Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISTVC/Dd8u9PA7BFLEy9fWkZP2U71Vjmo.roa
File: Dd8u9PA7BFLEy9fWkZP2U71Vjmo.roa (raw, json)
Hash identifier: BNN6oGCvTy3IFe5ylNdesaxfI9IFg5Wd6JOoCOpkPUQ=
Subject key identifier: 0D:DF:2E:F4:F0:3B:04:52:C4:CB:D7:D6:91:93:F6:53:BD:55:8E:6A
Certificate issuer: /CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02
Certificate serial: 6C
Authority key identifier: 68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/Dd8u9PA7BFLEy9fWkZP2U71Vjmo.roa
Signing time: Thu 07 Apr 2022 07:27:35 +0000
ROA not before: Thu 07 Apr 2022 07:27:35 +0000
ROA not after: Wed 02 Nov 2022 01:30:09 +0000
asID: 9920
IP address blocks: 103.173.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108 (0x6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02
Validity
Not Before: Apr 7 07:27:35 2022 GMT
Not After : Nov 2 01:30:09 2022 GMT
Subject: CN=0DDF2EF4F03B0452C4CBD7D69193F653BD558E6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4f:73:b1:12:15:b7:d9:b8:ad:86:38:60:5a:
6a:76:6d:c8:6e:f6:2d:8f:61:58:65:87:f7:a0:6d:
5d:32:b1:2f:20:93:da:6a:50:c8:58:4b:c8:22:7c:
4c:7b:7d:18:0c:35:13:a7:46:c4:63:f7:48:8e:e0:
a6:06:8f:83:9b:bb:2a:20:0c:1f:c9:1b:e1:98:cb:
3f:ce:cf:40:8f:68:4c:bf:b6:c7:b5:f7:dc:8d:6d:
42:29:4e:f1:90:79:f7:7f:b0:fa:6b:a5:e3:13:81:
81:ac:fd:97:0d:74:9d:cc:a3:9b:3b:ee:e2:83:c5:
12:ce:8e:f8:ee:2d:9f:77:b1:db:70:a0:bc:f1:b1:
92:56:1c:42:f5:9f:76:cf:70:a8:cc:9f:e1:b2:45:
c9:72:b2:06:a8:1b:cf:57:b0:9d:c3:44:ca:85:6c:
44:c3:89:6c:55:17:0e:4c:51:f5:3d:64:90:f5:45:
51:c6:26:6d:37:6c:a8:05:02:da:4e:60:5a:c3:e9:
84:d0:9c:50:2a:0f:96:4d:d1:2c:a4:c4:24:13:1c:
9e:7c:e6:67:5f:13:11:5d:1d:47:15:68:ee:ea:5d:
d0:98:81:d8:c3:08:d9:ad:18:c0:bd:4a:05:e0:61:
2d:8e:29:c5:a4:25:ec:e6:70:9d:b6:18:68:ab:f3:
03:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:DF:2E:F4:F0:3B:04:52:C4:CB:D7:D6:91:93:F6:53:BD:55:8E:6A
X509v3 Authority Key Identifier:
keyid:68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/Dd8u9PA7BFLEy9fWkZP2U71Vjmo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.173.95.0/24
Signature Algorithm: sha256WithRSAEncryption
18:e3:18:ed:36:88:51:9e:7e:ec:27:b1:ea:0f:75:98:f7:cd:
f3:d9:15:64:ba:24:18:e7:32:c1:8f:28:a3:37:b5:48:f6:6d:
65:3d:4d:82:35:af:8f:ec:6a:bd:ab:7d:48:e9:63:b7:b0:d5:
60:cb:33:46:e7:e9:45:e2:0b:2a:48:5d:3a:8e:f5:52:b8:7d:
e6:93:de:63:3e:bb:dd:18:72:b0:d2:f7:a5:41:fc:bf:a7:35:
27:21:32:7f:13:e3:97:3a:a5:c5:cb:b0:9c:5d:c0:93:04:aa:
57:d1:be:49:f3:9a:1b:98:8f:b1:5b:1a:38:95:05:f9:a4:a3:
bc:87:89:c5:6d:da:ee:d3:9c:c3:7a:5f:a5:e9:b0:0f:fe:78:
b8:4a:ae:4a:f3:b8:44:03:20:01:ac:18:4d:d4:de:54:bd:cb:
27:aa:dc:c7:b8:5d:ec:df:67:26:2c:25:79:13:e7:36:6f:d3:
d7:d7:ca:e2:47:34:79:0a:bf:ad:f1:dc:26:08:3d:e1:ce:32:
4a:c6:30:2b:d9:a2:c6:6d:16:69:c4:db:42:fc:7b:6b:6d:90:
55:d9:80:6c:96:69:12:09:3b:e5:fc:d1:55:c1:05:a8:7d:dc:
cc:48:c5:dd:a1:57:45:6a:3e:c5:dd:c6:3c:40:5f:f1:52:d7:
29:fc:51:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org