Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/JlDvVswDU257n7kmcFjl7NJGNaU.roa
File: JlDvVswDU257n7kmcFjl7NJGNaU.roa (raw, json)
Hash identifier: oaA50+XhgwVPt9VwgfqOOWbpG7Yym/sOL5uoP4Nt5Q4=
Subject key identifier: 26:50:EF:56:CC:03:53:6E:7B:9F:B9:26:70:58:E5:EC:D2:46:35:A5
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0BC0
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/JlDvVswDU257n7kmcFjl7NJGNaU.roa
Signing time: Sun 07 Feb 2021 12:38:18 +0000
ROA not before: Sun 07 Feb 2021 12:38:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 64271
IP address blocks: 103.137.62.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3008 (0xbc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Feb 7 12:38:18 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2650EF56CC03536E7B9FB9267058E5ECD24635A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0f:24:c9:39:ed:10:2c:bd:7c:3f:96:28:88:
79:a3:4a:d3:cf:84:98:f1:6a:ce:63:16:c4:b3:47:
49:3b:1e:18:6c:d6:6f:6b:96:47:a5:f6:51:13:1c:
63:88:83:67:83:50:73:6a:dc:a3:79:b5:bc:00:79:
45:e0:b3:e0:74:a7:83:c1:7c:74:53:07:bc:0f:c1:
1e:5d:cb:b2:56:93:8b:1a:1b:68:f7:10:f5:b3:3a:
de:c6:46:16:e6:8e:c3:ac:ce:c2:9c:11:e2:cc:29:
45:ee:e9:e7:64:f3:1e:27:bb:39:79:f3:fc:e1:8c:
83:a4:f5:57:bd:5f:7f:fe:e4:7f:fd:22:f7:b7:ec:
81:9f:cc:91:56:7b:72:64:77:79:be:20:3f:03:63:
82:54:8e:ba:36:c3:a8:f4:0a:20:6e:dd:93:4b:59:
8b:50:7f:de:5d:30:cd:f4:9d:a0:40:2f:b6:eb:d4:
82:a5:a8:48:25:78:08:c3:59:9b:36:67:e0:d5:84:
11:76:c4:d0:be:ae:05:bd:25:c2:04:09:e3:c7:44:
7a:04:1b:d5:5a:e5:70:04:80:c3:f5:48:02:26:7a:
ad:66:7e:4f:54:33:9c:29:98:4d:3a:e5:d3:0c:3e:
5a:a8:a9:87:b6:10:18:5d:b0:86:a8:08:10:4f:89:
a6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:50:EF:56:CC:03:53:6E:7B:9F:B9:26:70:58:E5:EC:D2:46:35:A5
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/JlDvVswDU257n7kmcFjl7NJGNaU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.62.0/23
Signature Algorithm: sha256WithRSAEncryption
46:bc:3d:8e:f5:dd:95:1c:7c:31:7c:c7:57:15:83:47:bf:60:
ff:e7:6e:e0:05:15:d2:f2:7b:db:70:8a:7e:58:69:74:9c:2d:
aa:0a:4f:57:76:ba:05:f8:3a:67:b2:68:6f:e3:72:13:ae:ae:
85:54:98:3a:4e:56:15:9c:83:26:fe:f7:95:50:2f:7b:4b:cd:
cb:e2:13:93:86:67:7c:b6:18:01:01:08:55:67:f0:39:68:23:
7a:1b:0f:5c:c7:25:e8:df:1c:bd:80:9d:77:70:0c:81:94:3a:
a4:e3:98:9b:05:78:97:5e:4b:c3:b8:de:b0:1c:3c:6a:06:28:
38:7a:d9:e1:c0:0f:e1:74:b8:86:84:83:44:90:a8:09:6d:c2:
23:37:b7:e9:ab:a1:90:15:5b:21:61:11:43:ad:37:7f:7a:49:
bc:75:68:05:dc:53:84:40:04:29:cc:00:7f:53:1e:f2:4b:8d:
6d:aa:38:13:7f:f0:3f:ea:13:33:e4:9d:2d:cb:d5:53:fd:87:
19:21:ef:2c:6f:6a:ee:4b:23:08:47:67:9d:3c:cb:f2:eb:7a:
b3:12:53:42:9c:c3:55:e0:35:e7:2d:aa:b3:75:9d:04:65:bf:
a8:8d:2e:b7:d5:8b:a0:b1:bd:9b:5d:63:2c:ef:d7:da:4a:82:
8f:0d:6c:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org