02:37:49 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3AD893B518D1201471DB428D3A52F678C838A59D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:41:24:12:de:51:a7:71:d4:31:95:02:22:72:
55:1e:d6:73:8c:30:39:d6:9e:c0:27:2d:24:eb:2b:
49:3e:fa:14:a4:d4:73:fc:b7:e2:ee:19:0f:07:fd:
ec:49:1c:73:5b:af:fb:1f:03:30:b6:3b:87:7b:55:
e4:2e:36:b3:fd:33:d8:eb:25:86:82:be:10:2d:25:
4b:10:5a:5c:ee:6d:e5:d0:0f:d7:44:8c:d5:99:af:
82:5a:5c:16:db:35:8d:44:62:79:0f:af:64:7e:3e:
b5:57:7b:67:c7:59:dc:43:b9:0e:f4:14:bb:4e:3d:
ca:e8:d8:18:13:a3:25:d5:9f:c7:eb:1c:d4:d9:62:
3e:d8:80:d8:b9:ab:ce:61:bc:59:49:80:8d:c8:e6:
88:72:9a:4b:63:b9:47:61:d1:d8:d2:48:8b:9a:97:
e7:61:87:07:0d:eb:23:4a:92:73:40:be:bf:e5:b9:
36:a4:64:05:a2:4f:f6:12:44:42:ba:85:70:14:d9:
9e:ee:b4:cb:0f:24:fb:39:e8:e6:67:dc:dc:98:bc:
1a:37:36:07:6b:b9:5b:db:21:05:46:04:ad:bd:09:
e0:aa:ab:33:5f:33:b6:01:63:24:be:b2:d2:3a:e2:
83:9b:f6:45:5d:74:63:4d:cc:b7:f0:d6:8b:5b:27:
73:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:D8:93:B5:18:D1:20:14:71:DB:42:8D:3A:52:F6:78:C8:38:A5:9D
X509v3 Authority Key Identifier:
keyid:16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/OtiTtRjRIBRx20KNOlL2eMg4pZ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.246.0/23
Signature Algorithm: sha256WithRSAEncryption
66:4f:b3:4d:0f:86:85:e2:92:e2:51:46:33:39:18:ab:88:ee:
50:26:fc:24:b7:4d:4a:88:3b:29:da:f5:6d:04:cc:25:79:6f:
65:12:a8:f7:f4:bb:30:41:19:2c:d3:c6:a5:69:9c:54:df:ab:
10:1f:6e:10:2b:95:a3:fb:35:a1:00:a6:af:ee:f6:a9:54:cc:
ad:dd:54:14:53:04:57:30:a9:63:32:47:f9:e6:6b:55:54:50:
cd:50:26:8b:66:af:b1:ae:92:17:39:26:46:8f:06:09:ab:36:
da:0d:2c:7b:1d:a6:c2:fa:5f:94:15:e9:22:64:8f:5a:37:0a:
05:d1:56:6d:e6:14:89:f4:1c:9b:86:b2:13:a4:9c:c1:74:44:
fe:a2:0b:39:3d:ed:c1:7f:83:d1:20:68:5d:a1:2c:42:9a:36:
d1:b9:84:34:7b:8c:56:db:f5:b0:59:3d:6d:96:fc:1a:84:ab:
43:09:90:41:b7:88:b4:74:ef:e6:80:bc:68:b2:31:63:43:62:
d0:d9:c2:9e:f7:87:83:af:ca:e0:8b:8b:2d:10:aa:35:f6:b3:
45:fe:29:73:a4:fe:32:91:37:16:c7:cf:af:73:ff:fc:5a:d7:
6a:07:34:1f:60:24:66:c5:4a:9d:e8:e9:e7:eb:c4:6b:33:0c:
ed:65:ad:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org