Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GOEASY/3Oh6J71EmynHMLzH3A5PSU9ee9k.roa
File: 3Oh6J71EmynHMLzH3A5PSU9ee9k.roa (raw, json)
Hash identifier: INOna7v15b0CB795UQi78Lc7yts30BbFNouvNeg/0wY=
Subject key identifier: DC:E8:7A:27:BD:44:9B:29:C7:30:BC:C7:DC:0E:4F:49:4F:5E:7B:D9
Certificate issuer: /CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762
Certificate serial: 0125
Authority key identifier: 66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/3Oh6J71EmynHMLzH3A5PSU9ee9k.roa
Signing time: Thu 15 Sep 2022 02:41:28 +0000
ROA not before: Thu 15 Sep 2022 02:41:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7483
IP address blocks: 103.170.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 293 (0x125)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762
Validity
Not Before: Sep 15 02:41:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DCE87A27BD449B29C730BCC7DC0E4F494F5E7BD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1f:51:98:70:9f:2b:96:1b:00:3e:79:cb:f8:
17:66:36:36:1c:03:01:d1:e2:44:4b:4f:17:2c:6b:
50:ac:bd:be:2f:5a:2b:51:33:07:11:99:42:9c:6b:
41:09:7a:66:a5:38:4a:65:da:b0:35:9b:74:26:c8:
6f:7a:a7:35:ed:a4:db:44:5f:b7:70:61:ef:87:b2:
fe:c1:e4:c1:79:da:10:d9:3d:45:48:36:ca:15:5f:
50:1e:76:9e:05:21:0b:20:e3:25:81:b0:ba:9d:e7:
55:be:b0:4a:07:8f:25:b1:11:d0:10:3e:03:c1:3e:
ae:d0:2d:31:b9:a5:13:2d:04:79:09:be:ae:14:13:
5d:11:b4:67:dc:45:67:fa:e8:e6:b0:f3:c3:97:48:
6d:52:ee:cd:99:54:05:be:a3:90:13:58:19:27:f1:
65:1f:8d:ec:6f:c9:c3:c1:f0:d4:99:db:02:a6:87:
46:1a:92:d4:63:94:ca:10:21:1d:61:28:ed:8f:a0:
c0:7f:a5:69:cb:94:4c:31:65:ca:27:b8:b9:fa:69:
99:c3:16:9b:8d:91:9f:0b:5e:09:c4:b9:b0:5c:5a:
74:81:be:fa:77:93:6d:68:48:80:1e:bf:a0:3d:e5:
2c:b0:8c:3d:4d:1f:4e:74:c8:ab:cd:91:a5:14:6d:
00:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:E8:7A:27:BD:44:9B:29:C7:30:BC:C7:DC:0E:4F:49:4F:5E:7B:D9
X509v3 Authority Key Identifier:
keyid:66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/3Oh6J71EmynHMLzH3A5PSU9ee9k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.170.14.0/24
Signature Algorithm: sha256WithRSAEncryption
96:cc:11:37:dc:90:23:b8:ae:82:ea:a6:f3:56:6f:08:c5:17:
b8:c2:6b:7a:87:b3:a4:22:f7:a6:ff:c5:e8:7e:0c:35:89:fe:
24:f1:6a:95:de:7e:e9:54:47:5a:29:86:19:3c:26:c1:8a:30:
10:de:7e:0e:c0:09:2e:31:a7:75:b5:f3:2f:8b:cf:aa:68:56:
58:e0:6b:31:27:ac:d3:d6:42:5b:a1:49:de:01:48:80:c7:60:
30:b4:8a:a3:ef:10:e6:98:1f:42:cd:69:61:10:52:cd:ee:db:
1b:8a:b1:d0:74:d3:ed:34:bf:e8:d2:d1:2a:cd:0f:f0:7e:36:
83:55:0a:2c:1a:86:38:5e:e2:ee:fb:3c:c3:f8:2f:78:40:f6:
e3:11:ab:be:89:7d:4a:11:01:e0:20:2b:21:7c:a5:b3:18:e5:
b5:1a:0f:c3:4e:85:34:35:51:0d:52:28:5b:8d:dd:ff:b3:62:
a1:fc:82:52:39:96:03:b9:aa:0f:e1:2d:46:e0:7c:d9:b6:c0:
1d:be:15:9e:8f:71:0d:f1:23:08:22:7e:ef:4d:71:86:05:2b:
ab:26:2c:49:64:c2:01:f0:be:3d:55:18:b6:7a:58:c3:0d:38:
c0:66:1d:bf:08:9f:fa:1d:49:a3:cc:df:82:e6:29:44:3e:ea:
61:da:41:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org