Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/lowdNnq7ZXjUs30cPJLmgJLoZM0.roa
File: lowdNnq7ZXjUs30cPJLmgJLoZM0.roa (raw, json)
Hash identifier: vpQCD5z6LbWkjeNtMlowK/RjPHs6g5/Bg1QLr7Pq14M=
Subject key identifier: 96:8C:1D:36:7A:BB:65:78:D4:B3:7D:1C:3C:92:E6:80:92:E8:64:CD
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 1015
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/lowdNnq7ZXjUs30cPJLmgJLoZM0.roa
Signing time: Wed 29 Sep 2021 02:50:26 +0000
ROA not before: Wed 29 Sep 2021 02:50:26 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131631
IP address blocks: 103.123.218.0/24 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4117 (0x1015)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Sep 29 02:50:26 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=968C1D367ABB6578D4B37D1C3C92E68092E864CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:6a:48:e7:12:b7:40:5e:33:46:08:1e:30:5e:
07:7a:7b:5b:39:41:48:c1:db:dc:7e:28:13:9b:e3:
8c:96:db:66:e5:ca:55:46:4e:46:33:20:f8:2d:e2:
d1:36:d2:1f:d0:97:7b:99:5c:3c:ed:23:67:6e:06:
39:32:f7:74:bc:72:41:af:22:b7:73:17:6d:c6:57:
ed:25:b3:7f:01:9a:75:ee:28:09:8d:62:bf:f6:69:
57:c4:30:61:b3:73:f9:c1:17:b2:68:55:3b:c3:af:
16:0e:ca:00:19:4a:0a:6b:50:48:c0:e6:6b:56:f1:
72:a7:a7:aa:52:9d:a7:77:80:5c:0c:bd:aa:f0:77:
d3:18:94:11:e3:a5:6b:e4:80:30:15:ff:95:cd:69:
69:db:4e:3d:3e:59:b2:94:bd:30:d2:8a:ed:55:71:
2e:fc:93:78:52:ad:49:cc:16:b7:53:5c:61:93:6b:
f1:7b:1b:50:a8:9f:0e:c8:ea:1a:e0:d2:ae:32:15:
50:73:24:bf:92:da:23:a7:08:b6:b7:10:f8:fa:e9:
f5:cd:bd:03:a1:d1:fe:f8:7f:fc:93:8c:9a:3c:07:
73:54:f3:f8:f1:0d:09:81:9b:21:a6:b3:0f:31:b6:
26:ba:aa:e4:cb:42:61:ce:d6:6d:f0:fa:a6:bf:57:
56:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:8C:1D:36:7A:BB:65:78:D4:B3:7D:1C:3C:92:E6:80:92:E8:64:CD
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/lowdNnq7ZXjUs30cPJLmgJLoZM0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.218.0/24
Signature Algorithm: sha256WithRSAEncryption
96:ba:6d:02:87:56:9e:b4:7f:d0:35:e5:63:58:af:c0:e4:b7:
34:93:bf:77:80:1d:5a:2e:d8:9e:38:0e:28:86:80:bc:da:29:
0a:5d:ff:8e:94:c7:07:e2:3f:b3:43:b1:5f:15:8e:70:65:fd:
d4:64:7d:bb:56:a5:a2:23:fe:e0:1d:46:7e:21:30:35:f2:d4:
2d:a9:ec:d0:f0:7d:5e:d4:c2:e0:e8:70:d2:3c:6e:5c:15:db:
7e:76:be:12:79:4c:ef:60:8d:a4:28:1d:ab:c8:fb:54:91:9e:
72:c8:80:75:fa:83:05:aa:de:d0:24:81:80:ba:43:8a:b1:79:
3d:59:4f:24:78:80:6e:d3:8a:02:39:34:e6:aa:7b:39:9d:82:
1d:3e:72:09:3b:5c:bf:b6:ee:f0:c9:72:fa:75:02:f6:83:22:
53:df:10:b0:fc:a3:6c:e0:5b:02:03:7f:b1:55:64:b0:85:47:
04:b6:35:a8:b1:05:7f:54:2d:f5:1f:99:86:f6:8a:c3:ec:1a:
10:2c:bb:4b:88:f2:24:0e:ec:28:c1:20:bd:16:13:e3:d3:d4:
e1:af:b3:92:4f:cc:b5:be:ce:cb:5d:00:fb:bc:ae:50:11:e1:
3e:d7:fb:5c:35:56:4d:7d:aa:39:81:1f:a3:2d:d1:df:f7:8b:
a4:ea:5d:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org