Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/FTkCPpUqS5FbnrhBm_NbafbaGco.roa
File: FTkCPpUqS5FbnrhBm_NbafbaGco.roa (raw, json)
Hash identifier: znhZYpMiYM88Z62IzeboodhcSTS/rx0zZ+3O8dq5AcQ=
Subject key identifier: 15:39:02:3E:95:2A:4B:91:5B:9E:B8:41:9B:F3:5B:69:F6:DA:19:CA
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 0E2E
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/FTkCPpUqS5FbnrhBm_NbafbaGco.roa
Signing time: Tue 29 Sep 2020 09:58:12 +0000
ROA not before: Tue 29 Sep 2020 09:58:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131631
IP address blocks: 103.123.217.0/24 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3630 (0xe2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Sep 29 09:58:12 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1539023E952A4B915B9EB8419BF35B69F6DA19CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:10:71:f7:19:2d:74:6d:86:32:90:12:ba:3d:
ed:55:2d:34:de:90:75:cc:4d:be:64:bc:48:de:44:
11:2a:1e:c4:bd:e5:3b:71:e8:17:a8:6e:ba:84:32:
1b:1e:2c:0b:2b:3e:f5:9c:3c:81:4f:37:93:d7:cb:
1b:1f:6d:e9:ba:f5:39:c8:c7:16:06:bc:e2:c3:53:
78:5e:ec:55:a8:79:08:f5:9f:53:e8:14:f7:8c:7a:
8d:c7:e4:4c:32:fb:a6:93:b0:ff:32:a5:8b:07:cf:
5c:bf:a5:55:e0:6c:26:f3:a3:89:15:7b:11:b9:28:
9c:5a:38:45:cd:79:00:01:d5:31:f1:3e:6d:16:ff:
8a:c1:cd:44:2d:a0:93:b8:1e:28:13:13:e7:30:80:
ba:4e:0f:5c:1c:51:07:fd:a4:b8:10:fb:db:85:04:
98:5b:fc:81:c6:c4:e2:42:2e:af:e9:64:ad:3b:ba:
bc:0b:59:76:f0:80:ee:4c:f4:b8:ab:68:3d:10:c7:
f1:fa:ab:17:3f:2d:06:81:69:39:00:cc:92:50:3f:
ba:ab:93:22:12:5f:e8:88:cd:ba:86:06:f3:60:fb:
76:4b:ad:e0:32:f1:45:f6:9a:13:5a:25:4b:33:cf:
e1:e5:19:c5:80:81:cd:3a:57:da:cb:d9:14:bc:f8:
c8:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:39:02:3E:95:2A:4B:91:5B:9E:B8:41:9B:F3:5B:69:F6:DA:19:CA
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/FTkCPpUqS5FbnrhBm_NbafbaGco.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.217.0/24
Signature Algorithm: sha256WithRSAEncryption
70:dc:50:56:a2:59:3e:67:fc:45:0a:fb:23:d7:d3:e7:ec:33:
be:ec:e0:78:42:15:05:4c:46:5a:95:11:9e:5c:70:18:c4:44:
26:46:ed:5d:e0:01:5f:3e:90:ec:b7:c5:a1:65:83:49:0d:4c:
a1:cb:e3:44:1f:ef:27:20:6e:46:61:31:bf:d7:ee:93:e7:2d:
11:b4:b6:b4:71:da:54:ec:06:9b:57:af:c0:fc:33:bd:9d:7a:
b0:2a:64:46:9b:8b:b8:5e:c5:8c:fe:62:4f:b0:e5:8c:08:c1:
20:1d:9e:00:3a:ed:2d:e8:17:8d:48:ab:10:70:32:ac:85:6c:
16:57:cc:8a:aa:58:2a:7f:bc:0a:44:f1:57:8e:20:7f:90:8c:
fa:cb:1b:69:8b:09:27:e9:e0:3b:98:31:12:a9:c1:9b:bd:c5:
6b:a1:66:2a:3f:21:78:2a:45:4b:81:d6:2b:c0:a3:fe:c0:df:
c5:2e:62:8d:26:4c:5c:be:bf:4a:4c:53:4c:97:a5:d9:62:cf:
e5:2e:1a:a5:4a:66:d5:29:dc:e5:6d:3e:b7:e9:0d:6d:c8:df:
56:c1:93:de:f2:60:3b:6c:cb:10:44:68:66:23:d7:31:4a:08:
da:0a:76:36:67:3c:f8:10:03:62:49:71:68:97:54:23:0e:b8:
16:b4:83:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org