Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/D_V5Rc-OthmBEzVHd_s3Y7crS0U.roa
File: D_V5Rc-OthmBEzVHd_s3Y7crS0U.roa (raw, json)
Hash identifier: OGVu9uyr+NzkQ3nSLlAibZE8azXrjSeG+53TBX/KPdk=
Subject key identifier: 0F:F5:79:45:CF:8E:B6:19:81:13:35:47:77:FB:37:63:B7:2B:4B:45
Certificate issuer: /CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Certificate serial: 097E
Authority key identifier: ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/D_V5Rc-OthmBEzVHd_s3Y7crS0U.roa
Signing time: Tue 03 May 2022 07:46:51 +0000
ROA not before: Tue 03 May 2022 07:46:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9676
IP address blocks: 103.123.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2430 (0x97e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Validity
Not Before: May 3 07:46:51 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0FF57945CF8EB6198113354777FB3763B72B4B45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c4:c3:8f:eb:40:76:30:8d:2f:9c:cf:9c:48:
87:49:eb:b2:17:84:69:b0:e4:1e:94:9f:c6:82:52:
57:d3:83:e2:c9:11:c2:d4:b1:14:97:96:fe:1e:5e:
5a:87:d0:82:20:75:98:84:54:96:56:a2:a9:dd:b7:
d2:76:e0:8c:d9:bc:f7:14:ed:67:b2:2a:90:dd:a1:
c3:c1:b2:c1:e6:87:2a:31:56:ef:7a:8d:51:62:6a:
39:0b:dc:34:31:72:f7:a8:d6:b2:21:c4:31:ce:27:
4c:ee:77:0a:47:13:41:87:a7:88:a2:4d:b9:08:13:
2a:b1:10:d3:0f:e0:c9:49:e3:70:f8:b2:49:8d:c6:
61:4a:14:31:92:90:b5:0d:cc:3b:7f:9b:36:e1:3e:
09:c6:c3:83:70:1a:3a:71:2b:d8:66:1f:87:d6:f9:
f3:f7:30:c4:d7:3f:58:0d:83:ed:1e:3f:f3:e3:b0:
c4:f2:69:34:c0:3b:dc:9b:c7:6b:c0:84:16:64:64:
52:0c:e5:6d:f0:c8:80:f1:c6:34:7a:e2:77:fb:c3:
c8:d3:ae:94:6d:01:b8:cf:51:d4:cc:06:68:21:1f:
20:b0:49:16:14:07:a0:6c:aa:fe:02:07:a5:34:dc:
3f:2c:c1:78:48:6c:29:ad:2c:0e:1c:93:d2:c1:e3:
cc:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:F5:79:45:CF:8E:B6:19:81:13:35:47:77:FB:37:63:B7:2B:4B:45
X509v3 Authority Key Identifier:
keyid:ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/7cBFehQLLUNs5_rmfYSRz_xufz4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/D_V5Rc-OthmBEzVHd_s3Y7crS0U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.3.0/24
Signature Algorithm: sha256WithRSAEncryption
21:fa:5f:ac:79:28:91:d1:2a:2d:28:ac:09:65:ac:64:43:65:
9f:8d:f9:66:51:09:ec:d2:af:5f:34:4f:c9:44:c4:0a:2c:19:
b6:a0:df:cc:9c:2d:9a:b3:9f:0f:e4:ef:af:eb:ef:7b:aa:c9:
dd:65:ec:37:69:c0:81:e7:52:bf:74:5b:a8:76:f7:db:4b:90:
fc:0e:36:7f:cf:00:37:63:82:f3:41:de:b1:f2:06:db:f4:5b:
b0:c9:6a:20:e4:6d:41:ef:85:c5:e9:0c:94:7d:eb:40:3a:c4:
1c:28:8c:2d:32:d4:44:08:a8:d2:73:2f:44:fe:73:e7:99:c7:
ca:8d:ec:fd:94:e7:e0:62:58:46:c2:e4:47:36:a0:3d:07:55:
97:39:62:4f:8b:bc:f8:e9:c7:97:88:d8:03:fd:8f:7b:5d:b0:
75:e6:5c:8a:bf:d7:f4:1c:af:01:75:32:dc:dd:74:f3:b6:68:
b0:ad:9b:08:29:58:42:58:f6:17:15:87:b2:86:f1:a5:e9:7c:
df:bb:d0:74:4e:18:9b:dc:a7:99:f8:3b:fd:7d:39:2d:e0:0d:
3c:60:74:61:aa:65:e5:f7:82:16:02:8a:bd:5b:76:44:b7:88:
2a:2c:2e:11:ce:42:61:ae:c0:e9:1f:2b:a0:1c:dc:72:75:4e:
ea:cd:aa:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org