Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/QvhlvJAAQVf9jaK2Nmqe-X02LLk.roa
File: QvhlvJAAQVf9jaK2Nmqe-X02LLk.roa (raw, json)
Hash identifier: L/PYtvNhkmoB3p1b9uycnmXd+aHvSijE++j8M+Q5mvY=
Subject key identifier: 42:F8:65:BC:90:00:41:57:FD:8D:A2:B6:36:6A:9E:F9:7D:36:2C:B9
Certificate issuer: /CN=27109AE250EF2ECAF79BF4890F0D6CBE5E2D7CC6
Certificate serial: 0B2F
Authority key identifier: 27:10:9A:E2:50:EF:2E:CA:F7:9B:F4:89:0F:0D:6C:BE:5E:2D:7C:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JxCa4lDvLsr3m_SJDw1svl4tfMY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/QvhlvJAAQVf9jaK2Nmqe-X02LLk.roa
Signing time: Sun 07 Feb 2021 12:40:25 +0000
ROA not before: Sun 07 Feb 2021 12:40:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 134823
IP address blocks: 103.136.210.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2863 (0xb2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27109AE250EF2ECAF79BF4890F0D6CBE5E2D7CC6
Validity
Not Before: Feb 7 12:40:25 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=42F865BC90004157FD8DA2B6366A9EF97D362CB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6a:2e:4e:0e:62:a0:b5:73:56:f6:02:84:d5:
13:fb:43:4f:0a:cb:81:9e:ae:9b:62:05:e3:03:73:
d8:08:d5:c1:92:b3:6c:23:e1:ea:58:75:74:54:cc:
08:24:1a:10:d6:7a:a7:fc:5b:27:88:d6:0b:1f:7f:
4a:b6:da:ba:7d:61:92:df:31:40:53:27:a8:54:da:
7f:7b:fd:cc:13:a5:74:e1:3b:0b:9c:c7:e7:b7:84:
36:b1:8c:ab:3a:63:13:b9:7f:40:b0:56:60:d5:1f:
c7:f6:be:8f:2c:43:71:9b:0d:b4:f5:e3:1f:c2:91:
dd:8d:32:05:be:8d:45:fe:b8:16:a4:66:27:55:6b:
7d:13:cf:f1:fd:00:23:bb:d4:74:35:8b:fb:04:c1:
ed:1f:96:2b:67:b7:9f:d6:9e:6b:a0:0d:25:e3:4c:
c4:d7:cd:fa:df:18:af:a8:46:99:1f:84:fa:d7:46:
cf:a2:db:7b:59:c8:a2:f6:37:1e:01:ac:c4:48:44:
af:1a:a0:47:49:9b:0b:55:be:52:70:1e:9e:ab:9e:
80:1b:48:d3:88:c5:3d:b9:db:a4:e2:2d:0d:ae:e9:
e1:e1:21:87:1c:ba:d5:aa:79:65:71:04:4d:bc:7b:
4b:5c:13:10:4f:5d:c1:b2:b6:06:c7:9e:f9:ed:e0:
40:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F8:65:BC:90:00:41:57:FD:8D:A2:B6:36:6A:9E:F9:7D:36:2C:B9
X509v3 Authority Key Identifier:
keyid:27:10:9A:E2:50:EF:2E:CA:F7:9B:F4:89:0F:0D:6C:BE:5E:2D:7C:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/JxCa4lDvLsr3m_SJDw1svl4tfMY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JxCa4lDvLsr3m_SJDw1svl4tfMY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/QvhlvJAAQVf9jaK2Nmqe-X02LLk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.136.210.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:22:46:75:53:73:1d:95:f5:31:13:36:83:ec:bf:05:9e:8f:
e9:6e:53:36:9d:7f:14:ec:82:0f:62:f3:02:5e:65:a9:fe:4a:
8e:2c:80:15:61:47:d8:35:7a:99:c7:e3:9a:4a:a5:de:89:d1:
61:ae:0f:9f:1b:0d:a1:bc:f4:4d:e9:ec:25:c0:fc:02:75:c0:
92:a3:c5:b9:24:dc:df:00:b1:4d:44:31:6e:fc:4a:fd:e9:35:
3d:76:dc:29:5b:25:a8:a3:8d:37:9d:e1:b5:35:5f:f9:7d:f1:
1f:27:63:79:75:14:75:49:90:b5:23:3e:8f:03:61:09:69:82:
2e:9d:99:2f:b6:b2:b4:ac:72:1a:7c:85:d6:78:f4:43:c9:f5:
bb:18:14:b1:04:aa:3b:95:c7:2f:41:6e:c3:ae:3d:60:bb:a6:
fc:db:09:51:02:5c:b2:92:cd:98:18:5e:92:9f:61:7f:5a:0c:
a6:49:04:0b:2b:1d:f6:0f:f6:a6:50:8b:46:cc:e3:81:d9:a5:
7c:ac:5b:5a:6b:21:e1:1a:39:ed:9c:54:fe:d0:e0:58:41:c8:
7e:86:a9:c3:91:94:87:4f:cf:22:51:c4:03:b2:83:7b:a9:c0:
da:bd:ce:08:32:44:a4:ad:f9:9c:0c:40:36:98:87:59:90:01:
9d:4b:46:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org