Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/Fg5mOzK9IkEjqTYTlFkdF_o_aDU.roa
File: Fg5mOzK9IkEjqTYTlFkdF_o_aDU.roa (raw, json)
Hash identifier: z6v0NaxBSilSLdRxNG3RDEoc8qit5SSBtW9+zBDxGHM=
Subject key identifier: 16:0E:66:3B:32:BD:22:41:23:A9:36:13:94:59:1D:17:FA:3F:68:35
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1104
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/Fg5mOzK9IkEjqTYTlFkdF_o_aDU.roa
Signing time: Thu 15 Sep 2022 02:50:52 +0000
ROA not before: Thu 15 Sep 2022 02:50:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131631
IP address blocks: 103.123.217.0/24 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4356 (0x1104)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Sep 15 02:50:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=160E663B32BD224123A9361394591D17FA3F6835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d4:59:a3:8f:79:15:fa:52:3f:48:22:19:22:
83:05:a4:c8:c6:28:ed:23:99:db:2f:0a:73:64:61:
c7:99:13:4d:60:e4:7d:2a:f4:f2:7b:f9:7b:e0:88:
2d:17:4c:66:4a:e0:2c:94:99:3c:3c:25:27:b7:ac:
39:c3:ed:d8:db:54:ec:15:f5:46:b6:09:5b:2a:19:
d5:5a:a5:99:04:c5:a0:b5:07:5d:fd:7c:90:04:75:
f6:a0:3e:09:a4:1d:0e:a6:05:eb:ec:1f:f7:69:19:
ef:f7:a8:c8:8a:e1:34:e7:14:83:bd:25:fc:c4:43:
82:5b:94:8b:5f:5e:ba:f2:bd:43:0a:84:ef:77:30:
96:3c:28:06:6b:cb:7d:e8:93:60:07:64:0d:27:ac:
42:36:12:4a:31:52:70:3c:cc:07:ac:ae:ab:ee:3d:
00:fb:a7:5e:69:94:fa:0f:77:32:f0:a7:f7:d8:04:
ab:63:8f:e4:b3:7e:79:53:59:af:69:2b:27:97:dd:
92:b7:e0:36:0c:5d:4c:9a:08:1e:7c:7a:aa:0f:5d:
e6:55:73:2e:ad:85:ed:4c:43:66:76:07:10:ed:e4:
46:ad:61:4b:2d:da:8a:3a:c1:ae:53:b0:26:69:7f:
96:0b:f8:1a:f9:57:48:c5:f6:39:42:fc:7a:99:ef:
b1:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:0E:66:3B:32:BD:22:41:23:A9:36:13:94:59:1D:17:FA:3F:68:35
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/Fg5mOzK9IkEjqTYTlFkdF_o_aDU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.217.0/24
Signature Algorithm: sha256WithRSAEncryption
22:7a:92:11:f0:23:20:21:18:13:ae:07:74:82:f8:6d:5e:ff:
70:53:c0:58:cc:1f:99:8f:24:9f:77:7f:48:14:7d:ae:a7:db:
ef:2c:3e:f7:ed:9c:93:fe:02:23:9d:e5:0e:de:7d:74:48:46:
cb:09:77:27:ca:7f:15:6d:74:f3:31:7f:02:c0:29:df:ff:2b:
b8:eb:26:5f:fa:86:00:09:38:8f:8c:84:09:17:a9:f8:5e:0a:
05:8b:6b:ed:fe:51:df:73:4b:2d:f2:00:a8:4d:dd:7a:1d:fb:
17:44:23:12:7b:3c:35:14:c6:6e:f8:8e:cc:09:97:2d:2f:6e:
15:8c:1d:c4:b0:36:c1:ad:51:c7:9e:67:96:9e:42:d5:97:b8:
ab:65:8e:97:21:7c:76:51:1d:b6:98:43:1b:6b:4c:70:c3:51:
c2:38:11:04:69:21:19:8d:ac:c2:8f:8b:a0:13:09:e2:d2:b6:
ca:0d:31:d1:54:c0:28:d1:9c:2f:9e:9a:ce:9c:42:b0:3a:41:
5c:d0:80:84:5b:d7:48:ab:e0:21:82:30:98:c1:c9:a4:40:ee:
66:22:51:31:12:5b:76:ac:d8:70:3e:b0:0f:a9:b7:28:cf:9b:
9b:4c:ab:87:d9:a3:6b:6e:3c:5c:2e:22:07:c0:8f:fc:b6:85:
14:c7:ce:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org