Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/ACND1Gta0TdW0zOdC-rb-Ebgut8.roa
File: ACND1Gta0TdW0zOdC-rb-Ebgut8.roa (raw, json)
Hash identifier: saM980KtgpJ5tEBTnxlFr0NyrFdIMrn4qBC3YOU226E=
Subject key identifier: 00:23:43:D4:6B:5A:D1:37:56:D3:33:9D:0B:EA:DB:F8:46:E0:BA:DF
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0D56
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/ACND1Gta0TdW0zOdC-rb-Ebgut8.roa
Signing time: Thu 15 Sep 2022 02:38:08 +0000
ROA not before: Thu 15 Sep 2022 02:38:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 138145
IP address blocks: 103.137.62.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3414 (0xd56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Sep 15 02:38:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=002343D46B5AD13756D3339D0BEADBF846E0BADF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:70:36:e0:ce:cd:d4:84:c6:17:a4:6d:fb:62:
5a:89:c3:59:d5:57:c0:f0:1e:43:7c:05:b9:b6:6a:
9e:cc:53:3c:51:ba:e1:4f:d1:73:d3:cd:d7:e2:7c:
75:32:52:ea:18:a3:e8:6b:68:0e:d1:9a:f0:39:ec:
b5:89:38:e8:1b:46:f9:f1:97:a4:4e:e6:80:f9:88:
18:6c:d9:31:8e:8a:3d:03:d8:bb:4a:b5:e9:51:1c:
b1:dc:00:59:66:ac:63:d0:e8:a2:a5:b8:5c:8f:04:
aa:ee:77:bf:d1:2f:b5:2c:20:d9:6b:5a:c9:73:7a:
9e:5e:26:24:20:2f:16:7b:65:8b:f1:0b:37:d6:de:
5e:ad:e7:93:98:9c:5b:f0:6e:c4:a9:e6:46:44:07:
6e:0a:bd:71:ac:36:c1:70:69:e5:9f:6b:1b:c2:7c:
8c:f8:d4:ef:76:99:50:ab:4e:ee:37:7b:cf:fd:5c:
19:e7:ec:52:82:be:d9:e5:94:62:72:c7:94:02:7c:
d5:dd:48:28:ab:6c:4d:e4:63:56:79:06:ec:21:03:
04:75:ec:4e:dc:6a:90:8a:54:8a:5a:19:53:b8:0c:
c0:d8:b2:53:31:63:ce:0b:7d:f1:27:69:f2:4d:e3:
7f:67:5f:09:18:c8:be:dd:3a:2e:ba:96:1c:93:db:
a8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:23:43:D4:6B:5A:D1:37:56:D3:33:9D:0B:EA:DB:F8:46:E0:BA:DF
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/ACND1Gta0TdW0zOdC-rb-Ebgut8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.62.0/23
Signature Algorithm: sha256WithRSAEncryption
d3:31:ae:4b:b6:16:5d:0e:e7:e0:9c:3f:11:72:d7:e7:be:c9:
09:5f:b9:ff:11:70:fb:5e:85:7f:4e:b2:96:7e:36:0e:26:5b:
b8:72:f1:5c:8b:5e:53:3c:af:16:ac:60:aa:42:cb:6a:9b:19:
7d:bd:27:eb:b1:c8:60:00:49:05:d5:07:95:10:d7:dc:14:fe:
a3:ec:54:96:5c:d8:16:a6:ad:f1:e7:52:74:3d:5b:51:c7:b1:
48:88:b0:be:d5:4a:69:fd:15:aa:6c:94:b6:16:57:c5:33:98:
a9:c2:5b:2a:31:a8:93:7c:2f:36:0b:4a:39:29:34:c0:ae:b6:
ff:47:bb:83:54:9a:cf:8a:2e:ed:bf:7f:59:84:43:fa:77:9d:
c9:e2:90:19:d0:da:b3:4f:3e:71:35:16:84:b0:8c:51:5c:94:
59:70:42:58:61:c8:93:d5:63:29:cf:41:49:a7:39:62:8f:71:
c8:31:eb:59:74:bc:e3:fa:71:03:c5:5b:f0:d0:6c:85:a4:2c:
7c:75:bd:0a:7e:31:28:04:39:14:d2:20:1f:4b:15:04:81:e2:
ab:c5:9b:52:5a:e1:fb:f3:ab:83:ce:3d:47:1c:6a:53:80:45:
d8:45:b4:52:9b:3e:06:d9:c7:0b:9b:a1:b2:9c:37:2e:38:2c:
4b:bf:fb:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org