Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/kH2S_eDoedQrGEHzYj9j36fx5N0.roa
File: kH2S_eDoedQrGEHzYj9j36fx5N0.roa (raw, json)
Hash identifier: GpmSaEVPQnv8onVk2nwMXGtt2wBPP/bIP19/rhctcqM=
Subject key identifier: 90:7D:92:FD:E0:E8:79:D4:2B:18:41:F3:62:3F:63:DF:A7:F1:E4:DD
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0ADF
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/kH2S_eDoedQrGEHzYj9j36fx5N0.roa
Signing time: Tue 20 Oct 2020 04:08:29 +0000
ROA not before: Tue 20 Oct 2020 04:08:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 64271
IP address blocks: 103.137.62.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2783 (0xadf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Oct 20 04:08:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=907D92FDE0E879D42B1841F3623F63DFA7F1E4DD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:27:f0:48:bb:55:9f:24:7f:9b:a6:25:22:5d:
7c:33:8a:ac:a3:fe:3c:a5:eb:62:96:1e:a3:f7:5f:
0a:38:f3:65:8c:3a:8a:3c:28:3e:bf:62:6c:67:29:
a2:b3:05:d0:f1:74:5d:e6:ad:41:af:7a:35:87:0a:
39:70:3e:45:0f:56:1c:79:a0:a5:5b:5a:f5:39:0d:
7c:1c:ed:b5:72:39:64:74:35:c2:a4:71:f2:f1:8a:
68:d0:75:5c:fa:2f:c0:92:20:60:f1:3d:87:ef:a4:
8d:91:4e:90:60:7c:aa:0e:bd:1f:71:3c:ec:91:29:
38:8a:84:5c:e1:d1:b5:80:71:ec:66:65:97:ee:3b:
b9:84:1a:ca:54:ca:58:e6:13:8f:4d:00:ef:af:60:
ea:63:3a:92:72:bd:9f:cf:d7:a2:cc:8a:9d:2b:e9:
01:e5:f9:c9:c9:8c:10:89:24:7d:2d:49:11:23:ed:
1d:a3:81:68:30:be:3c:02:c1:8c:b4:56:2f:2c:a7:
f0:4e:87:40:18:70:65:18:e0:e8:75:e4:ac:f2:dc:
0b:52:3a:11:54:b2:02:e4:5b:e1:86:a0:09:72:c9:
66:52:16:ea:c4:3f:da:43:e6:3b:68:a8:b7:9c:bc:
1e:ec:0a:4f:06:5d:8f:b1:f2:1b:9e:e3:cb:ec:86:
8c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:7D:92:FD:E0:E8:79:D4:2B:18:41:F3:62:3F:63:DF:A7:F1:E4:DD
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/kH2S_eDoedQrGEHzYj9j36fx5N0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.62.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:fc:99:45:2d:ce:a8:c6:8a:6b:c3:6f:32:b3:5b:07:c4:35:
dc:6b:2a:10:f0:c9:ec:03:ab:1e:2f:ba:2e:b6:19:32:ca:96:
2a:9f:45:ca:ce:85:58:ff:27:ad:6e:bc:e9:8b:69:31:f2:93:
9e:22:db:09:3c:cc:52:db:81:61:74:94:1d:88:5f:59:13:ec:
8b:c6:7b:b5:1a:f1:d3:17:0c:e6:b2:28:00:91:ae:31:f4:3d:
ed:a8:eb:04:56:e4:20:cd:4a:51:1a:b6:31:92:14:f5:0d:9c:
92:b8:0c:9f:d9:58:93:b8:a6:aa:5c:6e:0b:3c:ad:a8:f5:b1:
aa:0c:be:2b:5d:bf:cc:7e:6a:96:bf:5a:ac:dc:68:61:c2:2a:
c4:81:27:22:4c:21:1d:df:5c:20:cb:53:ad:f8:10:69:37:19:
32:20:7f:7a:a4:16:29:34:6c:63:88:02:50:3d:18:c4:51:da:
0e:b1:a6:f1:c1:b3:7e:97:fd:f0:a5:0e:86:88:f4:ef:7a:85:
ce:f7:d5:a4:e2:e0:40:ff:e3:5f:6a:04:0b:aa:56:9b:72:3b:
a0:b1:9e:26:a0:c0:94:b1:ca:f3:a6:79:1e:8f:b6:6f:7c:09:
f0:8b:ec:e0:71:a9:1b:dc:9c:3c:2c:3d:01:83:46:64:10:29:
a0:03:6a:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org