Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEEMON/VJxbXfHrdhn769rSFhFbawkKjqI.roa
File: VJxbXfHrdhn769rSFhFbawkKjqI.roa (raw, json)
Hash identifier: 0NZa5bll16bjLB1ZavegXMn/L+twOJLhQYKejuMpGbI=
Subject key identifier: 54:9C:5B:5D:F1:EB:76:19:FB:EB:DA:D2:16:11:5B:6B:09:0A:8E:A2
Certificate issuer: /CN=0486F1D511D2C22EC95994B123B3A24962C1E327
Certificate serial: 4E
Authority key identifier: 04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/VJxbXfHrdhn769rSFhFbawkKjqI.roa
Signing time: Thu 18 May 2023 04:30:05 +0000
ROA not before: Thu 18 May 2023 04:30:05 +0000
ROA not after: Thu 11 Jan 2024 15:30:09 +0000
asID: 9915
IP address blocks: 103.67.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78 (0x4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0486F1D511D2C22EC95994B123B3A24962C1E327
Validity
Not Before: May 18 04:30:05 2023 GMT
Not After : Jan 11 15:30:09 2024 GMT
Subject: CN=549C5B5DF1EB7619FBEBDAD216115B6B090A8EA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:29:83:46:b0:f6:17:9e:fb:ea:7c:7e:0f:40:
f5:84:7c:08:01:35:c0:25:a4:1d:25:38:e2:74:f6:
8b:9f:d5:da:3d:ce:5d:ac:26:fd:b7:f0:53:cb:51:
c4:e4:7a:77:9a:d4:c0:e7:34:17:dc:f8:1a:cb:69:
4f:a3:63:b4:8a:6b:8d:7c:4c:64:a0:29:54:43:ea:
34:f6:43:22:53:af:05:ab:8a:64:6e:a4:2b:dd:86:
6f:d8:93:50:1f:74:d8:0f:a8:56:47:1b:fa:a0:e8:
f7:7a:68:77:c0:ad:00:7e:b6:79:be:f3:4d:dc:a5:
7f:d3:46:d5:a3:06:7d:d1:9a:fc:56:16:ba:c8:92:
59:1f:92:9e:f2:99:c0:c7:b2:d8:2a:3c:d4:01:44:
1a:36:c2:cf:73:14:0c:46:4b:f9:ef:63:9a:71:cd:
9d:26:e9:27:14:73:40:6d:f2:ae:ca:03:06:a5:a0:
95:d3:e5:04:f8:b4:9a:5b:34:2e:38:39:fe:7c:e5:
e7:81:f2:08:c7:b3:44:79:75:4d:6e:ce:67:83:30:
b3:a8:70:d0:da:6e:7f:d2:fe:e0:d7:c3:52:26:ca:
e2:d0:6e:f7:42:bf:c5:b1:da:3f:7d:76:84:cb:19:
dd:d8:6f:ee:de:cb:70:9e:e2:0b:2d:d2:e6:41:fc:
00:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:9C:5B:5D:F1:EB:76:19:FB:EB:DA:D2:16:11:5B:6B:09:0A:8E:A2
X509v3 Authority Key Identifier:
keyid:04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BIbx1RHSwi7JWZSxI7OiSWLB4yc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/VJxbXfHrdhn769rSFhFbawkKjqI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.67.160.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:5c:78:1b:01:26:a4:fd:c3:ea:50:07:92:bb:b5:c7:f7:b6:
2f:64:f0:c2:a7:8b:78:c5:a1:e6:fe:f6:8b:46:15:d5:8d:28:
fc:e9:2f:d0:be:85:6b:97:08:ee:3c:41:b1:58:6d:e8:4f:d6:
2c:3f:a9:c8:1c:10:9a:f1:53:59:96:7f:d3:3e:e1:6d:28:de:
f5:51:a5:e5:d5:75:a2:b3:04:04:0b:a9:f2:11:f0:20:d0:58:
0b:ad:df:ed:11:61:dd:4f:bc:f5:c9:78:a9:03:5a:28:cd:c5:
c1:ea:c5:bd:0c:6f:d8:a4:b2:54:52:55:4f:72:de:0b:4b:be:
d8:1f:98:3c:8c:c5:3d:a0:c6:f9:51:da:eb:1f:0b:40:5e:24:
b2:90:da:fb:37:12:e3:cd:57:75:4a:cc:21:26:18:59:4b:99:
37:c3:93:76:b4:e6:a7:aa:62:6e:c2:e2:b0:60:77:79:67:4e:
e5:23:5c:c8:24:32:0b:d6:85:f7:90:d1:64:fe:ac:fa:60:fb:
6e:8e:99:b9:85:41:90:5c:97:7d:9e:95:c7:51:01:2d:14:56:
59:ad:0d:23:41:a1:8b:53:a7:3d:48:5d:e3:08:f2:dc:25:65:
ee:6f:81:bf:fa:cc:8b:72:04:c0:2f:4c:67:54:b4:80:e1:22:
9b:d0:9f:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org