Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/OUXX7fpnljaAn6rv7eUmFMljNVA.roa
File: OUXX7fpnljaAn6rv7eUmFMljNVA.roa (raw, json)
Hash identifier: dLgPEwW61jWJt/DKEnv/sVxQGcWzXqi/tqRRONhW68M=
Subject key identifier: 39:45:D7:ED:FA:67:96:36:80:9F:AA:EF:ED:E5:26:14:C9:63:35:50
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0D56
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/OUXX7fpnljaAn6rv7eUmFMljNVA.roa
Signing time: Thu 15 Sep 2022 02:38:06 +0000
ROA not before: Thu 15 Sep 2022 02:38:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18178
IP address blocks: 103.137.62.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3414 (0xd56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Sep 15 02:38:06 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3945D7EDFA679636809FAAEFEDE52614C9633550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:49:61:80:31:4e:e8:4c:c0:0f:b7:01:5a:06:
75:dd:fa:27:28:09:f6:50:43:14:6f:17:82:00:82:
55:e2:44:4b:5a:d9:a3:ba:d8:52:b4:26:86:10:1b:
aa:44:a5:b7:41:8c:1a:f7:47:98:4b:51:70:f9:14:
e6:73:2f:f4:4a:09:82:1c:f9:1f:7b:34:11:eb:c7:
53:9d:e8:2d:35:75:2d:a0:df:b8:d4:92:f9:56:a7:
23:b4:86:9e:c3:08:11:b9:fb:45:41:09:c0:7a:f4:
85:b9:2a:59:e5:f8:69:14:b3:56:06:81:75:7f:41:
90:65:ee:35:b9:4d:e1:4e:ae:d9:b3:a8:52:e3:38:
02:c4:e6:f4:e6:d4:ba:5c:d0:6c:56:0b:55:b2:a2:
a1:aa:38:67:cf:81:3f:df:28:b8:05:d7:87:57:92:
cf:27:73:a4:4d:a6:79:bf:e1:54:21:8b:97:8b:c3:
c3:4e:bd:dc:40:7e:e8:6d:18:b2:c7:72:b1:da:81:
7d:31:e3:c0:77:ac:ab:c9:88:a9:f8:2a:94:0c:78:
85:51:9c:50:d7:a0:7f:df:96:6d:40:3f:db:f1:8a:
89:9b:02:8c:30:07:04:29:ba:b9:11:0a:d8:20:aa:
be:dc:fc:ed:7e:c7:66:fb:14:a1:1a:09:5a:53:ba:
77:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:45:D7:ED:FA:67:96:36:80:9F:AA:EF:ED:E5:26:14:C9:63:35:50
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/OUXX7fpnljaAn6rv7eUmFMljNVA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.62.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:54:18:f5:b8:09:47:18:23:77:56:68:19:ba:42:2a:b2:b8:
ff:bb:7a:43:78:c9:33:c0:ad:58:a1:aa:99:25:08:06:e6:44:
9a:24:0d:80:25:48:7c:1f:5b:f2:d1:74:6a:34:73:99:2d:75:
6d:11:88:7b:72:6b:2b:80:78:cb:47:17:39:c4:73:10:be:22:
42:81:03:04:f0:40:08:6c:51:04:1b:34:4b:f7:a1:26:2f:e3:
e4:62:0b:91:05:86:b0:d5:ae:65:92:81:36:b8:15:17:d4:dd:
a9:ad:28:54:04:40:73:e1:49:e2:df:b0:b1:53:9c:d5:44:56:
d6:ae:a9:3b:92:6e:0b:4a:a1:29:ac:54:49:5c:b8:a7:56:2c:
2e:75:37:a8:c2:85:57:81:07:40:e7:b5:73:11:40:ca:c6:e2:
be:56:23:ae:77:99:40:bd:5d:b5:d8:41:f6:37:16:6c:be:bf:
5d:3c:16:93:6c:5f:ef:9a:f8:f9:55:f0:c8:16:7a:cd:13:aa:
ea:06:84:a0:f2:38:6d:f7:db:a5:f1:82:9b:b9:90:70:cf:d1:
02:71:bc:64:1f:5d:d2:6c:f9:64:11:7e:10:7c:23:fb:28:a7:
ad:db:ce:2c:bc:51:47:a1:63:ba:dd:83:f5:3e:69:cf:4c:6c:
0f:5c:f0:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org