Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BvVM-1CdZ8xLDLp8ELNAh0AmDFA.roa
File: BvVM-1CdZ8xLDLp8ELNAh0AmDFA.roa (raw, json)
Hash identifier: UQoB8QquKdVGqKSgGmGHkz2W15ejKtNtyk5kQoAKQEo=
Subject key identifier: 06:F5:4C:FB:50:9D:67:CC:4B:0C:BA:7C:10:B3:40:87:40:26:0C:50
Certificate issuer: /CN=0486F1D511D2C22EC95994B123B3A24962C1E327
Certificate serial: 39
Authority key identifier: 04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BvVM-1CdZ8xLDLp8ELNAh0AmDFA.roa
Signing time: Tue 18 Apr 2023 12:39:08 +0000
ROA not before: Tue 18 Apr 2023 12:39:08 +0000
ROA not after: Thu 11 Jan 2024 15:30:09 +0000
asID: 131659
IP address blocks: 103.67.160.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57 (0x39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0486F1D511D2C22EC95994B123B3A24962C1E327
Validity
Not Before: Apr 18 12:39:08 2023 GMT
Not After : Jan 11 15:30:09 2024 GMT
Subject: CN=06F54CFB509D67CC4B0CBA7C10B3408740260C50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c3:98:83:8e:57:94:f9:53:b9:3e:0d:db:d0:
18:88:83:92:ad:41:88:64:6f:e2:fd:f5:59:54:b1:
0b:27:dc:18:15:19:36:cd:9a:a1:52:d8:59:f1:d6:
8d:9f:7b:be:2d:9f:72:9c:eb:b9:88:52:ec:bb:39:
01:03:af:39:6c:d7:81:03:2d:99:76:f1:94:db:83:
6e:ce:e3:a9:36:0e:14:1d:a5:2b:8a:2c:0c:2c:7a:
70:79:63:e3:52:95:b9:5d:60:b3:f1:e4:f3:8a:9e:
51:aa:2c:f2:4d:7c:e5:fa:71:f8:8e:7f:1b:3c:da:
41:c2:69:8d:eb:96:2d:43:cb:41:e8:dd:0d:b7:f4:
c0:7d:d7:85:59:d7:2e:c4:d1:d5:12:9f:51:e5:55:
ec:64:6a:23:f1:ad:01:fc:3c:9c:51:67:02:d7:ba:
67:75:77:6e:79:f6:42:df:25:b8:6e:df:ce:18:48:
25:23:1c:dc:2d:0b:cb:37:0a:b2:35:fd:6f:9d:a1:
5e:c8:00:c0:fe:e1:83:cd:fd:d7:40:94:05:8e:3b:
41:23:b1:b7:7d:39:1d:69:78:d3:19:5b:1a:1a:b3:
3d:78:8c:d9:b3:d6:dc:d6:d3:ce:24:93:22:03:be:
ff:18:80:a7:35:c1:b4:d2:fc:88:04:ba:ca:fc:73:
58:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:F5:4C:FB:50:9D:67:CC:4B:0C:BA:7C:10:B3:40:87:40:26:0C:50
X509v3 Authority Key Identifier:
keyid:04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BIbx1RHSwi7JWZSxI7OiSWLB4yc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BvVM-1CdZ8xLDLp8ELNAh0AmDFA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.67.160.0/23
Signature Algorithm: sha256WithRSAEncryption
37:f1:dd:01:cb:cd:4b:b5:23:27:a6:12:dd:f2:f3:d5:e1:61:
30:49:e6:13:85:d7:2f:d5:ec:98:4c:52:7f:e7:e7:bd:2e:3e:
46:21:95:37:bf:57:8f:f8:97:3f:33:d4:26:82:02:15:78:84:
56:58:42:a3:57:c4:4c:d4:94:f6:43:41:b4:5f:b5:51:ae:f9:
65:eb:cb:ac:c1:3a:31:e1:cb:9b:86:dc:b4:e7:b7:69:8f:53:
c2:1c:60:3c:8b:b1:b5:02:a8:c1:1a:1b:bd:fb:c7:73:8f:df:
5c:79:43:11:4b:4a:80:3d:b3:96:17:90:00:09:af:49:57:33:
e7:ab:01:4f:5f:ba:b5:44:d2:66:46:67:8f:3a:16:4d:c5:ac:
1d:6e:51:78:a2:4d:e5:13:40:96:99:4a:a2:00:2a:a7:35:af:
63:f0:48:87:6c:ad:3c:bb:9a:0e:bb:84:a7:9e:88:7f:25:42:
23:f9:fc:e6:a6:30:ca:4a:d5:4a:82:0d:05:54:bd:08:c0:be:
7b:e0:e1:89:f0:47:6c:d3:58:20:e9:5d:d9:d1:a8:a9:f9:bf:
a9:95:5b:3f:46:7b:c5:9b:77:9a:0c:7f:dc:a9:b7:84:da:18:
9d:09:f9:b3:16:ac:74:61:9c:69:89:e6:97:19:1a:5f:b9:84:
22:e5:e0:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org