Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/2NlNDY0APk5Rdu3jG0m_sBA5KFo.roa
File: 2NlNDY0APk5Rdu3jG0m_sBA5KFo.roa (raw, json)
Hash identifier: bM7vC1mA6+VlC80wbksUqBHr5NPYGuMRjOjfTae8aiU=
Subject key identifier: D8:D9:4D:0D:8D:00:3E:4E:51:76:ED:E3:1B:49:BF:B0:10:39:28:5A
Certificate issuer: /CN=61E0EE79428B85EDABB5F6EB9578EFB19E63C98F
Certificate serial: 0CA3
Authority key identifier: 61:E0:EE:79:42:8B:85:ED:AB:B5:F6:EB:95:78:EF:B1:9E:63:C9:8F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YeDueUKLhe2rtfbrlXjvsZ5jyY8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/2NlNDY0APk5Rdu3jG0m_sBA5KFo.roa
Signing time: Thu 15 Sep 2022 02:42:07 +0000
ROA not before: Thu 15 Sep 2022 02:42:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 134823
IP address blocks: 103.137.22.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3235 (0xca3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61E0EE79428B85EDABB5F6EB9578EFB19E63C98F
Validity
Not Before: Sep 15 02:42:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D8D94D0D8D003E4E5176EDE31B49BFB01039285A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:80:d8:2f:4b:9c:cb:fe:49:07:c0:ea:05:25:
c6:10:47:d8:ab:85:8d:27:db:eb:64:41:51:7f:aa:
b9:d3:23:28:75:58:65:49:3c:22:6a:b5:4d:eb:74:
be:5d:fb:f5:49:7c:6b:bd:ec:d4:44:06:07:75:b1:
5b:80:ec:de:85:73:55:7c:c8:ef:18:f9:85:8c:6d:
28:14:78:60:98:2e:18:52:43:a7:37:e8:14:68:dd:
6a:c2:ca:60:d7:a9:01:ee:b9:13:37:b5:36:45:89:
e6:26:16:2f:55:17:7b:2a:67:d7:b9:21:c7:5b:67:
43:32:08:4f:42:6a:a3:1a:e3:3e:92:a9:de:d7:e6:
62:9c:8f:57:bf:51:c8:35:b6:63:71:81:c1:cc:3b:
5d:f7:9a:93:a0:67:d0:33:81:a5:8f:ca:48:3c:5e:
32:4f:19:a4:15:70:bb:2e:c9:04:10:54:b4:79:4a:
ab:f7:99:c8:16:33:dd:83:ff:9e:f0:08:b1:68:6a:
aa:d3:e0:80:3b:e1:b1:bd:c0:80:30:58:4b:cc:66:
99:1b:f2:90:bc:94:c3:9b:ab:b3:53:5e:c0:99:af:
af:41:bd:9a:a8:65:66:ce:de:4b:2c:f9:f1:e0:a9:
60:36:6e:70:9b:0d:eb:ce:38:8f:ef:26:45:0d:00:
6a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:D9:4D:0D:8D:00:3E:4E:51:76:ED:E3:1B:49:BF:B0:10:39:28:5A
X509v3 Authority Key Identifier:
keyid:61:E0:EE:79:42:8B:85:ED:AB:B5:F6:EB:95:78:EF:B1:9E:63:C9:8F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/YeDueUKLhe2rtfbrlXjvsZ5jyY8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YeDueUKLhe2rtfbrlXjvsZ5jyY8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/2NlNDY0APk5Rdu3jG0m_sBA5KFo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.22.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:d9:a1:85:3e:98:09:e9:d2:c2:36:40:ea:bc:e4:d6:03:a6:
58:08:7c:5b:71:6f:62:bf:d6:e2:b4:82:fd:e5:66:5a:46:1e:
22:be:f4:bc:5c:21:91:e2:d7:b7:42:55:76:ef:9f:61:2f:93:
72:85:7a:8c:ea:f5:e8:6a:7c:7a:da:22:0a:c2:c2:7f:c5:e2:
25:f6:b2:da:d8:98:ac:28:20:6e:89:bd:99:8d:0d:aa:69:b6:
38:99:dd:ac:93:49:53:9c:7d:ae:0a:73:75:d5:1e:e8:9e:c5:
b7:cf:83:83:7f:95:e2:ec:74:2b:c2:2c:f6:0a:2a:37:bc:91:
52:bb:65:e5:a9:b3:64:f5:4a:c6:77:c9:7a:67:2f:59:f6:ed:
20:da:3b:1e:19:a3:2f:11:05:31:57:67:a1:99:bb:9b:c5:84:
c9:66:ad:f4:59:7b:bb:80:58:f3:bd:25:c3:91:d8:b6:06:9d:
1b:48:3a:cd:bc:25:9e:54:71:c3:84:25:95:41:2c:82:88:d6:
1e:fe:e1:99:d3:af:c2:53:12:69:79:7a:ef:4d:29:92:1e:33:
83:9e:50:84:7d:2c:dd:d3:78:1c:d4:b6:c9:e4:ec:bd:4b:aa:
8a:ef:e7:f0:e7:07:41:e5:0c:ec:15:9e:53:26:85:de:38:25:
f9:52:ef:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org