Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/gRrxym8r0Ei6fP3PjQ21kxY-oJU.roa
File: gRrxym8r0Ei6fP3PjQ21kxY-oJU.roa (raw, json)
Hash identifier: VeYOq5SI0pr+5G81mCV5d+DZfuoGolTS5AQVUYbMujA=
Subject key identifier: 81:1A:F1:CA:6F:2B:D0:48:BA:7C:FD:CF:8D:0D:B5:93:16:3E:A0:95
Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
Certificate serial: F9
Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/gRrxym8r0Ei6fP3PjQ21kxY-oJU.roa
Signing time: Tue 21 Feb 2023 02:32:29 +0000
ROA not before: Tue 21 Feb 2023 02:32:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38047
IP address blocks: 103.182.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 249 (0xf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
Validity
Not Before: Feb 21 02:32:29 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=811AF1CA6F2BD048BA7CFDCF8D0DB593163EA095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:01:5b:4b:f7:7a:4e:6d:64:99:ad:2d:d5:b4:
2c:8f:cc:84:6b:2a:85:6f:6a:04:07:2c:2d:ea:66:
dc:76:8e:ac:79:d3:c2:38:59:3a:d1:08:15:4b:32:
d4:65:f6:d7:56:ed:fe:4d:ad:2d:4b:4a:2e:ba:61:
ed:f5:f2:6d:82:50:ec:22:ff:29:6e:94:14:60:03:
bd:cb:df:0a:40:fe:3e:6c:c8:92:e2:fa:c8:58:fb:
16:01:08:56:61:89:09:84:7e:22:6f:37:fe:b9:71:
b1:1b:ab:f3:6c:03:ff:95:b8:20:73:1b:e4:20:08:
fe:65:72:fc:86:37:ba:d3:88:33:91:af:ae:d3:44:
a6:7d:25:87:80:b1:29:4e:01:a2:93:36:8a:b8:90:
14:c8:c6:8d:46:60:3f:78:b7:b2:ed:ec:5e:8c:96:
93:ac:07:10:ee:03:32:e6:d1:fc:10:42:51:f4:dc:
ea:f8:5d:47:55:2c:34:13:4d:80:35:8b:d3:55:ec:
50:e6:06:90:45:63:3b:a9:8e:05:e3:b9:ab:76:f0:
02:14:dd:21:73:0f:be:b8:bb:2b:df:35:8b:99:1d:
80:36:1d:c9:63:dc:61:91:1a:7e:91:1b:1b:ed:57:
46:52:8f:04:a4:2d:6d:7c:ab:00:ff:ba:08:d5:a5:
ad:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:1A:F1:CA:6F:2B:D0:48:BA:7C:FD:CF:8D:0D:B5:93:16:3E:A0:95
X509v3 Authority Key Identifier:
keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/gRrxym8r0Ei6fP3PjQ21kxY-oJU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.182.227.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:b6:8c:2c:bb:f1:6a:02:07:5b:60:40:83:79:10:28:d6:42:
e4:96:ad:fb:a1:f9:7b:3e:0d:70:75:ab:e6:d6:1e:0f:c2:1b:
25:3f:a2:73:28:32:50:c4:8c:7d:b4:2a:7a:03:89:aa:97:24:
54:bc:eb:a0:23:a2:19:2a:8f:c9:fb:28:ff:97:47:90:d4:9a:
2a:92:96:37:cf:1a:66:1b:7c:38:75:20:6e:95:29:f4:fe:a8:
a7:78:15:02:7a:b6:5e:e3:f4:71:6a:f0:d4:f3:86:7e:5d:f5:
ef:49:94:fb:85:5d:43:31:ed:d3:4c:6e:eb:43:76:f1:5c:d2:
cd:46:3c:3e:8b:db:9f:63:4a:59:c2:51:fe:fa:69:b2:b9:ec:
88:e9:ba:d9:aa:d4:6a:6d:0b:2a:74:7e:0d:73:95:d8:f9:ca:
69:6b:47:a7:6c:e8:f7:37:ef:58:c5:5b:0e:e4:95:8b:9c:9d:
0f:fa:d9:91:a9:d5:72:32:e3:9d:48:47:b6:06:04:72:ac:02:
20:03:79:a6:ff:4c:32:a7:90:09:3d:b8:c7:3f:fe:34:70:0a:
f6:81:7f:48:fc:f0:6d:59:d5:e2:7b:6c:d0:20:ec:66:ec:9b:
ec:4a:55:3a:43:a7:12:dc:96:85:c0:56:30:59:06:3e:fd:40:
a9:d8:11:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org