Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/4Jk8XSx37NbBMrwrubpmfsajvoM.roa
File: 4Jk8XSx37NbBMrwrubpmfsajvoM.roa (raw, json)
Hash identifier: NPcSpaZVq9+q41qAtjQ4OSjD9wf0HNyAhywtvpS6J14=
Subject key identifier: E0:99:3C:5D:2C:77:EC:D6:C1:32:BC:2B:B9:BA:66:7E:C6:A3:BE:83
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0C65
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/4Jk8XSx37NbBMrwrubpmfsajvoM.roa
Signing time: Wed 29 Sep 2021 02:37:20 +0000
ROA not before: Wed 29 Sep 2021 02:37:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 138145
IP address blocks: 103.137.62.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3173 (0xc65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Sep 29 02:37:20 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E0993C5D2C77ECD6C132BC2BB9BA667EC6A3BE83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5f:d1:4f:9c:b9:9c:be:30:e9:53:9d:4c:56:
5a:69:f2:48:43:6f:a4:0d:77:58:3f:66:63:6d:30:
5a:d9:70:49:f6:1e:90:aa:80:dc:ec:f8:37:a2:0a:
a1:3a:40:16:9d:17:d0:c1:c0:cc:8b:85:17:0e:ac:
af:a4:9b:69:67:92:54:95:74:d1:a8:76:a0:b9:93:
70:ce:a7:87:22:91:2a:cb:0f:41:6c:60:f1:1f:68:
29:ea:9f:2c:8b:e6:36:fd:ed:f9:1f:90:e6:d0:1d:
68:ff:5b:b2:d9:4e:bf:36:23:72:3f:64:26:fa:d5:
eb:84:fd:14:03:e4:82:51:9b:00:e9:89:39:be:22:
51:d2:df:a3:66:4d:fa:d0:48:10:a7:f0:68:c9:43:
fe:a3:70:fa:33:de:a3:44:50:f5:31:66:72:fa:fe:
97:69:9e:a6:76:75:29:c0:cb:11:dd:f6:04:6d:b2:
99:7c:68:ab:99:4f:9d:2e:1d:54:cf:c4:1b:1c:33:
27:5e:f5:ef:57:67:b5:eb:1a:18:5d:b7:84:d3:bb:
bb:66:4e:fc:77:79:90:3e:25:ca:82:4f:01:3b:d8:
a2:1e:d2:45:32:61:2b:60:a4:96:c2:26:8a:63:2e:
af:99:82:26:9c:19:0c:ea:02:02:6f:7b:d4:45:a8:
0f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:99:3C:5D:2C:77:EC:D6:C1:32:BC:2B:B9:BA:66:7E:C6:A3:BE:83
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/4Jk8XSx37NbBMrwrubpmfsajvoM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.62.0/23
Signature Algorithm: sha256WithRSAEncryption
f3:d0:39:53:70:89:d6:69:a3:e2:f9:26:ed:0d:37:55:0b:c8:
c3:30:b8:b4:ab:77:9e:91:e7:6a:a2:82:72:d8:3b:75:54:15:
bc:27:ea:3e:3f:21:ca:f3:37:eb:86:9d:8b:9c:1d:fb:dc:1d:
54:25:22:dd:74:90:dc:7b:c0:af:31:b3:47:79:16:0a:50:b8:
aa:75:42:b6:ae:b3:3c:bb:97:1a:a4:4e:8f:48:72:65:53:f1:
be:ef:fd:b6:34:e1:9e:92:14:15:21:8f:31:61:c7:71:dc:24:
3b:04:09:db:b6:9f:53:20:3a:97:92:01:33:d3:ce:a9:3d:da:
ee:77:68:33:e3:0f:3c:c9:1c:f6:5b:5a:97:8e:0b:02:cc:54:
25:d8:df:42:80:68:f8:7d:33:6c:2b:d0:b6:89:ec:be:83:54:
ba:4c:23:43:f3:22:f7:50:46:db:96:d6:5e:8c:df:2b:4f:1f:
ad:bb:2a:ca:7b:78:3f:62:7c:06:53:7c:03:ca:90:25:16:68:
4f:5f:0a:d6:c5:09:f3:0f:0d:8d:f0:d0:ca:54:c9:48:fa:bf:
7c:94:4c:9d:d5:cb:72:9d:15:e7:65:4b:2f:03:a2:af:2a:e0:
f6:fe:11:f8:bf:c9:b0:ca:97:7d:27:eb:21:1e:93:00:cb:88:
30:b2:7a:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org