Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PIXNET/qtueTVtioAMDEFFkyV2gZfROOeg.roa
File: qtueTVtioAMDEFFkyV2gZfROOeg.roa (raw, json)
Hash identifier: s3rfIGrDyqZ5yC9ptSIIrtXK+d+b5EdO/EEUTc8e4nI=
Subject key identifier: AA:DB:9E:4D:5B:62:A0:03:03:10:51:64:C9:5D:A0:65:F4:4E:39:E8
Certificate issuer: /CN=CDF44277BA96FC60729008649C09B0AEA07033E8
Certificate serial: 090B
Authority key identifier: CD:F4:42:77:BA:96:FC:60:72:90:08:64:9C:09:B0:AE:A0:70:33:E8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zfRCd7qW_GBykAhknAmwrqBwM-g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIXNET/qtueTVtioAMDEFFkyV2gZfROOeg.roa
Signing time: Wed 29 Sep 2021 02:41:41 +0000
ROA not before: Wed 29 Sep 2021 02:41:41 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 103.23.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2315 (0x90b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CDF44277BA96FC60729008649C09B0AEA07033E8
Validity
Not Before: Sep 29 02:41:41 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=AADB9E4D5B62A00303105164C95DA065F44E39E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f2:3a:17:47:32:dd:78:8d:e3:b9:2f:b7:f2:
89:05:62:b9:49:84:38:4a:df:f9:6a:be:e3:fb:10:
00:fb:74:76:02:61:6c:74:f2:0b:c4:58:de:a1:33:
aa:dd:af:94:97:d9:7b:67:57:4b:83:e9:f3:32:2b:
e0:17:95:b5:ac:05:1e:31:81:67:3a:3d:fa:ee:40:
a9:a3:20:37:a3:0f:91:13:0e:9e:ef:ad:78:56:5e:
58:c3:df:b5:b7:a7:3b:1e:97:a1:fc:3c:50:fa:89:
3f:f0:e0:5c:74:85:64:39:1f:0c:e7:7a:40:32:8a:
e2:e1:63:24:1b:ff:a1:c3:5f:3b:a7:59:7a:45:7a:
1b:52:89:3d:7a:77:24:8e:42:bf:b4:28:b8:b8:8e:
32:42:c3:c3:c8:4e:a7:6a:ff:44:af:f4:94:4f:20:
98:14:08:93:6f:1c:2b:f8:eb:cf:f4:22:cb:79:f9:
a6:3f:8f:ed:dd:f5:77:22:cd:58:bf:cf:66:f8:02:
c7:60:92:8c:b7:23:e7:78:8c:34:cd:fc:e1:24:c3:
ef:7f:15:13:71:33:ee:ed:ce:a1:b3:19:ec:f5:c3:
ae:1a:c5:8b:40:9b:f6:30:ff:8d:86:e9:35:77:3a:
48:c9:6e:2e:ff:2f:fe:e8:da:0f:7f:1a:40:4b:4b:
dc:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:DB:9E:4D:5B:62:A0:03:03:10:51:64:C9:5D:A0:65:F4:4E:39:E8
X509v3 Authority Key Identifier:
keyid:CD:F4:42:77:BA:96:FC:60:72:90:08:64:9C:09:B0:AE:A0:70:33:E8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIXNET/zfRCd7qW_GBykAhknAmwrqBwM-g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zfRCd7qW_GBykAhknAmwrqBwM-g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIXNET/qtueTVtioAMDEFFkyV2gZfROOeg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.23.108.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:5b:81:da:37:a3:54:c8:87:04:99:26:6b:07:29:25:2e:ee:
de:de:25:11:10:1f:cc:34:91:f3:53:8c:21:ec:77:46:07:08:
d3:63:fd:55:2d:7b:78:7f:8c:01:dc:69:24:ed:85:c3:a2:8a:
27:67:72:ab:e6:9c:e5:2e:63:88:53:5a:23:fe:f5:08:bb:9a:
6f:4d:e1:f8:62:ac:72:b7:16:fd:86:38:4d:51:44:b0:2d:f6:
9a:bb:a6:77:5b:4b:15:7b:4e:0d:eb:fc:c5:a0:d7:aa:d4:7b:
7e:71:b1:78:dc:44:0c:11:44:51:88:90:dd:b5:f7:39:3a:a9:
7f:8b:ed:76:3b:67:12:dd:67:61:7e:a3:6d:df:c4:20:c7:27:
85:9c:69:03:42:03:be:15:bf:87:df:98:86:4e:27:55:95:bc:
b0:58:09:1d:02:6b:31:a6:a2:9d:4a:e6:bb:e5:59:d9:aa:7d:
ac:0e:83:75:ed:aa:4a:7a:d8:88:df:3f:a0:8d:ea:b2:ca:ab:
e0:24:b1:88:c2:d4:e5:52:19:57:8b:85:2e:79:bb:52:66:27:
bb:ec:5a:27:98:65:a9:ad:b7:b6:ef:34:9e:82:be:20:27:cc:
19:bd:1f:05:9e:47:c3:66:72:fe:22:c6:61:0a:b3:90:d1:6b:
35:5d:d8:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org