Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/s8QnFE7O2OTZOG795Fajz0qj3k4.roa
File: s8QnFE7O2OTZOG795Fajz0qj3k4.roa (raw, json)
Hash identifier: 4O2NZgRQ1fg2o4CfoslfgTDC3r2JNS3T/V0GA1L5FFs=
Subject key identifier: B3:C4:27:14:4E:CE:D8:E4:D9:38:6E:FD:E4:56:A3:CF:4A:A3:DE:4E
Certificate issuer: /CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Certificate serial: 097A
Authority key identifier: ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/s8QnFE7O2OTZOG795Fajz0qj3k4.roa
Signing time: Tue 03 May 2022 07:45:30 +0000
ROA not before: Tue 03 May 2022 07:45:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9676
IP address blocks: 103.123.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2426 (0x97a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Validity
Not Before: May 3 07:45:30 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B3C427144ECED8E4D9386EFDE456A3CF4AA3DE4E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:aa:71:fd:48:03:4a:e5:d4:36:9a:97:d4:88:
6b:66:d5:8d:92:3d:c2:f7:45:87:8a:62:ed:8e:af:
03:a3:ef:f2:a5:57:f0:a0:7a:11:d8:80:83:d4:cb:
85:68:43:d5:51:03:a1:06:ea:86:9f:40:f6:7f:89:
81:0f:09:e2:82:96:d0:f4:fb:af:d4:d0:71:2d:f0:
b5:45:8d:bc:41:1f:08:be:90:4d:fa:fd:32:70:01:
95:aa:d0:a0:8b:31:12:d9:62:22:e2:cb:c8:31:d8:
1c:88:44:e2:73:a9:a2:03:bc:16:96:68:ff:a7:6c:
fa:40:48:ab:a2:2f:9d:8f:9c:01:77:2d:a4:08:76:
3e:c1:62:e6:c0:95:ce:bf:77:67:a3:fa:3a:b2:fd:
63:7e:ac:08:5a:c7:57:7b:a5:ae:04:88:9c:b1:83:
50:0b:68:18:31:46:cd:4f:17:fa:a1:56:31:e2:6f:
35:dd:6b:ef:67:9f:4c:3c:0d:d8:27:19:aa:c5:ea:
55:cb:3e:ef:5d:1c:c1:d3:ab:c7:35:12:72:9a:1e:
ed:2a:07:d0:50:60:33:46:ff:d5:6e:21:14:99:eb:
a4:f8:de:56:7b:10:93:db:bc:4c:07:96:5e:05:1f:
f8:0a:04:16:a4:31:b9:c4:85:d1:5c:3a:2c:11:c9:
27:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:C4:27:14:4E:CE:D8:E4:D9:38:6E:FD:E4:56:A3:CF:4A:A3:DE:4E
X509v3 Authority Key Identifier:
keyid:ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/7cBFehQLLUNs5_rmfYSRz_xufz4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/s8QnFE7O2OTZOG795Fajz0qj3k4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.1.0/24
Signature Algorithm: sha256WithRSAEncryption
73:3d:11:a6:de:d3:23:fb:ce:e2:6e:bb:5e:e0:d2:82:ce:e8:
de:00:b6:19:c4:ac:47:e2:01:84:f8:13:f4:a8:3f:73:3b:1f:
1c:62:b1:7e:c2:81:15:c5:ae:7f:97:ef:42:e2:8a:f1:9d:61:
b7:c6:a3:82:dd:68:ff:6a:22:e4:01:f3:5a:5d:7a:0c:24:a0:
a0:cc:bc:0b:4b:3a:46:e7:4e:7c:37:f2:95:e8:45:48:ab:9b:
8a:90:8f:4e:ad:a7:16:94:e7:cf:77:4c:b4:52:e2:db:e9:4c:
64:8b:25:83:55:e2:06:13:d8:ad:0a:10:3f:fe:d6:75:aa:ff:
7e:b2:ec:2d:89:14:cd:89:24:9e:1c:9e:24:e6:5a:0b:0c:2b:
07:bb:c1:97:b4:16:bb:c9:15:f9:4b:af:27:8c:c7:e0:9b:b4:
fd:2e:b6:3d:6a:9f:07:cb:56:47:bc:6b:f7:88:34:73:f5:1c:
89:95:d1:06:95:c4:1b:5e:d3:a9:dc:ff:1c:53:77:3c:1a:05:
f1:0b:95:ef:df:2a:e2:c6:dc:51:75:af:ee:f2:33:26:d5:73:
6f:6a:fa:f8:ac:fc:0f:76:57:1f:1c:56:a2:b9:5a:8d:1f:6d:
5f:70:53:18:8e:e3:31:cd:92:c5:b3:bb:54:82:ad:dd:89:44:
b7:f1:3b:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org