Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/OcOr-PGyzDtwOa3dpml9jHEAGxA.roa
File: OcOr-PGyzDtwOa3dpml9jHEAGxA.roa (raw, json)
Hash identifier: QXh3aOjZuvdK/F7VUy/07BxMMqbut/xM01RXZJLR3+s=
Subject key identifier: 39:C3:AB:F8:F1:B2:CC:3B:70:39:AD:DD:A6:69:7D:8C:71:00:1B:10
Certificate issuer: /CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Certificate serial: 09AE
Authority key identifier: ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/OcOr-PGyzDtwOa3dpml9jHEAGxA.roa
Signing time: Wed 06 Jul 2022 02:02:38 +0000
ROA not before: Wed 06 Jul 2022 02:02:38 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131632
IP address blocks: 103.123.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2478 (0x9ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Validity
Not Before: Jul 6 02:02:38 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=39C3ABF8F1B2CC3B7039ADDDA6697D8C71001B10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:08:08:d0:b8:50:cf:db:0e:a7:25:b1:53:eb:
d3:76:ea:9b:cc:0a:1f:99:a4:74:1a:90:54:41:28:
45:10:0d:a8:30:bb:ad:82:9d:01:6e:37:c5:21:32:
c7:3a:a7:87:a7:cc:bb:62:bc:58:62:aa:4d:27:50:
93:f4:10:1d:7e:a4:61:f5:6b:35:f3:4e:c6:7a:a1:
76:74:5b:d0:f8:c7:ce:54:95:7f:08:f4:bb:13:67:
93:17:34:17:06:4e:d0:8d:ca:d9:90:87:d0:ed:05:
a4:d0:7a:8a:74:ac:93:ac:aa:69:e2:77:ee:78:0c:
28:8d:65:91:55:d2:98:26:72:05:87:56:0c:6f:de:
b2:77:17:a3:ce:0f:cd:88:82:ed:22:1b:44:e8:fa:
d8:e9:d0:c5:79:12:34:ce:94:cd:d6:72:3b:28:4e:
42:7f:0e:3e:ac:27:d0:2f:fa:24:83:77:6b:1d:b8:
2e:45:7a:cb:cc:34:f3:c1:5d:8a:af:af:1d:32:3d:
47:fd:f3:25:20:b1:82:49:38:4a:f8:91:65:c3:86:
ec:56:58:01:a9:d5:65:10:b1:9e:ad:a1:72:a9:df:
fb:53:b5:26:d0:d4:19:db:c9:d9:55:f6:40:61:ca:
f6:6c:73:0a:57:0d:da:6e:17:41:83:08:a6:85:cb:
91:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:C3:AB:F8:F1:B2:CC:3B:70:39:AD:DD:A6:69:7D:8C:71:00:1B:10
X509v3 Authority Key Identifier:
keyid:ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/7cBFehQLLUNs5_rmfYSRz_xufz4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/OcOr-PGyzDtwOa3dpml9jHEAGxA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.1.0/24
Signature Algorithm: sha256WithRSAEncryption
34:cc:31:8a:03:8c:5d:d6:91:5a:46:ab:ed:5c:d3:8b:d8:97:
c4:8f:64:bb:9b:4a:83:8e:75:0c:ed:39:e0:18:d1:12:7a:62:
a5:33:67:f7:1e:dc:d0:8d:67:7c:1c:c6:9a:dc:6d:3b:55:5f:
80:c3:0f:b2:51:e0:d5:e1:ef:04:c2:1e:33:f1:f8:1c:52:e4:
02:35:7f:3b:2e:af:ab:5a:0d:6a:e2:90:5a:ea:d9:31:f6:87:
02:b1:cb:2e:7d:40:a9:74:fb:43:1f:88:1a:ab:11:94:5d:bd:
07:12:aa:49:e1:44:f9:d6:dd:9d:2c:3b:21:76:3c:97:a9:09:
a4:d0:da:d3:a6:a0:d5:0b:25:7c:2b:d4:78:22:9f:d3:e4:83:
f3:08:a8:2f:b2:9e:bd:6f:4b:53:5e:4b:f6:1d:ab:5b:91:55:
a2:68:86:54:af:bf:f5:8a:54:82:1f:f9:d8:cb:2c:34:35:72:
8c:a4:45:46:40:aa:8f:b7:a2:26:b7:a2:e2:52:84:9d:77:74:
0b:44:b9:e4:a3:2f:d8:38:88:cc:89:a8:df:d1:5a:3b:c3:4b:
df:0c:40:70:f0:1a:62:60:9f:47:c9:fe:be:f5:21:ac:69:ef:
86:2c:d2:2d:1d:b7:eb:04:f0:ff:d5:66:39:81:0d:e2:90:f3:
6c:57:af:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org