Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/EDJ5N-WLEOhv_RWscd_yoEM_4ns.roa
File: EDJ5N-WLEOhv_RWscd_yoEM_4ns.roa (raw, json)
Hash identifier: L3YLZlbT45IT+sOK450cWiTIHT3Z/j7LCzVc3l0gLaY=
Subject key identifier: 10:32:79:37:E5:8B:10:E8:6F:FD:15:AC:71:DF:F2:A0:43:3F:E2:7B
Certificate issuer: /CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9
Certificate serial: 012E
Authority key identifier: 7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/EDJ5N-WLEOhv_RWscd_yoEM_4ns.roa
Signing time: Thu 15 Sep 2022 02:38:16 +0000
ROA not before: Thu 15 Sep 2022 02:38:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38853
IP address blocks: 103.169.46.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 302 (0x12e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9
Validity
Not Before: Sep 15 02:38:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=10327937E58B10E86FFD15AC71DFF2A0433FE27B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:12:d6:48:c8:39:b3:e1:85:1b:d9:ee:4b:83:
af:2b:7f:bf:bf:26:67:72:e6:7f:8e:c0:8b:51:4b:
79:1e:72:7e:33:85:72:d3:84:c8:67:8b:f4:c7:f0:
ba:db:88:12:1f:96:ef:12:58:91:a8:c4:97:12:cb:
3f:c3:4c:06:fc:0d:3a:9d:a0:6e:d2:b4:09:7d:77:
b9:c3:c2:18:0e:4e:c7:5c:af:f6:62:ba:d2:53:1c:
00:93:ae:99:27:4f:05:b1:41:37:63:3f:71:c1:e5:
96:ba:b3:9b:d0:d0:c9:d3:f7:08:65:78:cc:e2:2f:
a5:c9:2a:d7:9f:1f:fb:31:99:f2:30:94:e8:6e:06:
6d:90:f1:1a:bb:81:08:66:eb:52:7f:c8:67:7f:3f:
03:53:5f:f7:21:0b:c2:c3:3b:69:4b:80:56:65:f3:
17:56:7f:ad:dd:c0:63:da:e6:d4:1f:b9:75:6e:9c:
05:8d:db:fd:f0:77:ce:e4:00:81:89:1a:7d:b8:b0:
b7:3a:57:46:ca:e0:76:30:b3:d8:2c:7c:8a:14:0e:
d6:8a:76:34:c0:2c:1c:82:67:75:da:7a:4d:fb:e4:
ab:53:df:19:f8:d4:19:62:02:ee:bf:6b:f3:19:ae:
cf:b4:5b:89:44:da:5c:18:65:80:d6:66:d4:0a:1a:
46:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:32:79:37:E5:8B:10:E8:6F:FD:15:AC:71:DF:F2:A0:43:3F:E2:7B
X509v3 Authority Key Identifier:
keyid:7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/EDJ5N-WLEOhv_RWscd_yoEM_4ns.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.169.46.0/23
Signature Algorithm: sha256WithRSAEncryption
27:59:60:b7:fe:f3:43:8a:c8:47:7c:3d:1a:d6:c9:fc:6f:e1:
b3:bc:31:e0:ca:d6:f9:de:3c:65:fc:ff:07:20:47:e6:c8:08:
75:38:e6:4c:49:83:7a:1e:a4:b6:57:33:7d:98:0d:ba:df:f6:
bf:56:57:bb:84:80:0c:cd:34:d8:aa:1e:33:3f:87:ff:6e:16:
bf:f1:0e:4e:4f:a4:db:cc:54:27:22:55:88:6c:d7:5c:96:ec:
7f:da:b5:b9:36:73:fc:d5:38:02:53:fc:fa:0f:e6:ff:26:b6:
fc:c3:2e:00:d0:0a:d0:99:f2:83:c8:9f:13:e0:23:97:77:c7:
d0:25:63:fc:55:da:fb:bf:08:a5:fe:91:f7:81:1a:c6:3e:fe:
52:3c:88:fb:ea:19:be:cf:10:53:a0:05:03:4c:30:66:9c:a3:
83:b5:93:ef:18:64:6b:b6:fe:26:37:35:dc:62:2c:3d:80:7a:
87:e3:52:39:11:8b:60:98:f7:ec:d1:92:ee:10:7f:60:7c:f0:
51:42:53:b2:da:0d:5b:b9:2d:4d:53:4d:a6:36:00:8e:ae:4b:
3f:5e:70:43:d6:74:4c:20:ef:5f:45:87:50:54:8e:3a:73:d4:
c6:ca:42:eb:eb:40:1c:6c:44:cd:6c:a6:bf:8c:67:70:85:a9:
39:62:7a:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org