Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/o1MkZtaHVWvY7MoBR_O8cHPkuZk.roa
File: o1MkZtaHVWvY7MoBR_O8cHPkuZk.roa (raw, json)
Hash identifier: QlmJR227bZ//HNsEaTLHJ4UxpwfpUoO8y7yZU2coEe0=
Subject key identifier: A3:53:24:66:D6:87:55:6B:D8:EC:CA:01:47:F3:BC:70:73:E4:B9:99
Certificate issuer: /CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Certificate serial: 0AD0
Authority key identifier: 16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/o1MkZtaHVWvY7MoBR_O8cHPkuZk.roa
Signing time: Sun 07 Feb 2021 12:38:12 +0000
ROA not before: Sun 07 Feb 2021 12:38:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131642
IP address blocks: 103.137.246.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2768 (0xad0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Validity
Not Before: Feb 7 12:38:12 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A3532466D687556BD8ECCA0147F3BC7073E4B999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5e:5d:d2:e3:70:f7:c7:37:dc:c4:0d:cb:3e:
05:b4:b2:7b:e3:56:11:73:e2:fe:9a:1e:60:96:aa:
43:20:c8:ec:3c:9b:71:61:1f:60:05:a3:77:0d:68:
1d:e3:74:97:c3:88:8b:9b:d2:c3:1a:88:8b:fa:b8:
b1:85:93:8c:22:2f:23:c0:34:37:40:9b:a0:71:e0:
cf:26:43:5a:ba:2b:15:b2:2e:5c:06:52:bb:b8:cb:
4e:51:78:69:82:ce:9b:e3:e4:59:4a:ae:d0:d2:ba:
fb:bc:96:23:8b:85:32:dc:c9:76:1d:56:e5:5a:26:
6a:5e:6b:22:2f:fc:c0:30:91:8e:e1:07:85:58:c6:
fe:cb:7e:2d:10:f7:7b:00:61:93:10:6c:26:ae:84:
a1:b0:77:1c:cc:a6:39:3d:ca:04:07:a4:74:68:cb:
ec:46:15:d7:ef:40:4b:a1:26:13:53:87:5d:2a:54:
22:4e:75:a2:5e:10:33:7a:c6:4f:c5:f0:42:e3:7e:
4a:7b:7e:f8:0f:6a:20:fa:bb:92:ef:13:41:8e:f9:
75:bb:bf:4c:2a:4b:a7:68:15:63:e4:f8:37:c0:e2:
7a:4a:78:1d:aa:53:1f:af:ee:45:34:13:20:f7:c1:
f1:65:70:f7:97:5a:0c:b9:bd:c7:d7:a4:fc:c7:ff:
9c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:53:24:66:D6:87:55:6B:D8:EC:CA:01:47:F3:BC:70:73:E4:B9:99
X509v3 Authority Key Identifier:
keyid:16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/o1MkZtaHVWvY7MoBR_O8cHPkuZk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.246.0/23
Signature Algorithm: sha256WithRSAEncryption
64:6d:9d:75:84:ae:c8:c4:62:25:8b:26:f0:08:a8:79:b2:23:
a4:34:71:a2:95:66:dd:9d:ea:a5:f7:46:c5:f1:09:f5:54:b4:
69:ab:5d:a1:39:fd:fe:26:2a:4c:0a:af:4f:f7:01:31:2a:ab:
90:48:e6:28:dd:46:5d:be:ee:7a:49:97:a1:f5:a5:2e:39:d5:
2f:6d:48:6f:cf:ac:55:a2:ef:b9:ec:b6:bd:e4:bc:ae:a6:3d:
36:81:b6:45:92:40:ed:f2:30:48:eb:16:0c:9c:0f:b1:b9:b2:
f5:42:ad:ce:8d:23:46:02:a4:56:23:df:e4:55:06:8d:0f:31:
24:68:a9:c5:f7:30:ab:7e:75:9b:fb:aa:26:f3:49:68:e1:ba:
67:14:5e:18:91:10:08:f3:62:cc:7a:2b:a7:34:3f:df:6d:6a:
76:f6:54:7c:c8:da:41:35:1b:1c:88:2a:34:6f:2a:49:3b:ca:
50:3d:39:a0:fb:cc:bd:4b:35:28:3e:c9:64:34:5c:99:42:ff:
b1:60:8f:7a:c2:ff:9d:92:5d:ad:45:5f:cf:40:62:65:78:2a:
8a:0e:62:47:2c:fd:4e:2e:6d:8c:91:e8:f1:64:d3:02:36:ee:
26:9c:47:28:02:9f:ad:ed:fe:79:d1:8d:3b:3c:15:e7:de:ff:
17:b5:e2:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org