Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/bOGECsR3tKaN4YRUZN1cj-s7Mlc.roa
File: bOGECsR3tKaN4YRUZN1cj-s7Mlc.roa (raw, json)
Hash identifier: qsrkzi31DR8Pay8zOb8nfzqOu5X7BhVb2SCWLw4kI7I=
Subject key identifier: 6C:E1:84:0A:C4:77:B4:A6:8D:E1:84:54:64:DD:5C:8F:EB:3B:32:57
Certificate issuer: /CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Certificate serial: 09B8
Authority key identifier: ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/bOGECsR3tKaN4YRUZN1cj-s7Mlc.roa
Signing time: Wed 06 Jul 2022 06:47:28 +0000
ROA not before: Wed 06 Jul 2022 06:47:28 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9676
IP address blocks: 103.123.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2488 (0x9b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Validity
Not Before: Jul 6 06:47:28 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6CE1840AC477B4A68DE1845464DD5C8FEB3B3257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0d:5b:35:5b:fb:e2:fa:bc:8d:ea:3b:07:98:
67:42:83:34:fc:4e:d3:3c:50:e8:66:a1:4b:61:5d:
00:81:00:c7:22:8d:f1:b9:db:ea:5a:36:d5:ef:02:
9d:35:c6:c4:68:0c:a9:be:28:e8:24:13:36:ee:59:
21:4c:95:44:3d:cb:07:a7:5c:ee:88:0a:a3:0b:ad:
ec:26:5f:bb:80:c1:2c:78:95:a7:00:e5:1d:8d:8a:
82:3f:0a:53:64:77:75:cc:9a:a3:1e:2d:1c:ea:09:
f6:49:0f:09:66:ff:02:b9:78:83:68:89:d5:31:e2:
a9:e2:b4:af:0f:ec:86:e7:72:d3:b6:29:68:78:f3:
ab:48:d1:3d:3d:26:e3:18:9f:58:db:b8:8f:fd:66:
13:c6:75:ae:e9:b7:a0:e7:4c:98:ec:7b:df:2c:36:
77:c9:41:1a:83:f2:a6:1f:a1:8c:78:2d:d6:91:cf:
6e:dd:fa:20:5d:77:7a:d3:ed:3f:cf:af:2c:28:d1:
2e:a3:f6:2d:16:5d:08:90:41:46:8a:74:80:bf:ca:
0d:0b:ac:20:d8:f0:f3:60:30:80:b4:28:5a:35:41:
95:43:61:e0:70:2c:f1:97:88:a7:bc:75:c1:93:59:
fc:0a:7c:3c:45:c4:b5:2a:e2:8b:a1:6b:96:4e:a8:
22:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:E1:84:0A:C4:77:B4:A6:8D:E1:84:54:64:DD:5C:8F:EB:3B:32:57
X509v3 Authority Key Identifier:
keyid:ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/7cBFehQLLUNs5_rmfYSRz_xufz4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/bOGECsR3tKaN4YRUZN1cj-s7Mlc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.1.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:fb:7f:e3:7c:de:9c:23:f1:9d:ca:fa:2d:85:28:4c:6a:dd:
47:e4:49:77:0e:87:e4:e2:02:eb:a4:d9:36:46:4d:c8:4e:03:
a2:5c:1d:51:50:6d:ad:5a:66:1e:1e:e1:65:55:70:22:46:27:
c5:d8:40:ec:99:3a:a8:c3:00:57:61:f0:20:25:5e:41:9b:c6:
61:bb:d1:f2:9e:4f:20:ec:2b:bb:9f:51:44:26:78:c8:40:c3:
a4:f6:7d:7e:0e:77:0c:6d:33:50:47:4e:b2:56:e1:bf:7a:80:
e9:6b:c3:d6:ec:0f:b6:48:64:28:b2:c6:86:a8:b1:ea:90:68:
00:b4:18:53:c8:21:c2:55:77:c1:b2:df:cc:27:ad:90:3e:51:
54:16:cb:96:10:f5:56:a9:96:a6:7d:60:62:3d:04:86:67:79:
a8:59:d5:52:fa:b2:cc:d7:bf:23:54:fa:5e:fd:93:62:00:35:
72:8b:d0:50:c8:5f:6f:c8:ad:e4:a6:b1:80:68:a9:e9:ba:af:
61:f2:fd:02:80:e3:43:b5:e4:39:94:83:18:0e:10:91:13:17:
45:b9:3f:e9:a0:cd:1e:48:56:27:69:6c:5a:fa:e3:d7:a0:c8:
be:d6:b9:ce:2f:f4:fd:b8:98:59:23:86:12:e5:8d:c6:dd:cc:
f2:a8:97:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org