Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PARADISE/Wrfo0-JnEizm_VPeEC1T38IMRGM.roa
File: Wrfo0-JnEizm_VPeEC1T38IMRGM.roa (raw, json)
Hash identifier: rQTSaQt6OVrrGq0rbm70SSWK5+7kW9nTvaHi8Btj0wU=
Subject key identifier: 5A:B7:E8:D3:E2:67:12:2C:E6:FD:53:DE:10:2D:53:DF:C2:0C:44:63
Certificate issuer: /CN=E27749EAA557BCA5645A275E3DE0A3AF5347F7C3
Certificate serial: 0F
Authority key identifier: E2:77:49:EA:A5:57:BC:A5:64:5A:27:5E:3D:E0:A3:AF:53:47:F7:C3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4ndJ6qVXvKVkWidePeCjr1NH98M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARADISE/Wrfo0-JnEizm_VPeEC1T38IMRGM.roa
Signing time: Mon 22 Nov 2021 01:41:17 +0000
ROA not before: Mon 22 Nov 2021 01:41:17 +0000
ROA not after: Thu 03 Nov 2022 05:41:53 +0000
asID: 396982
IP address blocks: 103.175.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15 (0xf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E27749EAA557BCA5645A275E3DE0A3AF5347F7C3
Validity
Not Before: Nov 22 01:41:17 2021 GMT
Not After : Nov 3 05:41:53 2022 GMT
Subject: CN=5AB7E8D3E267122CE6FD53DE102D53DFC20C4463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a3:a6:a3:f9:49:81:08:a5:b9:a4:e1:29:84:
22:57:76:15:af:f0:f4:84:63:de:eb:0b:d9:68:ed:
a6:c5:cd:34:d5:cc:42:a3:49:27:8f:eb:b3:ef:3a:
fa:f7:43:03:49:5d:54:8f:07:83:a6:57:b2:9c:3f:
6a:ac:0d:cf:08:72:66:1f:0c:c9:81:05:79:90:bd:
71:b6:2b:20:de:5a:35:a0:b3:a9:9b:66:f2:0d:a0:
73:ab:13:e2:18:c7:d2:01:32:71:06:dd:82:dc:98:
44:ce:86:f7:35:80:3c:36:df:a9:a3:c8:e2:e0:6d:
76:b8:43:42:90:04:5f:97:68:ae:3d:a5:12:00:4b:
fa:0f:da:9e:0a:63:f7:75:63:19:b9:87:4d:61:c9:
09:44:d0:90:87:5b:87:97:56:4e:e9:a0:2a:d1:2f:
1d:61:2e:ea:16:61:39:25:2b:1f:1a:41:8a:f9:c6:
b4:4d:54:9c:03:a2:c6:17:cd:6b:5f:e8:e7:33:9c:
3a:d3:f3:6c:80:c2:f8:42:d9:7c:82:2b:27:c6:8a:
2c:50:71:e1:cb:04:34:6f:ae:33:d1:77:30:0c:ca:
0f:b4:b4:48:e9:e2:cd:53:fc:5d:b1:dc:2e:ee:64:
bc:40:53:50:0b:a7:fc:6b:3f:35:fc:55:c2:7c:5e:
85:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:B7:E8:D3:E2:67:12:2C:E6:FD:53:DE:10:2D:53:DF:C2:0C:44:63
X509v3 Authority Key Identifier:
keyid:E2:77:49:EA:A5:57:BC:A5:64:5A:27:5E:3D:E0:A3:AF:53:47:F7:C3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARADISE/4ndJ6qVXvKVkWidePeCjr1NH98M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4ndJ6qVXvKVkWidePeCjr1NH98M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARADISE/Wrfo0-JnEizm_VPeEC1T38IMRGM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.175.153.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:4e:72:89:36:27:68:1a:2b:33:e1:c5:4b:84:4c:0b:5b:fe:
67:8b:04:f2:94:d4:7f:c1:13:2c:0f:60:d2:a5:45:fd:f9:31:
6a:e6:8c:56:bf:d2:97:71:49:65:b8:01:30:08:cd:ae:92:06:
83:a5:23:99:1f:7d:79:d0:cd:6f:54:06:91:c9:29:b0:a0:52:
99:1d:b8:a1:c9:b1:d8:37:4e:00:9f:a6:44:79:ad:87:66:51:
35:21:1c:6e:f3:50:ef:72:99:a5:36:ee:ab:1a:0b:55:c9:70:
d5:98:fa:2c:94:d0:64:0d:51:a6:8e:23:cc:89:30:fa:fc:4c:
ff:22:ab:b5:3e:3c:99:ea:ff:e7:7c:48:c2:fb:ea:f0:b5:58:
35:05:39:f9:dd:91:ab:8b:ea:ef:7a:f7:75:99:f1:7c:7e:0e:
f7:ff:19:90:84:80:af:f3:b2:e5:a4:2b:95:ab:85:05:bb:02:
3a:ab:17:19:2b:f6:1c:61:6d:14:ea:da:b8:a0:74:7e:0a:17:
c9:71:21:76:6b:9c:ff:b2:64:38:4e:06:5d:77:71:09:92:93:
c7:96:05:af:53:fb:32:ae:37:7c:f0:29:70:e0:a7:3a:a3:21:
17:76:71:d7:56:0c:99:fb:4c:a6:ad:f0:a0:b2:a8:5b:cc:b6:
e8:d7:37:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:14 2023 by rpki-client on console-fra.rpki-client.org