Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJING/KCQf97yNRuUxwVcULsP0vQEbUCA.roa
File: KCQf97yNRuUxwVcULsP0vQEbUCA.roa (raw, json)
Hash identifier: eZA+JZ+kcySGWshvv4yUQCx01Bow2st8pJGXty/5p9o=
Subject key identifier: 28:24:1F:F7:BC:8D:46:E5:31:C1:57:14:2E:C3:F4:BD:01:1B:50:20
Certificate issuer: /CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Certificate serial: 0D0C
Authority key identifier: 4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/KCQf97yNRuUxwVcULsP0vQEbUCA.roa
Signing time: Thu 29 Oct 2020 00:20:31 +0000
ROA not before: Thu 29 Oct 2020 00:20:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 48024
IP address blocks: 103.127.240.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3340 (0xd0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234
Validity
Not Before: Oct 29 00:20:31 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=28241FF7BC8D46E531C157142EC3F4BD011B5020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:65:95:77:9e:a7:d7:60:c4:b5:07:44:ef:96:
b3:da:33:a7:b7:9c:2a:11:65:10:c7:a4:5f:7a:9b:
98:72:57:48:9d:95:47:e3:ed:7b:5f:d4:24:39:c7:
8a:a5:5d:35:05:e9:c6:80:01:8b:8a:d8:45:6b:e1:
4d:0c:80:45:69:05:65:8d:10:c3:47:20:f9:34:2c:
e5:43:be:2c:da:ab:d2:ab:05:a6:52:96:d0:c0:e0:
71:4d:55:37:c8:d5:b4:a8:2b:2f:af:92:78:c3:60:
2f:ab:a2:c9:68:25:29:28:81:d1:b6:08:f8:6e:47:
71:75:eb:6e:2a:2d:23:fd:66:d3:ee:c9:d1:7a:d5:
8b:02:d5:68:b5:be:d4:77:58:b8:28:8d:23:54:48:
c8:04:db:7a:32:55:64:0c:68:c0:4d:f4:cf:ad:a1:
34:d9:98:37:cb:2d:86:ff:03:37:78:dd:1f:76:71:
ce:0a:46:64:5a:ad:3d:a6:3e:6b:a5:23:1f:76:d3:
28:1f:61:1f:b8:38:5f:a6:d7:c6:d8:c7:ec:a3:d5:
b8:64:43:05:05:90:36:61:1d:c0:9c:2c:ab:99:53:
0d:1f:11:d1:05:9a:e9:10:ea:ab:92:a3:90:12:75:
50:88:e4:ca:a2:0b:b0:f9:f5:65:d2:79:91:9c:cc:
e5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:24:1F:F7:BC:8D:46:E5:31:C1:57:14:2E:C3:F4:BD:01:1B:50:20
X509v3 Authority Key Identifier:
keyid:4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/KCQf97yNRuUxwVcULsP0vQEbUCA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.240.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:06:45:a4:40:5c:55:13:87:dc:74:eb:1f:0f:d2:77:ac:1a:
2d:82:d4:9a:b0:66:22:c4:0d:c0:90:6b:c4:41:1f:03:38:9b:
d6:0e:29:4d:3f:73:4c:cc:2a:4b:02:22:01:2d:02:be:32:b3:
1b:f6:ea:28:dd:07:47:8c:46:4a:da:13:45:39:35:fc:5d:ff:
dd:61:e4:fb:d3:42:91:bb:b4:f1:fa:50:7e:8f:83:6f:2c:20:
a2:d0:1d:e2:1f:40:2b:6e:a9:63:d2:49:cd:34:b2:35:c8:ee:
34:7f:ac:7d:e3:ab:0d:3b:24:1d:ca:ff:8b:16:e3:11:ac:da:
bb:a8:5f:5f:e3:45:84:30:80:34:e1:a9:69:9b:c6:ec:ff:ff:
53:bf:12:d1:df:30:6c:9b:c8:a1:f1:b2:df:be:52:55:a9:f4:
bb:1d:af:b3:f1:97:4e:6c:8a:08:44:59:9f:b2:4f:da:40:65:
be:d4:c2:6c:44:c8:a7:79:ba:65:e7:09:91:a9:d5:1a:d9:34:
24:7d:b2:4d:f6:e4:be:60:8e:33:c7:d9:e4:4a:16:85:63:ad:
26:83:8e:1e:db:a4:ae:d9:d8:d0:ed:ec:9c:e9:58:e6:a9:b3:
12:31:58:97:68:b4:8c:8e:05:f5:2a:f0:58:37:c9:73:f1:f0:
f5:97:bd:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org