Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/PXH1z09belf_L4meVWv71kVlJb0.roa
File: PXH1z09belf_L4meVWv71kVlJb0.roa (raw, json)
Hash identifier: 0297ZBXy9wWclDh94SuV//qbCmiZ271y7wR5ccsAvQE=
Subject key identifier: 3D:71:F5:CF:4F:5B:7A:57:FF:2F:89:9E:55:6B:FB:D6:45:65:25:BD
Certificate issuer: /CN=830BC4410162A58D0DB17E0A351551FBB3D751A1
Certificate serial: 0966
Authority key identifier: 83:0B:C4:41:01:62:A5:8D:0D:B1:7E:0A:35:15:51:FB:B3:D7:51:A1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gwvEQQFipY0NsX4KNRVR-7PXUaE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/PXH1z09belf_L4meVWv71kVlJb0.roa
Signing time: Wed 29 Sep 2021 02:40:24 +0000
ROA not before: Wed 29 Sep 2021 02:40:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 26415
IP address blocks: 103.116.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2406 (0x966)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830BC4410162A58D0DB17E0A351551FBB3D751A1
Validity
Not Before: Sep 29 02:40:24 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3D71F5CF4F5B7A57FF2F899E556BFBD6456525BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:54:52:1d:6e:4e:d2:df:fe:d9:ea:9b:05:8f:
dd:b7:f6:c7:74:c4:98:b5:e8:21:56:1a:6b:8a:ea:
44:fe:3f:e8:d6:b9:bc:86:12:7f:89:11:2e:ef:fc:
39:c5:7e:e0:5b:23:c3:a3:67:4b:a3:29:66:7c:91:
1b:16:24:0c:5a:40:69:c4:40:01:49:f2:e6:7e:e1:
ff:90:24:b9:9a:9a:3a:c4:b5:b6:80:72:58:d1:d5:
74:ad:9e:49:9f:44:b1:9f:e5:4d:3b:02:75:ed:28:
2d:bf:bd:ac:5b:55:fe:88:05:0c:28:32:50:7f:14:
b2:cd:8c:e2:46:24:a9:9f:55:29:2d:7e:2c:8a:02:
d1:9f:65:47:37:e5:ac:c7:3b:b3:6f:9d:20:4c:e2:
02:23:2f:17:b7:e9:20:c8:7d:95:90:fa:e4:82:39:
1f:53:fe:39:66:08:48:17:34:67:a7:3d:2e:ef:5e:
95:6d:31:c0:b7:e6:4d:f6:6f:e7:43:bc:0d:c6:78:
1b:f3:a6:24:fc:88:77:4f:c5:20:6f:bf:98:02:6d:
b6:5e:35:a0:0d:b3:d1:17:ae:60:d5:1c:f6:0c:2b:
e7:e3:74:85:d7:c2:01:63:b5:e2:b9:56:4d:27:e7:
a1:02:13:8e:71:72:57:b1:a2:72:7a:45:27:a0:38:
6a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:71:F5:CF:4F:5B:7A:57:FF:2F:89:9E:55:6B:FB:D6:45:65:25:BD
X509v3 Authority Key Identifier:
keyid:83:0B:C4:41:01:62:A5:8D:0D:B1:7E:0A:35:15:51:FB:B3:D7:51:A1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/gwvEQQFipY0NsX4KNRVR-7PXUaE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gwvEQQFipY0NsX4KNRVR-7PXUaE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/PXH1z09belf_L4meVWv71kVlJb0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.116.98.0/24
Signature Algorithm: sha256WithRSAEncryption
37:25:97:0b:c8:37:02:07:7b:1d:dc:80:36:00:8e:1c:4a:c2:
3e:91:e8:bf:8e:61:0e:33:af:25:20:73:f9:6d:62:b5:26:e7:
f2:ea:85:74:76:29:27:14:75:6a:20:70:05:ff:d6:5d:ae:70:
9d:57:fd:eb:6f:01:68:0e:11:cb:d3:6f:e6:90:a5:89:bd:d2:
c5:ba:a1:96:25:b0:0b:b3:9f:c4:31:38:3d:ef:c5:2f:0b:af:
72:66:a1:de:1d:dc:8d:ab:ec:a6:29:f1:47:1d:0b:4a:1e:6f:
ca:4a:53:74:02:8e:2e:2b:21:bc:85:3b:03:7d:37:d9:e0:2d:
ba:43:49:38:03:5d:56:3d:e1:5c:fe:a4:f0:59:a7:59:dc:2d:
bb:b3:76:d2:30:5c:7b:f1:aa:6c:ab:8b:c3:24:52:b5:23:65:
e8:63:74:14:9c:d2:d6:d0:25:97:23:1d:98:22:16:44:3d:6b:
5e:66:1a:b3:aa:96:54:05:17:8b:36:cc:7f:e6:4b:f0:cf:ee:
e4:a8:5b:2d:e1:34:4c:cf:81:fd:5c:2d:3d:e1:64:ad:f8:5c:
03:1d:87:08:fe:45:22:2b:2e:88:0e:8a:35:5b:4a:88:a1:41:
1f:aa:bc:67:bd:42:b2:d4:eb:6d:06:b9:25:5b:6e:86:62:fb:
68:81:c4:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org