Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/OdDx9xt8qkxgNcR8M1NENu7WZLc.roa
File: OdDx9xt8qkxgNcR8M1NENu7WZLc.roa (raw, json)
Hash identifier: mbtFVVMgRlQ4Nq12vns4r/yjyvMkc3AOnde/wTpmIt8=
Subject key identifier: 39:D0:F1:F7:1B:7C:AA:4C:60:35:C4:7C:33:53:44:36:EE:D6:64:B7
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1195
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/OdDx9xt8qkxgNcR8M1NENu7WZLc.roa
Signing time: Fri 10 Mar 2023 01:06:57 +0000
ROA not before: Fri 10 Mar 2023 01:06:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 202525
IP address blocks: 103.123.218.0/24 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4501 (0x1195)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Mar 10 01:06:57 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=39D0F1F71B7CAA4C6035C47C33534436EED664B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:45:e8:49:96:86:c7:57:6a:bb:ea:6a:81:e2:
10:da:a2:70:7d:7a:b2:50:cd:91:5f:e1:27:cf:5f:
ff:19:cf:d2:c8:7a:00:dc:77:97:ea:2a:e7:10:ce:
2e:c0:f7:68:e9:84:05:20:26:e8:d7:36:3d:de:a9:
5c:8c:bc:2b:2c:a0:e0:c1:2c:59:a0:1d:56:69:3c:
ad:34:e2:79:11:21:64:d4:c1:0a:c3:6a:1c:35:f2:
92:cb:21:3f:5c:e1:99:63:64:49:69:83:8c:25:fd:
14:d3:77:45:63:97:c6:eb:6c:ad:5c:43:37:b4:2b:
b5:d2:85:2f:93:13:25:cf:2e:24:0b:42:14:0d:4f:
f4:36:9a:ac:a2:ce:cb:96:b1:90:c9:3a:db:9a:74:
94:24:7a:a9:fd:4b:4f:5f:37:9d:63:cb:18:e0:b1:
41:9c:22:eb:19:3d:28:b4:19:d8:c7:74:b5:e6:fc:
c9:d4:5f:91:03:75:d9:fc:70:e0:a0:df:75:4f:a7:
5b:4a:b2:16:42:a5:c9:df:d8:83:f1:a9:17:50:74:
ed:dd:d9:e0:a6:71:0f:b2:3d:c3:f8:5a:16:91:4e:
c2:8a:90:f6:b3:d7:bc:9f:35:89:42:9c:82:13:31:
76:23:a1:77:a7:c2:e8:8a:ee:6a:0b:a5:ec:36:59:
50:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:D0:F1:F7:1B:7C:AA:4C:60:35:C4:7C:33:53:44:36:EE:D6:64:B7
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/OdDx9xt8qkxgNcR8M1NENu7WZLc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.218.0/24
Signature Algorithm: sha256WithRSAEncryption
03:8a:1d:ff:3b:60:b9:e8:1e:65:a1:86:1c:db:b4:81:64:79:
29:21:13:5f:1b:72:8d:54:19:0c:d2:3e:d0:11:20:62:f2:2d:
da:20:4d:51:3f:55:35:10:42:9f:c1:79:e6:d8:22:94:b1:0c:
e6:c4:37:ca:22:68:83:d6:f3:b1:db:a6:12:db:41:cc:8a:31:
a4:1e:bf:86:4c:07:53:36:26:78:d5:76:76:1d:99:d8:42:85:
86:25:50:d3:3e:93:6a:90:f4:ca:e4:a8:e8:b0:7f:28:e0:f8:
2e:77:b9:2d:55:62:8e:9e:cf:83:7a:30:48:62:a1:a3:3e:2a:
37:f5:bc:e5:a1:d3:dc:28:ec:ea:db:bf:f4:eb:a4:76:b9:0c:
20:6f:75:91:de:a9:78:67:fc:e7:b9:96:5e:dc:d0:b8:91:b7:
55:dc:93:51:8f:af:df:d1:48:e8:15:3d:b9:7e:58:b8:c6:38:
b5:86:c3:6e:e2:fb:5e:58:14:85:4b:82:23:07:89:4f:5e:a3:
56:80:a9:53:d4:21:20:fe:31:22:85:8a:14:f9:5b:81:b5:cb:
61:b6:48:a8:f4:cf:89:25:04:23:00:65:a6:8e:dd:23:8e:93:
40:77:8b:8f:a5:ac:0e:97:1a:48:ee:ae:46:78:13:6d:4e:57:
6d:37:92:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org