Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/c33qk-jpiLJ9MCVp9y-x0xlUPnw.roa
File: c33qk-jpiLJ9MCVp9y-x0xlUPnw.roa (raw, json)
Hash identifier: p1NTSfSYaKwysuSd4Qa6v3yo9WGIFlXFPqxeWQxkkBk=
Subject key identifier: 73:7D:EA:93:E8:E9:88:B2:7D:30:25:69:F7:2F:B1:D3:19:54:3E:7C
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1104
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/c33qk-jpiLJ9MCVp9y-x0xlUPnw.roa
Signing time: Thu 15 Sep 2022 02:50:53 +0000
ROA not before: Thu 15 Sep 2022 02:50:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131631
IP address blocks: 103.123.218.0/24 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4356 (0x1104)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Sep 15 02:50:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=737DEA93E8E988B27D302569F72FB1D319543E7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5b:66:2b:96:60:85:ae:23:51:24:37:d8:06:
f6:07:fe:1c:bc:c3:1c:97:e8:8d:da:67:47:5d:84:
8e:70:74:d5:7d:ec:1c:67:c0:e8:0f:bb:11:e0:e8:
db:0a:50:ca:0a:c9:d5:91:7e:0f:40:e3:27:bd:fe:
ff:9b:8b:1c:11:5d:4e:c9:45:fe:95:aa:68:cd:89:
d2:70:f2:3f:f7:af:1d:95:b1:02:a1:57:36:df:fa:
f9:61:04:d4:fc:3a:1b:5d:dd:76:6f:b1:2f:fa:ff:
cc:33:03:19:0a:3a:4f:3f:e7:9f:f8:58:32:92:4d:
45:36:37:df:f3:fa:55:e3:a3:fa:5c:e8:fe:c4:2e:
fa:84:f0:3d:2f:30:e4:12:60:05:d5:f5:84:56:05:
5d:63:9f:14:1c:0f:26:7d:0d:aa:4a:6c:43:c4:c7:
91:7f:bd:6e:a1:78:65:39:3b:ee:ef:da:6c:96:50:
e0:5b:3f:ab:b1:8a:cd:68:b5:6a:b0:6d:4c:3f:bc:
5a:94:8b:e8:dc:b7:f2:c6:42:8e:a8:bc:75:4a:b8:
9d:f2:0e:10:5a:7d:c2:2b:89:56:70:67:46:ae:2d:
ae:a9:2a:4b:8b:8d:a2:f3:28:28:2b:d4:c9:5e:9f:
7a:9b:9a:3f:6f:7c:1c:35:25:d3:f7:5f:05:15:91:
db:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:7D:EA:93:E8:E9:88:B2:7D:30:25:69:F7:2F:B1:D3:19:54:3E:7C
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/c33qk-jpiLJ9MCVp9y-x0xlUPnw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.218.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:63:33:66:1d:fe:82:6a:c2:77:af:c6:a8:d1:27:69:cc:1c:
5e:c5:ad:91:24:a8:b3:ed:f9:9b:72:1c:8b:19:16:cb:bc:6e:
06:ca:c5:35:3d:1b:68:f0:18:5f:73:c9:13:61:f4:ea:3a:5c:
95:de:08:45:b6:b2:b3:a1:a2:e8:a1:27:37:da:89:fc:d3:5d:
24:4c:de:2b:bc:27:53:e2:94:6d:77:22:ca:fc:76:b6:32:75:
6e:3b:3d:f1:4c:36:4f:3e:a1:32:e7:cb:20:b8:e9:ad:ee:39:
34:41:3c:34:03:62:61:7e:da:0c:83:3c:f7:ed:49:9a:8a:db:
fa:d8:3b:21:f4:d2:b5:71:47:92:cc:1c:c5:db:42:1e:c6:86:
7c:77:ea:ec:85:4a:15:42:2d:0c:6c:4f:be:5b:e4:d6:31:68:
93:4f:58:28:99:bc:7a:b8:f4:d7:86:48:13:06:c3:dd:ff:a8:
70:55:cc:40:79:74:82:86:71:f6:bf:92:4c:27:37:44:2f:2f:
b5:eb:3d:51:00:50:1e:33:0e:c6:d2:cb:97:57:4f:33:64:5a:
39:54:7d:44:76:d0:f7:79:85:54:9a:a6:38:5b:f3:ab:ad:6e:
cb:a4:b9:2a:12:49:b8:a5:fe:c3:3a:27:b4:63:b4:31:74:a8:
bc:68:91:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org