Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/wfRYVn0arj5A-0hYQHQMrg0UVMA.roa
File: wfRYVn0arj5A-0hYQHQMrg0UVMA.roa (raw, json)
Hash identifier: r0UeNgINEIpGa04UvpcTnUCvLwsM//bCk2KoeP9lV5o=
Subject key identifier: C1:F4:58:56:7D:1A:AE:3E:40:FB:48:58:40:74:0C:AE:0D:14:54:C0
Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Certificate serial: 0C63
Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wfRYVn0arj5A-0hYQHQMrg0UVMA.roa
Signing time: Wed 29 Sep 2021 02:37:19 +0000
ROA not before: Wed 29 Sep 2021 02:37:19 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38042
IP address blocks: 103.137.62.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3171 (0xc63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439
Validity
Not Before: Sep 29 02:37:19 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C1F458567D1AAE3E40FB485840740CAE0D1454C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:03:78:b6:60:ce:c6:ef:20:fb:aa:c5:52:3e:
6b:4f:89:9f:8e:c7:d5:cd:67:f6:fc:86:f1:04:c8:
7d:61:5b:ce:d9:41:a6:50:56:18:90:7a:ba:73:06:
de:67:49:d3:fb:48:94:07:5e:20:05:10:d3:ff:0b:
1a:04:f8:2a:79:23:32:26:91:68:85:9f:a7:fa:ca:
11:73:55:1c:98:6c:a3:07:12:45:a9:87:6d:74:14:
3b:1b:99:fd:86:8e:62:36:69:50:f2:59:26:f1:f7:
9d:41:93:87:3b:db:32:f1:e9:e6:3f:82:00:9d:aa:
14:cd:87:45:a8:93:53:6b:fb:18:ee:92:98:d1:02:
73:28:ba:ed:9a:fc:56:7f:04:b0:81:a9:da:73:0e:
48:f2:e5:22:b5:65:40:17:8a:b7:a2:b3:63:01:a5:
c8:9e:8a:ae:28:4a:99:d5:b8:6b:f1:7c:71:6f:ff:
6b:ba:52:48:67:3d:49:cc:c1:ea:33:24:32:1b:a7:
c0:3e:96:99:61:2d:d0:83:14:f0:f9:58:47:57:45:
81:bd:f9:6b:f5:11:a4:b7:37:7d:a7:b0:82:ca:1d:
28:c0:54:b6:8d:35:1c:1b:1d:d4:e3:0c:d3:25:80:
a0:72:59:8c:86:59:07:18:d9:94:5f:22:33:e5:a0:
4d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:F4:58:56:7D:1A:AE:3E:40:FB:48:58:40:74:0C:AE:0D:14:54:C0
X509v3 Authority Key Identifier:
keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wfRYVn0arj5A-0hYQHQMrg0UVMA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.62.0/23
Signature Algorithm: sha256WithRSAEncryption
e8:a1:42:ed:46:11:21:76:b8:66:e9:cb:41:44:23:dd:3d:f1:
09:71:07:95:d0:46:90:80:78:b8:85:bb:8f:76:57:83:b6:2d:
6e:8c:ac:4f:d6:ca:a8:55:2b:e6:b5:21:42:09:00:b0:3a:14:
f8:41:bc:60:71:f4:bc:e6:47:34:47:ce:d4:5d:77:95:bd:3e:
85:9d:aa:d4:0c:20:a3:a5:da:a7:7b:3a:18:32:44:fe:d9:00:
de:7c:3e:d8:f1:47:99:35:cb:ae:86:ac:78:71:9a:14:b5:15:
cb:16:14:b0:91:48:e5:c0:d0:76:b6:16:5e:fc:e0:2e:db:a3:
7c:df:54:45:5c:2c:d0:c7:92:eb:da:3c:d7:e2:02:e6:df:89:
0b:12:c4:66:2b:e1:93:a1:84:12:4f:6a:bf:45:d6:23:c5:5c:
ba:af:e2:d2:82:ef:2f:ff:50:b7:c1:c9:34:67:9a:2b:a0:5a:
17:fc:22:cd:ba:16:87:01:0c:a7:e3:93:57:68:6f:17:84:71:
4b:ff:d3:6e:2e:b1:e5:01:42:77:cd:8d:e5:f2:5c:2d:49:f3:
cf:18:46:82:9a:f4:75:ff:c9:77:bf:9a:6d:9e:b1:2d:e9:cb:
0f:e0:15:2a:b0:8d:d3:ae:dd:cb:c1:56:3b:f3:24:7f:5f:ab:
8d:40:95:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org