Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/zg_3QUYg5NUYvL47Q9aKHVdB9HI.roa
File: zg_3QUYg5NUYvL47Q9aKHVdB9HI.roa (raw, json)
Hash identifier: uR+zSU487BjhgAXIN2Z62lZFgyM5GxFFoV7yxiJ4dOc=
Subject key identifier: CE:0F:F7:41:46:20:E4:D5:18:BC:BE:3B:43:D6:8A:1D:57:41:F4:72
Certificate issuer: /CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Certificate serial: 09F2
Authority key identifier: ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/zg_3QUYg5NUYvL47Q9aKHVdB9HI.roa
Signing time: Thu 15 Sep 2022 02:50:19 +0000
ROA not before: Thu 15 Sep 2022 02:50:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9676
IP address blocks: 103.123.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2546 (0x9f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EDC0457A140B2D436CE7FAE67D8491CFFC6E7F3E
Validity
Not Before: Sep 15 02:50:19 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CE0FF7414620E4D518BCBE3B43D68A1D5741F472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ec:b4:14:70:da:26:f6:c9:3f:a8:03:9a:58:
11:00:d7:04:85:fd:ab:a8:37:c9:54:45:a9:81:0e:
aa:d9:b1:a5:30:c1:5f:b4:05:77:9e:d0:1a:90:b4:
dc:c0:09:bc:81:45:be:17:34:17:22:bf:93:fe:f6:
d4:4d:d7:74:10:01:af:f7:99:e6:13:ac:71:16:06:
fa:76:52:7a:54:fe:35:92:d5:67:13:0a:30:22:5e:
59:91:fc:62:29:95:70:66:57:6c:98:7d:57:b6:97:
ca:e4:70:6c:a7:61:0d:d3:91:ba:39:e4:89:e6:94:
36:56:ec:63:f4:e7:a3:01:11:aa:5e:c2:eb:f6:8c:
6e:3f:09:62:f0:4f:bd:93:79:27:88:12:c3:78:fe:
a3:75:f5:0b:ca:ad:ac:6f:e5:32:3e:b4:48:b8:fb:
80:22:29:e3:a7:55:68:4c:fe:26:4c:13:13:c9:b1:
d0:51:20:8f:31:dd:fa:e3:be:b3:da:3e:f6:ca:4f:
96:f8:82:21:36:b0:e0:e8:37:2f:21:0b:e5:ca:01:
f2:83:b5:76:8e:7d:de:0c:82:01:d4:a3:8c:a2:4b:
82:4d:23:79:92:72:c9:0c:03:53:95:92:2c:f5:6d:
de:38:1c:f7:b4:ef:64:c0:e6:b9:ca:b4:77:38:22:
f9:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:0F:F7:41:46:20:E4:D5:18:BC:BE:3B:43:D6:8A:1D:57:41:F4:72
X509v3 Authority Key Identifier:
keyid:ED:C0:45:7A:14:0B:2D:43:6C:E7:FA:E6:7D:84:91:CF:FC:6E:7F:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/7cBFehQLLUNs5_rmfYSRz_xufz4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7cBFehQLLUNs5_rmfYSRz_xufz4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LETSWIN/zg_3QUYg5NUYvL47Q9aKHVdB9HI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.0.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:c3:7b:e4:72:90:29:ae:ad:b0:60:35:59:1e:f2:82:5d:96:
b5:75:96:d8:cc:2b:1e:97:71:86:2c:11:d2:16:8d:f5:fc:17:
c5:aa:18:16:6a:af:97:b6:c1:1b:0b:bb:10:ac:10:0e:76:6d:
fa:5e:58:32:59:67:6a:a5:58:c9:b1:6f:ea:e5:58:bc:4a:cf:
a4:ea:71:6a:e7:c7:c7:09:d5:27:ad:d2:32:82:9f:b1:ae:2d:
0a:17:84:d8:61:9a:65:34:87:cd:21:99:5d:8d:64:df:45:f8:
0e:8c:b1:eb:b2:30:8c:50:b6:2f:62:e5:1e:cd:20:ef:cb:da:
9a:72:17:d0:b1:60:47:46:b1:e0:d9:36:d7:c9:bc:2d:f3:25:
09:69:f9:56:2d:22:6d:77:36:34:b8:9e:94:31:10:4a:00:8e:
eb:34:67:dd:f5:a5:6e:a7:32:aa:48:c8:2f:af:07:f6:68:1c:
9f:24:49:ee:97:25:ab:af:78:11:fb:28:b0:c6:37:66:a0:f3:
ae:db:0e:37:fe:4a:a0:7c:51:2c:ff:42:9f:c3:62:78:cf:3d:
e3:e1:94:fd:c7:bc:f5:6a:66:1b:36:50:ae:ef:a9:19:75:34:
7d:45:ad:f0:7c:e0:81:a1:56:96:06:d1:33:f4:34:2c:31:3f:
76:f4:82:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org