Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/Z29pwRG99uJcEMU-BU3yy00tWiM.roa
File: Z29pwRG99uJcEMU-BU3yy00tWiM.roa (raw, json)
Hash identifier: NpeK28TDjWUdjz5RTXWApAPgcdMmpDVxbwyNsPrYSjA=
Subject key identifier: 67:6F:69:C1:11:BD:F6:E2:5C:10:C5:3E:05:4D:F2:CB:4D:2D:5A:23
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1104
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/Z29pwRG99uJcEMU-BU3yy00tWiM.roa
Signing time: Thu 15 Sep 2022 02:50:53 +0000
ROA not before: Thu 15 Sep 2022 02:50:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131631
IP address blocks: 103.123.219.0/24 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4356 (0x1104)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Sep 15 02:50:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=676F69C111BDF6E25C10C53E054DF2CB4D2D5A23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:44:00:a1:ad:4f:5c:0d:a1:32:7a:55:47:fc:
c5:92:4d:20:09:b2:83:cc:39:81:fa:c4:87:7f:af:
62:79:97:66:75:4a:25:e1:d1:32:f7:53:67:a8:ef:
81:2e:c3:9e:14:0f:1e:7c:6d:73:31:dc:f4:f2:8e:
e1:d4:88:51:c4:ba:a8:4e:88:a3:ff:3a:1f:42:0c:
56:82:ce:ad:2d:d4:cf:f1:f8:2f:70:bb:0d:be:c1:
73:64:dd:6d:c1:47:67:68:4d:16:b9:fe:9b:48:25:
87:fe:c5:99:cb:de:2e:12:b6:f6:d9:f2:e2:ad:87:
f3:06:ba:b0:06:82:39:4f:8e:8c:bc:99:5f:9c:5e:
d9:c6:e3:55:3b:84:4c:1d:01:0d:cc:51:4f:56:37:
07:16:ea:ba:e5:1d:ae:ee:64:b9:ac:96:61:4a:b3:
85:ae:7f:ab:0c:2f:98:25:c2:a8:ab:2c:d0:36:b7:
93:87:05:2c:b4:66:f3:dc:7f:c8:29:00:ba:1f:c7:
33:8a:aa:de:cc:c9:48:1e:dc:ed:45:95:31:cb:be:
75:93:50:48:25:ee:1b:55:14:25:25:2c:2b:1c:35:
17:52:7e:76:ce:ce:9c:7b:ba:07:f8:10:33:c7:e9:
e9:19:a3:9f:70:44:cb:4d:f2:b5:33:0b:79:8c:69:
5f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:6F:69:C1:11:BD:F6:E2:5C:10:C5:3E:05:4D:F2:CB:4D:2D:5A:23
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/Z29pwRG99uJcEMU-BU3yy00tWiM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.219.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:b6:28:8f:2f:26:d9:31:24:5e:2f:9e:a6:fa:82:ba:ae:60:
28:21:d9:a5:0b:32:b2:3c:6a:fb:4f:db:75:3a:67:b5:e5:35:
20:76:45:7a:e8:61:84:b1:d0:29:85:b7:b2:2e:f4:13:f0:f3:
43:84:de:b9:e1:f0:07:3d:8d:89:1c:94:1a:c6:85:b2:12:66:
c1:38:78:bc:98:c2:46:59:85:0a:7e:4c:79:90:3b:63:0b:2f:
fb:8b:c6:ca:b2:75:8c:91:a1:36:b0:5d:6c:13:88:ba:27:cc:
bc:34:00:df:c3:67:3b:e6:70:08:79:f8:05:75:b7:1d:e7:e2:
fb:a5:ea:95:90:e5:e0:c3:4b:4b:8c:b4:ce:ef:16:39:d2:e3:
90:42:46:ef:52:12:4a:15:2a:42:bd:7a:17:c0:f5:67:be:1c:
ec:47:fe:88:3a:d5:54:93:22:68:79:f1:bf:d6:7d:4b:d2:b7:
c6:8d:7a:7a:c1:a8:88:83:2a:76:bb:8d:57:f2:dc:6b:24:0a:
a3:84:5f:52:7e:eb:42:7f:ca:48:a8:ab:53:c4:92:9b:ae:15:
e5:b7:60:f2:1a:3e:12:e0:8a:08:9e:34:89:ee:84:1b:b3:be:
63:36:12:c7:ef:26:7f:2c:0f:f9:06:55:a8:3b:b4:90:a9:74:
c1:e6:af:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org