Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEEMON/lSfjw8in45ST2Ge7NumdssoxH1U.roa
File: lSfjw8in45ST2Ge7NumdssoxH1U.roa (raw, json)
Hash identifier: fL6fh+frF2jU7ghAvD2q5wKJVRL/zA1LYcyAnHdcIe4=
Subject key identifier: 95:27:E3:C3:C8:A7:E3:94:93:D8:67:BB:36:E9:9D:B2:CA:31:1F:55
Certificate issuer: /CN=0486F1D511D2C22EC95994B123B3A24962C1E327
Certificate serial: 04
Authority key identifier: 04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/lSfjw8in45ST2Ge7NumdssoxH1U.roa
Signing time: Mon 30 Jan 2023 11:11:36 +0000
ROA not before: Mon 30 Jan 2023 11:11:36 +0000
ROA not after: Thu 11 Jan 2024 15:30:09 +0000
asID: 9915
IP address blocks: 103.67.160.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0486F1D511D2C22EC95994B123B3A24962C1E327
Validity
Not Before: Jan 30 11:11:36 2023 GMT
Not After : Jan 11 15:30:09 2024 GMT
Subject: CN=9527E3C3C8A7E39493D867BB36E99DB2CA311F55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:c8:ac:ea:ca:8a:40:bf:e5:77:0f:20:3d:50:
cd:a2:f3:f7:9c:84:e5:01:a9:c5:43:63:8f:e8:38:
1e:1c:6d:d8:24:6f:62:b3:e5:5a:a7:4e:d3:8c:59:
d8:23:11:0d:14:1b:ca:a1:59:bb:cc:fc:1c:b2:34:
e6:80:7c:39:c7:12:b7:25:25:90:db:38:51:07:89:
f5:ab:8b:14:c7:78:1e:f7:54:39:0c:ad:ca:a3:ac:
b6:62:be:44:05:30:83:cd:f5:bf:40:3a:86:fa:fb:
56:70:c0:6f:e1:7e:62:dd:8e:68:8d:d9:0d:fd:d9:
6f:79:3b:13:ad:4a:51:60:bd:6a:b7:eb:11:5c:a5:
2d:76:6c:bf:17:ee:21:a4:f5:34:28:17:91:3a:9e:
e5:89:c7:34:af:5f:88:28:de:3b:40:07:b0:37:2b:
46:05:62:41:c3:fe:2b:86:68:20:a2:b7:6e:ba:52:
53:cb:a1:03:90:87:dc:ae:ce:0c:e2:d1:d4:84:68:
34:40:26:e7:2c:c3:60:3d:8e:e6:fa:1a:aa:c8:6b:
86:29:a1:ef:d1:86:da:c6:4d:27:cf:d5:39:c9:8c:
43:5d:7e:0c:18:30:d6:41:8e:33:af:3e:6d:c0:5d:
cb:62:06:6b:6b:24:8a:05:8e:ca:25:c4:2a:3e:93:
9c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:27:E3:C3:C8:A7:E3:94:93:D8:67:BB:36:E9:9D:B2:CA:31:1F:55
X509v3 Authority Key Identifier:
keyid:04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BIbx1RHSwi7JWZSxI7OiSWLB4yc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/lSfjw8in45ST2Ge7NumdssoxH1U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.67.160.0/23
Signature Algorithm: sha256WithRSAEncryption
d1:68:15:11:d7:d5:8a:22:9e:2a:3c:6b:df:27:7b:c4:f3:26:
13:c7:e8:56:44:5d:c0:8e:ff:10:37:8f:be:ec:59:81:b4:60:
c4:6f:2a:3e:ce:ce:a8:b1:6d:25:91:e8:31:cc:7f:d2:7e:07:
b5:e9:c2:ef:31:c7:56:b5:f4:f9:da:c6:62:c4:9f:d2:3d:5c:
69:e5:69:7c:72:8c:74:8b:04:36:7b:92:bb:09:35:f6:b3:cb:
87:bc:30:16:ee:58:bb:77:ec:f2:43:a6:f7:1e:53:6c:e0:23:
aa:6a:f2:44:57:f0:57:d2:91:1c:c9:ff:99:21:97:49:f9:f5:
5e:d8:a1:89:c7:b8:97:38:24:64:95:67:2b:a5:92:23:e4:46:
93:15:44:21:e8:a8:25:0c:3f:c2:f4:fa:4e:f6:14:a9:09:24:
14:c8:d3:3b:e0:56:33:6a:d7:d8:eb:ae:53:82:fa:99:da:a1:
ef:9a:e6:22:c3:e2:96:e8:90:98:3f:e1:d3:f6:5c:0f:45:39:
2c:65:b5:09:e1:09:37:5c:d0:61:a0:df:64:9a:a9:3d:cb:b1:
de:db:71:c1:b5:03:80:e5:c0:a8:4a:9e:ac:67:09:5d:34:59:
53:48:f6:bf:62:2c:0f:c6:bc:11:1a:55:2c:59:16:fb:f4:37:
28:7e:7e:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org