Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/3EsnZEEFJMw2ixBEli4e7hOuHO8.roa
File: 3EsnZEEFJMw2ixBEli4e7hOuHO8.roa (raw, json)
Hash identifier: EOl5qSOWqLA9jgllNlQuG3rNFrNUPMpsyHNkcNshgKc=
Subject key identifier: DC:4B:27:64:41:05:24:CC:36:8B:10:44:96:2E:1E:EE:13:AE:1C:EF
Certificate issuer: /CN=A615237B28D4CEF8AFF942181704A1870B0F3F70
Certificate serial: 0DE2
Authority key identifier: A6:15:23:7B:28:D4:CE:F8:AF:F9:42:18:17:04:A1:87:0B:0F:3F:70
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/3EsnZEEFJMw2ixBEli4e7hOuHO8.roa
Signing time: Sun 07 Feb 2021 13:15:40 +0000
ROA not before: Sun 07 Feb 2021 13:15:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 103.126.252.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3554 (0xde2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A615237B28D4CEF8AFF942181704A1870B0F3F70
Validity
Not Before: Feb 7 13:15:40 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DC4B2764410524CC368B1044962E1EEE13AE1CEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:82:19:5f:91:11:a4:57:3f:44:93:f8:27:02:
61:3c:26:cb:e8:34:26:a9:d7:45:14:be:37:c7:66:
ad:c3:80:5b:2e:b1:0d:2e:3f:f9:7e:86:36:40:5f:
0a:af:18:17:06:86:75:f6:14:ca:63:a6:d0:36:3d:
3d:f0:14:a3:e7:cc:68:07:1d:97:ba:94:27:81:16:
a8:54:23:53:f9:40:ca:1b:d3:dd:db:2b:c0:de:39:
a0:01:17:8a:49:13:ea:f0:aa:cc:31:46:00:bf:b5:
bd:51:27:c1:50:0c:e0:40:6b:4f:b2:9b:5a:0e:e3:
6a:47:f7:81:e4:98:db:b3:6e:35:6c:4d:4d:81:38:
2e:0d:30:e5:85:d2:ff:75:e1:dc:2b:66:59:01:e9:
dd:19:ac:ca:21:27:4a:7b:15:c3:10:e7:85:1e:0c:
9b:e3:52:7a:da:22:ad:c2:95:0c:ad:7c:ec:48:b8:
99:83:09:84:3d:fb:36:97:e9:5a:a8:20:8d:62:96:
c0:35:16:9e:54:db:8a:9f:dc:50:52:b0:ea:fd:34:
cb:2e:d1:bf:6d:d4:98:e9:44:9f:da:38:7d:35:f4:
09:81:d0:ea:b1:31:a5:78:fb:0e:81:8e:a4:3d:e2:
7c:1c:c9:35:9a:1d:94:69:9a:a1:fa:91:45:33:ef:
e3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:4B:27:64:41:05:24:CC:36:8B:10:44:96:2E:1E:EE:13:AE:1C:EF
X509v3 Authority Key Identifier:
keyid:A6:15:23:7B:28:D4:CE:F8:AF:F9:42:18:17:04:A1:87:0B:0F:3F:70
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/3EsnZEEFJMw2ixBEli4e7hOuHO8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.126.252.0/22
Signature Algorithm: sha256WithRSAEncryption
56:a1:0d:72:67:fb:41:f7:12:c1:28:89:61:0b:ab:ce:4d:f0:
56:48:e0:46:21:5c:6c:9f:64:d1:9c:ab:c3:75:52:f4:62:bb:
13:27:33:db:35:f9:66:75:15:ff:39:55:d2:5c:06:13:a2:46:
e1:5f:0e:d7:eb:be:4e:a8:68:ef:0d:fe:9c:30:25:93:00:64:
ee:06:e5:fc:cc:36:bf:fe:9b:01:e6:be:5f:3c:a1:92:13:cd:
30:d1:a1:67:53:89:e4:6a:de:b0:4a:0c:f2:59:d7:7c:13:a6:
e4:09:d7:22:a7:ff:17:9a:1d:0b:69:44:3e:b7:60:05:7e:32:
15:a0:7d:05:b6:e0:a0:4e:e8:4d:84:ab:75:b3:d2:b4:e2:c3:
bd:87:48:4c:3d:2e:0b:56:d7:9e:1a:63:b0:26:ea:76:eb:25:
1f:c5:0b:f7:98:ff:72:22:8d:f7:30:de:8d:8f:d6:a9:61:60:
c0:50:1b:34:37:ff:f7:15:aa:1c:19:ed:a4:ca:d1:80:2e:05:
42:5e:86:0d:02:4c:d3:2a:fa:5f:5d:dc:a6:cf:d2:ca:12:c6:
b5:1d:90:b8:7d:9e:a0:53:ff:63:36:25:70:96:cf:8c:6a:e6:
38:22:9f:58:3d:b3:1f:91:7b:f0:04:73:26:58:6b:7f:9b:86:
b9:f8:70:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:14 2023 by rpki-client on console-fra.rpki-client.org