Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/PU-2sVXR7yT96HzX2LJHkyG6f8o.roa
File: PU-2sVXR7yT96HzX2LJHkyG6f8o.roa (raw, json)
Hash identifier: BEcKAUOhmw2NpulKBxyEXEXRCQm6JcNeyrAPBSqirq0=
Subject key identifier: 3D:4F:B6:B1:55:D1:EF:24:FD:E8:7C:D7:D8:B2:47:93:21:BA:7F:CA
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0DFF
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PU-2sVXR7yT96HzX2LJHkyG6f8o.roa
Signing time: Wed 29 Sep 2021 02:43:05 +0000
ROA not before: Wed 29 Sep 2021 02:43:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4780
IP address blocks: 103.234.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3583 (0xdff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:05 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3D4FB6B155D1EF24FDE87CD7D8B2479321BA7FCA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1f:1f:92:60:f9:2c:97:f5:a6:37:e3:66:bd:
6d:50:7b:65:61:7f:06:30:e9:60:0e:d3:62:0b:7a:
30:3c:2e:7e:f2:18:2e:8d:9c:ee:81:88:12:eb:e1:
88:e7:12:18:a2:b3:70:f9:88:02:11:5d:c5:f2:34:
18:a4:62:7e:c8:29:99:43:5f:cb:43:ee:40:3b:17:
d3:3d:5a:57:fd:b2:28:dd:73:54:49:df:a5:d3:90:
5b:d5:b1:51:7e:28:23:b8:94:dc:ad:da:73:a2:7e:
3c:0b:06:18:dd:79:d6:be:bc:16:7d:6a:76:1b:9e:
ac:7a:24:7d:03:ee:e2:8f:5d:e1:a5:87:0d:8b:3b:
50:3e:78:c3:c1:b0:f3:b8:1c:38:3c:9b:f9:7c:ef:
0d:76:20:8d:3b:bf:a4:54:c2:21:5b:5b:6f:89:df:
c1:6a:88:b4:e2:a7:e6:76:39:61:d2:99:d9:3a:08:
7e:62:97:46:57:8d:85:c7:7c:da:30:53:9f:f2:94:
6e:aa:9f:c6:21:07:d2:55:35:2e:54:7c:f2:65:7a:
b7:cf:5c:b2:4c:5d:6a:32:83:d1:6f:ca:0a:30:7c:
00:0b:58:ef:4e:7c:9d:cf:45:b9:78:62:29:ba:28:
02:19:89:02:5f:5e:f0:fe:4c:4f:da:09:8a:28:db:
bb:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:4F:B6:B1:55:D1:EF:24:FD:E8:7C:D7:D8:B2:47:93:21:BA:7F:CA
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PU-2sVXR7yT96HzX2LJHkyG6f8o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.40.0/22
Signature Algorithm: sha256WithRSAEncryption
35:6e:93:01:6d:23:d6:d2:55:96:f4:b0:71:dd:73:47:f7:f6:
69:05:0a:e3:a5:28:ce:67:ea:98:51:57:20:93:e7:68:1b:a2:
a9:0c:b7:d9:24:bf:a3:c8:94:36:0f:c2:e6:a2:dd:48:bc:96:
50:11:13:0c:7d:b0:eb:f2:76:c3:48:57:de:cb:33:86:d5:d4:
76:df:48:e0:ae:5d:66:f7:fa:25:4b:61:f3:67:51:a8:85:63:
73:fb:ba:7c:1c:de:ff:c4:8c:4f:93:1c:f0:4f:40:98:b9:19:
51:e0:62:e3:83:37:0d:20:a5:29:13:ff:31:59:65:38:bd:ea:
a1:55:c0:71:fe:bf:4f:f4:37:9d:6a:70:2b:2a:5f:f9:98:f3:
02:2e:38:b6:32:d2:ef:cf:d2:12:8b:3d:2e:ff:78:6e:bb:73:
bc:bf:fd:9d:e4:c3:07:58:a7:92:e5:20:94:60:b7:ad:f9:b0:
eb:d3:4e:3a:6a:f2:15:b1:db:db:37:da:7e:45:15:dd:22:39:
f1:f5:85:29:38:c4:e5:d1:98:2c:84:ad:79:96:16:fb:78:17:
8a:d8:36:9d:c7:24:74:a5:70:ed:42:4a:57:d2:ba:f0:3d:7d:
e6:ae:c4:5f:dc:ba:57:86:c3:15:c1:8a:4b:f2:9a:b1:97:14:
9d:51:9a:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-fra.rpki-client.org