Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/GJ0lbUsPueRVD2ZeNFT_JvsxP-0.roa
File: GJ0lbUsPueRVD2ZeNFT_JvsxP-0.roa (raw, json)
Hash identifier: rXjtD3iiWl3gIo+6nvxLI12eEpe/lo1tbKrGDjOcCH8=
Subject key identifier: 18:9D:25:6D:4B:0F:B9:E4:55:0F:66:5E:34:54:FF:26:FB:31:3F:ED
Certificate issuer: /CN=27109AE250EF2ECAF79BF4890F0D6CBE5E2D7CC6
Certificate serial: 0CB9
Authority key identifier: 27:10:9A:E2:50:EF:2E:CA:F7:9B:F4:89:0F:0D:6C:BE:5E:2D:7C:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JxCa4lDvLsr3m_SJDw1svl4tfMY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/GJ0lbUsPueRVD2ZeNFT_JvsxP-0.roa
Signing time: Thu 15 Sep 2022 02:44:33 +0000
ROA not before: Thu 15 Sep 2022 02:44:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17502
IP address blocks: 103.136.210.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3257 (0xcb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27109AE250EF2ECAF79BF4890F0D6CBE5E2D7CC6
Validity
Not Before: Sep 15 02:44:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=189D256D4B0FB9E4550F665E3454FF26FB313FED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:db:c8:3b:02:89:af:fa:84:70:0c:2e:9a:52:
14:cc:a4:02:9c:26:b1:77:9b:c4:5d:77:90:09:25:
ac:3c:de:07:6c:40:67:60:f6:9e:24:5d:b3:22:51:
d0:2c:d3:ae:41:37:bb:e3:9c:0a:28:76:db:75:55:
2e:f0:50:8e:7d:d4:47:44:26:e9:29:63:9e:88:ee:
83:05:46:9c:12:9b:dd:fc:2c:a2:2a:13:d6:83:ea:
54:bc:bf:69:1c:4f:c3:57:b2:e9:f5:e4:d9:bc:8e:
42:21:7d:24:3c:7a:c2:16:61:dc:99:de:f7:f5:29:
11:f4:cc:e1:11:43:60:34:4a:68:3d:a9:d0:8d:10:
da:42:1f:22:c3:d8:78:97:40:44:2c:30:30:9c:09:
27:ea:91:ab:a3:9f:42:d7:0f:89:bd:93:2e:4f:6f:
24:c0:89:33:23:3d:4f:6c:69:bf:24:fb:e6:6a:c9:
0f:4e:9c:ff:f4:ed:a9:e9:ea:4d:1f:e2:84:39:03:
c9:b2:29:27:9c:4c:6c:0d:99:ef:63:83:8a:91:e1:
ea:26:78:e1:67:fa:08:a0:e6:47:32:c4:9b:b9:80:
b8:96:82:67:3c:59:d5:7b:21:5b:50:81:ac:fa:15:
f6:df:aa:74:2a:5f:d6:de:54:5c:6e:3c:80:9e:0a:
cc:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:9D:25:6D:4B:0F:B9:E4:55:0F:66:5E:34:54:FF:26:FB:31:3F:ED
X509v3 Authority Key Identifier:
keyid:27:10:9A:E2:50:EF:2E:CA:F7:9B:F4:89:0F:0D:6C:BE:5E:2D:7C:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/JxCa4lDvLsr3m_SJDw1svl4tfMY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JxCa4lDvLsr3m_SJDw1svl4tfMY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/GJ0lbUsPueRVD2ZeNFT_JvsxP-0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.210.0/23
Signature Algorithm: sha256WithRSAEncryption
24:7e:c4:c3:d5:43:8d:bc:ba:bf:51:c2:45:c7:f3:e0:d2:06:
73:2c:d1:65:43:38:9d:fb:bd:43:a1:40:3e:15:b3:2a:a4:85:
a7:90:4c:e6:16:20:7b:ee:dd:0e:78:18:82:f4:20:ae:54:76:
51:36:c3:67:bf:1a:6a:3b:9e:06:20:61:9d:f6:f5:b0:7b:ef:
68:44:a2:15:32:a6:a5:fa:a0:cc:11:cc:d8:0d:0c:a0:c8:21:
2d:b7:b6:b1:52:9d:23:51:51:11:6c:b2:5f:df:3c:51:38:60:
5f:15:78:a9:a9:a2:5b:b7:ac:1d:79:36:e7:7b:2e:7a:82:5e:
20:9a:a4:09:54:1b:0f:c7:3a:5d:0e:a9:02:24:6f:ff:c0:39:
db:e2:77:ef:15:cb:e2:0e:84:ea:85:48:96:79:47:07:30:97:
81:6e:fc:73:b8:34:20:18:58:6a:ef:d4:16:3f:91:03:67:1f:
3e:0e:55:05:fe:8e:f1:01:e5:e6:f4:f4:90:40:78:1a:44:23:
dd:6f:57:c3:8f:fb:d1:a2:54:56:c6:19:27:f5:10:fe:bb:5c:
50:21:e8:c2:85:63:d4:32:c1:c4:ea:84:82:e1:8e:12:41:77:
a2:ae:9b:28:1c:62:0c:d7:22:b2:77:d4:7e:87:c6:53:81:de:
57:2d:34:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org