Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/OkzQDRdgifNJn4SLePZqmh2TH7g.roa
File: OkzQDRdgifNJn4SLePZqmh2TH7g.roa (raw, json)
Hash identifier: +Pl8Xt9tGfO8yInty2isZm+cAxo8toZNtpzgKD+Rtxw=
Subject key identifier: 3A:4C:D0:0D:17:60:89:F3:49:9F:84:8B:78:F6:6A:9A:1D:93:1F:B8
Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2
Certificate serial: 0969
Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/OkzQDRdgifNJn4SLePZqmh2TH7g.roa
Signing time: Wed 29 Sep 2021 02:44:35 +0000
ROA not before: Wed 29 Sep 2021 02:44:35 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131593
IP address blocks: 103.42.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2409 (0x969)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2
Validity
Not Before: Sep 29 02:44:35 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3A4CD00D176089F3499F848B78F66A9A1D931FB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a7:32:77:b5:5c:3c:4d:be:fb:59:75:d2:a1:
75:95:92:e4:e0:21:e8:fb:cd:f6:3b:02:7c:fa:07:
62:a2:1c:ad:38:1e:eb:0d:28:05:6d:01:86:0d:be:
84:1f:c8:22:37:b2:11:33:07:c4:30:31:81:1f:a7:
15:2d:09:64:5a:da:5f:9a:99:7b:4e:18:87:66:db:
55:a8:34:21:4d:c1:b3:6d:01:2a:f9:a8:6e:59:c0:
7a:72:8c:f8:09:8e:e4:44:af:29:7a:60:e2:47:22:
3c:42:fd:3b:c0:40:2f:a7:91:f7:22:98:86:2a:94:
df:2d:a0:99:a9:7c:5d:56:68:75:10:90:f6:4a:7a:
5a:ef:f8:7b:84:b8:f3:09:86:61:9c:5e:51:47:10:
0e:04:c9:13:30:0e:74:3b:0b:85:70:e9:67:e2:28:
07:51:87:a2:ac:6c:41:f3:0a:d7:c6:c0:c5:7a:0f:
54:6f:34:9f:84:ae:4d:44:04:5a:fd:99:58:d7:f7:
7c:95:e9:e7:10:c3:e1:c3:64:8a:ab:ea:82:a5:cc:
17:d1:0d:f9:b5:71:28:8d:66:46:ba:b7:6f:2b:dc:
87:54:55:b6:29:79:a5:5b:5b:40:de:d5:77:d7:61:
fd:ab:fb:bb:e0:cf:23:d9:53:47:62:e0:23:85:8e:
4b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:4C:D0:0D:17:60:89:F3:49:9F:84:8B:78:F6:6A:9A:1D:93:1F:B8
X509v3 Authority Key Identifier:
keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/OkzQDRdgifNJn4SLePZqmh2TH7g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.42.148.0/24
Signature Algorithm: sha256WithRSAEncryption
70:1b:30:a5:ab:71:eb:e8:de:ab:1d:f7:bc:03:5b:62:6c:54:
df:e9:23:61:bc:7a:84:39:a2:b4:46:8e:33:60:d6:a2:32:69:
fc:7f:d7:a6:03:a4:6e:fd:33:bf:4c:fc:90:a2:a6:d0:13:fb:
14:8b:3f:ca:09:6a:1c:8c:d0:7a:2f:40:1d:dd:29:73:3e:4d:
4f:d2:a1:36:86:59:9e:a8:d3:11:24:03:af:2b:e4:c1:fa:7c:
94:70:35:d0:08:49:04:f6:38:0b:ba:b8:bc:11:fc:23:44:47:
30:87:1d:cc:b2:f6:65:00:8f:27:7d:68:8a:1f:62:7a:8f:71:
90:d0:83:f9:3d:78:17:93:81:de:c7:4d:0d:22:00:bc:d6:30:
6b:fe:54:e6:39:a0:83:f6:47:5d:47:b4:8b:17:17:6f:3a:2c:
c6:84:55:1e:c6:c7:55:59:5e:bc:b4:77:1d:87:ef:eb:13:5a:
6e:e4:3a:23:d1:29:34:4e:d8:eb:c6:62:28:a1:1c:14:32:56:
ca:db:56:eb:15:b6:4e:38:2d:de:3f:dd:53:98:95:76:e0:b3:
ff:c2:be:66:9c:0d:82:19:42:be:23:b7:6a:07:c4:14:b2:59:
2d:cd:c1:b2:02:b1:c3:95:ec:f0:21:3e:6a:05:9f:2f:37:13:
32:70:c5:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org