Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HYA/W2Kdtm2SFsxoXuQnpW0zI5bUepg.roa
File: W2Kdtm2SFsxoXuQnpW0zI5bUepg.roa (raw, json)
Hash identifier: N+Wn9pH5tTfmTZUM5LYjbbDK2eMka5Wmd+LSM1MT8A4=
Subject key identifier: 5B:62:9D:B6:6D:92:16:CC:68:5E:E4:27:A5:6D:33:23:96:D4:7A:98
Certificate issuer: /CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4
Certificate serial: 08AB
Authority key identifier: 0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/W2Kdtm2SFsxoXuQnpW0zI5bUepg.roa
Signing time: Sun 07 Feb 2021 12:35:06 +0000
ROA not before: Sun 07 Feb 2021 12:35:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10085
IP address blocks: 103.252.128.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2219 (0x8ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4
Validity
Not Before: Feb 7 12:35:06 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5B629DB66D9216CC685EE427A56D332396D47A98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1a:ea:db:85:0c:d8:ff:b3:bd:ee:1e:d5:b5:
3a:7f:a0:37:ef:ad:2f:21:b8:23:db:9f:cb:24:32:
01:3c:da:0f:83:e8:6d:f6:ee:88:bb:10:80:9e:66:
9a:fb:96:f4:b0:74:c7:35:0d:95:69:de:2e:12:3d:
5b:4e:62:e2:25:20:49:67:d8:93:21:e8:78:e6:71:
28:da:70:af:fc:24:89:d0:18:c5:71:c9:bc:10:d1:
c4:5d:e6:2e:af:2c:51:82:60:1e:73:61:84:81:29:
22:0d:3d:f7:c2:64:d9:97:0f:b6:83:e9:e5:03:87:
cb:1f:0c:72:92:86:1d:0e:54:31:c8:e9:c4:32:16:
5f:07:24:37:26:73:97:ef:02:41:36:16:46:db:a7:
14:c4:87:1a:bd:fa:86:d4:93:4a:7c:83:bd:60:61:
4a:dc:21:66:98:8a:8b:f6:79:ad:12:c0:27:eb:a8:
9f:fd:f0:28:44:62:6f:d4:99:b8:51:aa:59:c5:02:
37:26:a6:16:f6:58:6e:05:ac:5d:56:31:4f:30:02:
d8:c0:83:ae:b1:dc:24:9d:f5:bf:60:40:3f:ad:68:
91:ef:13:a9:c7:68:06:cf:8f:56:b5:58:07:e4:89:
f4:48:84:ba:cc:f8:74:ed:eb:a5:be:81:a7:d3:63:
b2:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:62:9D:B6:6D:92:16:CC:68:5E:E4:27:A5:6D:33:23:96:D4:7A:98
X509v3 Authority Key Identifier:
keyid:0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/W2Kdtm2SFsxoXuQnpW0zI5bUepg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.252.128.0/22
Signature Algorithm: sha256WithRSAEncryption
47:20:35:f5:04:30:23:cb:54:19:5f:5a:e4:58:56:6c:96:6c:
e1:09:3d:65:eb:29:d8:49:e0:e5:8d:f4:72:06:28:5b:1d:57:
d8:5d:4a:ab:90:d8:0e:18:0b:88:30:7a:be:7f:aa:85:71:94:
19:ac:ad:59:a2:1d:d0:a4:c6:77:5b:f6:51:1a:37:44:e7:fc:
c0:56:f4:c4:c4:2e:01:c2:52:02:f0:1c:7d:02:c7:af:e9:c3:
71:46:6b:f1:73:0d:48:7f:6d:d3:2c:95:d2:3d:5f:45:65:e3:
41:a3:23:ce:a8:82:d9:29:ec:1a:20:06:78:48:c1:71:39:0e:
a7:a8:c7:5e:cc:cc:fc:6e:b7:ef:20:34:12:6a:29:fd:f2:a5:
bb:38:01:f2:79:51:48:1f:d3:80:44:8b:30:b6:ea:89:d9:a5:
68:d3:67:e7:3c:ea:ec:2b:b9:52:bf:01:cd:8d:fe:0d:ca:48:
75:40:0c:d4:16:6b:5a:2d:40:fb:04:d1:32:0e:66:3a:cf:2a:
cd:2f:b3:5a:44:2a:4e:c2:3a:f6:83:41:54:e8:cb:d3:4d:90:
a9:97:91:12:96:1e:c0:be:0b:b9:6b:cb:f1:19:8f:d7:fd:6a:
6f:2c:f8:98:4c:54:27:30:33:66:b2:a6:28:21:8e:19:1e:be:
8e:1e:ab:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org