Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/Y0guH070mFECWD08TSEM30ceSKc.roa
File: Y0guH070mFECWD08TSEM30ceSKc.roa (raw, json)
Hash identifier: W4gXlvqUcy+59xO01OcktKfcQGcRWeRiPo5HS1Eb6dQ=
Subject key identifier: 63:48:2E:1F:4E:F4:98:51:02:58:3D:3C:4D:21:0C:DF:47:1E:48:A7
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0BC2
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/Y0guH070mFECWD08TSEM30ceSKc.roa
Signing time: Sun 07 Feb 2021 12:40:51 +0000
ROA not before: Sun 07 Feb 2021 12:40:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 138145
IP address blocks: 103.137.62.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3010 (0xbc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Feb 7 12:40:51 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=63482E1F4EF4985102583D3C4D210CDF471E48A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ce:ff:19:25:33:0e:f7:e2:8f:08:f5:6c:25:
87:f1:65:42:12:63:c8:a8:4e:05:e6:95:38:4d:65:
84:51:13:df:86:b4:b3:ac:55:7f:ec:f1:c2:5c:02:
88:4b:4a:5d:a2:d5:a5:36:49:04:cd:ef:58:3e:48:
c1:e1:a6:f1:77:cc:99:cf:5d:b2:15:7e:2b:37:11:
db:16:4e:bf:9e:91:31:a5:a5:93:7e:97:6d:02:01:
b9:7f:70:47:3d:08:00:93:15:05:98:28:9e:d5:52:
c1:36:d9:02:a1:86:9c:c6:a5:10:fd:e3:a8:c8:f2:
97:bd:a9:5c:ee:3c:11:b7:2a:49:9f:5f:2d:be:c0:
b5:a6:23:ca:8e:52:e2:24:93:5f:84:f6:7c:c6:7a:
27:53:d1:45:36:b8:8a:58:36:7d:b5:cb:80:0c:30:
d1:82:9b:3c:71:64:d9:98:00:18:d2:0c:ae:bf:90:
bd:72:5b:5e:c8:52:7b:fc:b2:f5:7c:a0:29:05:08:
2d:a3:f9:91:c8:02:42:55:46:1b:65:68:7f:69:c6:
53:19:9b:f8:57:6a:ad:22:46:d5:21:69:5e:4f:05:
f9:ef:16:06:c6:45:80:5f:58:8e:b1:61:68:27:f3:
35:c9:bb:67:2c:f7:eb:86:3e:63:2c:66:d0:28:f9:
c6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:48:2E:1F:4E:F4:98:51:02:58:3D:3C:4D:21:0C:DF:47:1E:48:A7
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/Y0guH070mFECWD08TSEM30ceSKc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.62.0/23
Signature Algorithm: sha256WithRSAEncryption
cd:88:a4:4b:11:79:8e:24:7e:07:6e:3d:47:1d:54:ec:2d:0d:
cc:3e:b2:7a:5a:ec:e0:7a:88:77:7f:d6:a8:8e:47:d6:40:5f:
20:15:80:98:c0:88:76:77:45:0f:c5:6e:7e:71:cd:74:43:97:
d6:97:65:0c:bb:35:61:02:c5:fc:56:2a:8a:87:ac:a5:3e:32:
67:f2:28:29:46:99:9e:43:fb:06:37:5c:e3:91:61:76:7e:57:
2e:02:07:3c:0b:aa:35:8f:8c:bf:14:55:86:a7:8e:4f:e4:77:
f2:be:ca:46:84:02:e3:2f:df:48:b4:bb:63:e2:a2:e5:c5:fe:
f1:a7:d9:b0:c2:a0:a7:ad:c7:31:ac:8c:c9:a7:f9:09:8f:0c:
89:03:43:81:45:6f:32:33:94:94:8c:f9:f5:d4:58:12:7f:4e:
f8:1d:d7:86:0e:70:01:80:6e:f8:31:95:7c:18:ad:96:e3:b4:
71:71:a3:9c:2e:56:d7:0f:38:97:4a:ff:93:44:28:31:09:09:
29:e3:e9:40:c5:30:11:ae:38:40:f0:a3:36:9c:e2:0e:f6:03:
9f:a7:96:69:49:bc:b2:05:cb:92:24:f3:ff:22:c5:95:29:51:
81:02:71:96:9e:79:87:14:3e:d5:4b:46:64:6f:b9:bb:a8:bf:
6d:cb:21:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org