Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/pOgD8Qu6LYJBN_rll4DSW9-W6B4.roa
File: pOgD8Qu6LYJBN_rll4DSW9-W6B4.roa (raw, json)
Hash identifier: eMCqAh+taGwvkc8qbRm8FwGJxdW+s2lCi0+EBMaoW44=
Subject key identifier: A4:E8:03:F1:0B:BA:2D:82:41:37:FA:E5:97:80:D2:5B:DF:96:E8:1E
Certificate issuer: /CN=F5A44B5E078865BAEF9351369D961D6BA2556D47
Certificate serial: 15
Authority key identifier: F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/pOgD8Qu6LYJBN_rll4DSW9-W6B4.roa
Signing time: Tue 09 May 2023 03:08:28 +0000
ROA not before: Tue 09 May 2023 03:08:28 +0000
ROA not after: Wed 10 Apr 2024 15:30:09 +0000
asID: 8075
IP address blocks: 103.131.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21 (0x15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F5A44B5E078865BAEF9351369D961D6BA2556D47
Validity
Not Before: May 9 03:08:28 2023 GMT
Not After : Apr 10 15:30:09 2024 GMT
Subject: CN=A4E803F10BBA2D824137FAE59780D25BDF96E81E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:c3:59:6d:6f:28:74:34:77:8a:49:62:13:5d:
05:00:3b:45:f7:c5:fa:35:be:ba:aa:95:f8:ba:92:
68:9c:29:19:3d:f5:de:f3:1c:20:94:1f:1d:76:da:
b0:f2:66:c7:2c:e9:c6:68:f5:31:0c:ae:7f:87:eb:
26:20:0e:5e:47:66:57:83:20:99:0b:5d:ab:4e:a6:
87:8c:20:10:05:d5:67:ec:31:4b:0f:53:85:00:85:
aa:a9:64:d2:93:6c:01:46:80:45:29:75:59:0f:a5:
05:6e:a5:21:40:59:7a:46:5f:1f:1c:69:6e:9d:9b:
a8:be:5b:fb:66:3c:ff:50:48:38:f1:54:86:5a:8f:
6c:4a:9e:3e:c7:b7:0e:72:1c:bc:a4:6f:47:4b:e2:
e8:9a:7c:15:c9:fb:09:1c:61:c3:21:82:4d:a1:12:
9e:0d:7c:48:fa:8a:14:87:46:3e:e6:32:d1:d5:65:
cb:b3:32:3e:c3:d8:41:29:c2:d1:05:51:16:72:3b:
98:34:ac:1e:0d:98:ef:4b:f7:ee:29:d0:00:20:88:
50:aa:cb:ee:16:4a:e2:d0:22:0a:c6:d4:ff:11:8e:
61:d6:aa:a6:4b:cf:86:01:ba:ab:36:62:0c:08:9f:
ce:ec:73:d1:d7:71:63:01:c2:97:c3:9d:94:c5:90:
df:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E8:03:F1:0B:BA:2D:82:41:37:FA:E5:97:80:D2:5B:DF:96:E8:1E
X509v3 Authority Key Identifier:
keyid:F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/pOgD8Qu6LYJBN_rll4DSW9-W6B4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.131.148.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:4c:08:fe:b6:59:5a:03:63:81:33:e8:df:3f:ae:e0:c4:db:
2d:f0:76:2f:ff:d0:61:bd:40:6d:91:42:5d:b4:96:75:09:67:
f4:46:5a:58:39:3b:ae:bf:b3:55:5a:c3:13:64:6e:ef:d5:b1:
64:9e:3d:90:fb:08:9e:3b:dc:35:2b:fd:75:28:7a:5e:30:63:
b8:2e:39:18:92:5b:f7:ff:e0:c7:be:90:22:2b:78:e4:0b:96:
6f:c0:7c:7a:e7:7c:db:0c:51:7c:5e:62:91:8b:b5:fd:cc:da:
4d:83:04:19:b2:ce:6c:53:33:b4:fb:25:d3:e3:d2:80:69:af:
45:9d:17:a0:98:1c:fa:31:d8:c9:cc:58:fc:d7:4f:fe:cc:51:
98:61:4e:fb:97:ef:17:f9:5f:c4:5f:c2:fc:d5:61:3c:3b:9e:
e4:ad:c1:13:f2:0d:8c:00:b7:72:56:44:53:34:39:32:4d:07:
82:56:8b:0b:68:f1:63:69:0e:65:01:ff:4c:e9:02:df:3c:88:
47:5a:84:ba:ea:5e:e4:c4:5c:d9:4d:40:e4:4d:68:d1:b0:90:
31:83:31:6c:a4:81:e5:3c:f8:8e:be:7f:d0:7d:d9:9d:35:ab:
ea:1f:24:59:04:72:84:a1:8b:28:af:39:9c:11:ff:ef:c9:75:
fb:1f:db:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org