Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/TwjErYptb81NkRaorKWYGsa-3mI.roa
File: TwjErYptb81NkRaorKWYGsa-3mI.roa (raw, json)
Hash identifier: eQv7vYl179wPNDqhIre8DyL7HFwUPx59qjYS7DTyaAg=
Subject key identifier: 4F:08:C4:AD:8A:6D:6F:CD:4D:91:16:A8:AC:A5:98:1A:C6:BE:DE:62
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1129
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/TwjErYptb81NkRaorKWYGsa-3mI.roa
Signing time: Wed 05 Oct 2022 07:23:47 +0000
ROA not before: Wed 05 Oct 2022 07:23:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 14618
IP address blocks: 103.123.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4393 (0x1129)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Oct 5 07:23:47 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4F08C4AD8A6D6FCD4D9116A8ACA5981AC6BEDE62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:34:a7:9a:bf:2b:a0:d5:eb:98:ac:ae:79:b5:
b1:28:2d:38:3c:d2:86:54:ea:80:52:c5:eb:76:67:
7f:32:fa:3b:06:79:9a:66:f2:fb:58:89:70:aa:28:
5e:5a:7d:76:48:c9:1f:2d:7b:8d:ba:cf:b7:1a:20:
39:0a:d6:59:1b:1d:d6:08:63:a5:0c:54:c6:50:d4:
4d:d9:09:ef:41:b5:ae:a0:76:dc:43:26:91:76:2d:
e9:ec:2f:35:58:ad:1c:3b:72:53:71:f5:8c:ac:52:
20:4a:ec:39:46:fc:87:d9:05:0c:ad:90:1a:9c:af:
ef:93:89:0d:c2:f4:28:fe:58:e3:08:32:e7:ac:db:
a3:b5:d4:ac:14:fb:55:6b:29:fe:c6:14:3b:38:54:
b9:cd:6a:29:e5:ac:4d:ba:5c:92:db:81:5c:98:2e:
fb:4c:44:89:86:9f:81:15:08:85:4f:2e:fd:a9:2a:
4e:c9:82:28:f2:43:96:82:34:dd:dc:ae:30:75:66:
4c:60:12:29:01:5c:da:4d:6a:1a:f2:45:2f:6c:c0:
c5:aa:ee:4d:72:ef:da:30:0e:78:29:74:45:a6:c5:
d4:4c:de:42:60:b8:e5:3d:1f:0b:71:6e:7d:be:48:
09:9b:46:4f:de:f6:37:16:cd:10:78:fa:bc:15:db:
92:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:08:C4:AD:8A:6D:6F:CD:4D:91:16:A8:AC:A5:98:1A:C6:BE:DE:62
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/TwjErYptb81NkRaorKWYGsa-3mI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.219.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:ab:f1:95:00:c0:6e:10:d1:db:74:e4:95:5d:20:ee:bd:40:
42:1e:77:43:49:4f:57:e8:16:b4:e5:29:2a:ad:cc:51:de:5e:
db:f3:9b:a4:76:da:98:46:be:d4:be:ef:df:6e:89:29:11:67:
89:03:06:40:a5:2e:3e:6a:b3:26:ab:b9:c4:07:2a:4e:85:6e:
8e:f6:4b:e6:d5:71:e6:8e:83:80:30:5e:a3:8b:73:16:d6:0d:
83:c1:ef:93:71:73:9f:a6:ba:84:a8:85:be:3a:31:8f:e3:7d:
d9:1e:b8:50:91:0a:5b:4a:95:5e:11:d5:ae:85:aa:94:ae:3f:
bd:cd:c7:2b:85:0e:0c:6e:8c:5d:02:04:0a:36:df:8b:eb:2e:
f7:5a:1d:8b:e2:a8:0d:48:4a:e6:9e:ba:3e:a7:7f:db:b1:8e:
c7:6b:8a:92:6f:42:9c:c4:d5:12:54:3d:59:dd:51:6f:14:1f:
fa:56:42:1a:3d:d8:01:db:4c:e0:92:54:0c:7c:b3:d5:af:a2:
8a:4f:18:a8:65:7a:72:f7:7a:6d:59:18:eb:a7:cd:d9:e3:0e:
d6:a6:34:10:c9:ab:67:df:65:04:10:5c:5a:be:6d:f8:ec:03:
9b:cd:83:d4:d0:d4:c9:e7:9f:c9:40:69:20:25:31:ea:f8:47:
34:70:fe:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org