Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/cBZMSWxcf110scBMSVtzSnIeU1Q.roa
File: cBZMSWxcf110scBMSVtzSnIeU1Q.roa (raw, json)
Hash identifier: 1aDFP7GvCASvxS/+L93lWLc0FOpf/G3YJ2YR7veEX4o=
Subject key identifier: 70:16:4C:49:6C:5C:7F:5D:74:B1:C0:4C:49:5B:73:4A:72:1E:53:54
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0ADD
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/cBZMSWxcf110scBMSVtzSnIeU1Q.roa
Signing time: Tue 20 Oct 2020 04:08:18 +0000
ROA not before: Tue 20 Oct 2020 04:08:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131642
IP address blocks: 103.137.62.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2781 (0xadd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Oct 20 04:08:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=70164C496C5C7F5D74B1C04C495B734A721E5354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:90:bc:08:57:7c:fb:66:20:b5:56:0d:33:44:
bd:64:0c:13:73:cf:b1:9e:07:6b:cb:68:69:78:fb:
ca:0e:76:71:ff:18:5c:3b:ca:c6:52:58:29:f4:b8:
92:02:e9:07:5e:f5:c8:86:a2:81:b5:41:8d:04:ec:
82:d5:41:3c:f5:4a:de:d7:2c:63:89:82:bf:a8:83:
04:10:7e:47:b6:43:53:63:5c:e1:06:8c:c7:fe:4e:
17:90:fa:53:4b:23:10:8b:ec:9b:94:97:72:65:d5:
28:56:a2:92:9d:52:96:57:91:0f:d0:21:a1:ea:0a:
d3:4c:1f:6f:3b:19:16:0f:1b:17:74:4e:ec:95:7e:
a0:6f:e8:28:f6:43:7d:05:1b:0f:3a:ae:85:b3:74:
6b:9d:c7:6f:19:4e:5a:55:21:03:d8:25:0a:c8:e4:
bc:3c:1e:6e:cd:ac:cd:f3:e2:60:09:6c:f3:22:c9:
25:82:4e:75:65:cc:24:95:a5:0a:55:64:25:56:0f:
1f:6c:dd:8e:1c:40:f7:a8:39:6f:49:40:20:fd:71:
cc:ab:d6:01:39:2b:dd:9e:e3:11:25:9f:5d:db:65:
3f:3c:30:2a:aa:44:39:03:c7:e8:64:c2:73:86:06:
84:47:66:f2:72:b8:35:a8:89:82:42:1b:f5:f2:15:
92:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:16:4C:49:6C:5C:7F:5D:74:B1:C0:4C:49:5B:73:4A:72:1E:53:54
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/cBZMSWxcf110scBMSVtzSnIeU1Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.62.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:3f:62:90:3f:27:0e:87:7a:78:73:da:17:7f:cf:6b:7a:ad:
7f:d3:20:a9:94:6b:ab:53:6e:13:d2:0d:ac:33:3a:11:93:aa:
cf:5c:7b:d1:91:6a:2e:20:a4:57:d8:f9:7d:13:44:de:af:51:
ce:6c:36:e4:08:9b:43:d6:9a:6f:8a:22:23:30:52:10:44:44:
3d:40:2b:00:31:c3:9b:54:8b:d6:38:ca:54:ab:53:4f:a1:45:
dd:ba:cc:4c:63:34:94:31:c7:2e:5f:9a:dc:ee:4f:5c:d2:96:
91:aa:92:9f:97:97:00:6a:86:9e:b3:40:dc:2c:0c:ec:bb:c8:
72:bc:9b:94:e6:9d:b0:1e:79:84:f2:e1:ac:b3:8a:a0:0c:38:
90:74:fa:8f:c9:43:dd:51:dc:bf:1e:17:05:91:b5:c4:23:75:
ec:70:e1:6e:11:79:fd:9e:d8:cb:c8:a3:de:94:b3:35:cf:2e:
b6:d2:35:7a:c2:11:ea:90:5d:c0:41:99:42:ce:17:45:d9:c8:
52:42:15:c6:5b:d0:52:68:22:e8:60:91:26:eb:e8:26:ae:64:
12:f6:81:47:91:eb:50:2f:6a:91:57:92:3b:f3:68:91:ee:bd:
5a:af:a9:9f:88:0f:f1:37:3a:80:e2:35:3e:75:3c:31:52:31:
35:5c:e4:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org