Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAIFENGTW/caO2WmdFvO94gMVDUweWDzY_4Uc.roa
File: caO2WmdFvO94gMVDUweWDzY_4Uc.roa (raw, json)
Hash identifier: 7BIOirb1Jjr4FR+1rJ5Q+Z/1Z/f9ld7AmdQA3I+x0bc=
Subject key identifier: 71:A3:B6:5A:67:45:BC:EF:78:80:C5:43:53:07:96:0F:36:3F:E1:47
Certificate issuer: /CN=76637EEBEFEF70C538CEADDCF9848FAA79C736A5
Certificate serial: EF
Authority key identifier: 76:63:7E:EB:EF:EF:70:C5:38:CE:AD:DC:F9:84:8F:AA:79:C7:36:A5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dmN-6-_vcMU4zq3c-YSPqnnHNqU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENGTW/caO2WmdFvO94gMVDUweWDzY_4Uc.roa
Signing time: Thu 01 Jun 2023 08:46:16 +0000
ROA not before: Thu 01 Jun 2023 08:46:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7483
IP address blocks: 103.189.108.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 239 (0xef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76637EEBEFEF70C538CEADDCF9848FAA79C736A5
Validity
Not Before: Jun 1 08:46:16 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=71A3B65A6745BCEF7880C5435307960F363FE147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3e:f4:7f:dd:81:ab:0c:d5:bc:19:94:30:75:
bf:df:53:46:a6:69:9d:db:3b:88:24:d3:ea:63:50:
17:42:7e:c7:63:e0:e7:6f:2d:41:33:2f:63:0b:7b:
65:0a:24:b5:86:4a:f4:ae:34:ee:5a:d9:03:a0:4c:
b0:f0:cf:1b:fd:93:99:90:ff:3c:37:54:38:70:b8:
0a:80:0e:eb:4e:3a:b3:e4:45:94:29:02:57:7f:92:
ad:39:bd:89:ee:50:0c:37:fb:c8:ac:94:77:40:e9:
2e:ae:12:e1:35:d9:0c:7a:4b:59:be:b0:88:13:87:
ac:b1:69:20:f2:ee:43:7e:d6:ab:ba:68:98:91:06:
ad:7f:dc:15:00:62:6a:25:b6:f3:36:56:df:39:02:
c5:98:a0:9d:a8:8c:df:b5:bd:90:2c:bf:58:67:7d:
2c:79:fe:53:07:46:7a:7c:c8:61:64:41:12:19:84:
2e:39:5f:e1:64:0a:0b:35:bc:ff:c9:6f:49:ff:0d:
7c:96:1e:f2:af:5d:87:89:f6:25:f5:70:53:38:57:
f0:28:0f:a5:ad:8e:52:1c:a5:15:77:5d:26:0a:8e:
5f:b7:ed:83:ba:46:a1:96:ba:59:a5:50:dc:d5:ac:
cc:8f:11:de:26:b3:b6:9b:b1:67:5f:f3:d0:02:2d:
31:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A3:B6:5A:67:45:BC:EF:78:80:C5:43:53:07:96:0F:36:3F:E1:47
X509v3 Authority Key Identifier:
keyid:76:63:7E:EB:EF:EF:70:C5:38:CE:AD:DC:F9:84:8F:AA:79:C7:36:A5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENGTW/dmN-6-_vcMU4zq3c-YSPqnnHNqU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dmN-6-_vcMU4zq3c-YSPqnnHNqU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENGTW/caO2WmdFvO94gMVDUweWDzY_4Uc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.189.108.0/23
Signature Algorithm: sha256WithRSAEncryption
96:ed:a3:66:84:4d:b0:12:af:7d:58:3a:e8:09:ca:4c:82:eb:
9d:f7:39:07:69:2e:8b:52:85:11:86:8a:96:b2:41:13:37:73:
c4:bf:ef:4d:1a:55:69:36:a9:2e:0b:79:54:b2:8f:3c:b6:25:
d6:8c:47:25:6e:03:7e:f9:83:f4:df:b4:f2:75:c3:9c:f3:d8:
34:c6:3d:61:2d:9c:cf:fa:7b:e5:97:ef:1e:76:9b:61:f5:59:
04:9f:cb:f1:6c:03:57:cb:60:ab:23:52:3d:92:e7:e3:7b:52:
78:a4:d0:f1:2d:4f:61:c1:98:57:18:c6:b0:61:a0:00:df:10:
b4:80:45:03:bb:cb:69:4c:f0:0c:15:9a:41:b4:02:4d:ad:f6:
25:99:7c:3f:ea:02:37:c8:d4:9c:6f:51:7a:8d:a2:d5:31:61:
52:25:0c:1e:2e:a2:4a:eb:8b:96:44:44:bf:7a:de:cf:d1:4c:
c1:e3:21:99:69:d7:0a:74:2d:44:74:3d:b4:01:01:16:b5:bb:
64:c8:5b:81:b6:2b:c6:e9:f1:2c:39:69:fb:cb:48:5c:66:27:
00:af:49:fb:42:0e:12:d5:d0:58:59:ea:f8:b7:67:f9:8a:2c:
cd:e0:55:3c:fa:95:11:b9:06:99:66:26:80:c8:fb:7d:60:2a:
a6:5f:b3:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org