Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PIXNET/b90NGt3YLZjH7__6GSJ4dRExDSU.roa
File: b90NGt3YLZjH7__6GSJ4dRExDSU.roa (raw, json)
Hash identifier: CzxUklpZXSgzfZZ6TwN9hw6szMqxig2Xhya/thpf2HQ=
Subject key identifier: 6F:DD:0D:1A:DD:D8:2D:98:C7:EF:FF:FA:19:22:78:75:11:31:0D:25
Certificate issuer: /CN=CDF44277BA96FC60729008649C09B0AEA07033E8
Certificate serial: 083A
Authority key identifier: CD:F4:42:77:BA:96:FC:60:72:90:08:64:9C:09:B0:AE:A0:70:33:E8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zfRCd7qW_GBykAhknAmwrqBwM-g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIXNET/b90NGt3YLZjH7__6GSJ4dRExDSU.roa
Signing time: Wed 25 Nov 2020 07:26:43 +0000
ROA not before: Wed 25 Nov 2020 07:26:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 103.23.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2106 (0x83a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CDF44277BA96FC60729008649C09B0AEA07033E8
Validity
Not Before: Nov 25 07:26:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6FDD0D1ADDD82D98C7EFFFFA1922787511310D25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:27:48:9d:e5:13:a5:88:61:e0:0a:7f:ee:b4:
5c:a2:9b:41:21:ce:f0:a7:78:70:46:58:8e:1e:12:
68:60:8d:40:c8:8d:2d:2a:46:d6:60:55:63:6c:14:
c1:e4:84:3d:2d:dd:6d:97:f5:b2:10:8b:05:ef:65:
f8:1e:55:3e:70:9d:5e:ef:a4:39:78:e4:d9:4f:08:
55:bf:f0:b4:2f:6d:47:71:b9:03:98:c8:fe:a7:9a:
48:38:7b:ae:12:61:d4:5b:59:5b:76:9e:26:08:83:
1d:08:7c:0c:7b:14:da:51:81:e3:35:86:f9:ae:16:
e2:14:ec:fc:00:02:d3:a4:d8:a7:61:8e:05:72:11:
1d:c8:c3:a0:50:75:a5:ce:2c:12:e6:72:fe:cd:3b:
6c:a6:6d:3d:80:0e:e2:0b:37:62:9b:63:7e:eb:56:
4d:e9:20:2e:0e:57:19:23:9d:50:1d:01:f5:79:5c:
31:66:36:c1:52:5b:67:62:a3:8b:fe:aa:d0:bf:57:
e3:63:5f:1f:25:85:44:89:38:e7:21:70:fa:03:1f:
bc:4f:d0:ac:7b:77:3b:e7:8b:f3:77:3c:b2:f0:d3:
5f:bb:e1:c8:8d:12:13:2a:a3:da:cc:a2:3c:12:10:
68:2a:41:1e:da:ad:2d:67:cf:98:16:8e:a7:aa:b3:
e7:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:DD:0D:1A:DD:D8:2D:98:C7:EF:FF:FA:19:22:78:75:11:31:0D:25
X509v3 Authority Key Identifier:
keyid:CD:F4:42:77:BA:96:FC:60:72:90:08:64:9C:09:B0:AE:A0:70:33:E8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIXNET/zfRCd7qW_GBykAhknAmwrqBwM-g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zfRCd7qW_GBykAhknAmwrqBwM-g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIXNET/b90NGt3YLZjH7__6GSJ4dRExDSU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.23.108.0/22
Signature Algorithm: sha256WithRSAEncryption
48:6d:c6:1e:af:11:f7:e3:5f:00:07:5a:77:e2:92:ea:15:c4:
08:c7:eb:4a:d3:c2:6d:4e:40:2a:f8:a3:0e:e3:72:8a:20:65:
3f:53:c3:1a:ee:38:00:90:4f:47:e1:93:1c:50:19:1b:a3:8d:
a1:e0:3a:60:4d:92:35:e2:47:c0:39:3a:1f:73:93:79:99:8c:
e4:3c:4b:b3:87:d8:83:9d:88:96:97:dd:30:76:dd:bc:e4:66:
f9:1a:1d:8b:41:6f:ff:82:de:b1:2c:0f:a5:e8:96:bc:e3:af:
0a:48:b7:bb:41:ec:ab:af:1d:32:60:15:6f:5b:9a:73:a7:e3:
19:77:15:fe:19:27:bd:55:c9:58:2b:82:a1:ae:3e:11:09:aa:
31:11:6b:a6:38:31:b5:35:35:00:34:75:2e:b9:61:20:bd:be:
48:59:58:3f:8f:66:0c:91:9e:2f:37:95:2a:6e:9a:2d:82:2a:
11:20:bd:bb:ee:ac:c1:61:87:2d:ea:74:9b:f3:f3:83:f7:51:
3d:b8:32:e7:50:91:e0:d9:7d:fa:35:ae:df:6a:a5:eb:38:34:
dc:4a:41:e6:54:9a:18:a7:e9:5c:d8:82:3c:59:14:4c:66:81:
a7:12:1b:47:2c:3b:44:73:ca:5f:29:ea:66:81:52:a6:0e:c6:
aa:13:9d:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org