Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/o0TLbnR6yCSUx5-7dO25SDcC8CU.roa
File: o0TLbnR6yCSUx5-7dO25SDcC8CU.roa (raw, json)
Hash identifier: PFhnQO314mbjxjk+IR7zSuz1E+WOYha3zd7XjKB6Wfc=
Subject key identifier: A3:44:CB:6E:74:7A:C8:24:94:C7:9F:BB:74:ED:B9:48:37:02:F0:25
Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Certificate serial: 0F74
Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/o0TLbnR6yCSUx5-7dO25SDcC8CU.roa
Signing time: Sun 07 Feb 2021 11:52:44 +0000
ROA not before: Sun 07 Feb 2021 11:52:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131631
IP address blocks: 103.123.218.0/24 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3956 (0xf74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948
Validity
Not Before: Feb 7 11:52:44 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A344CB6E747AC82494C79FBB74EDB9483702F025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:07:3c:c2:14:51:57:38:cf:8a:79:d6:cb:8d:
09:ec:a4:c2:55:f5:d7:28:21:0b:a7:cf:40:c2:5c:
9c:e9:45:9c:4a:62:df:c5:67:64:37:63:a1:1b:f6:
0a:02:e1:78:3a:63:a3:7a:83:a9:34:c8:72:37:de:
55:01:b0:bb:8e:3d:b7:aa:2e:a4:dd:42:b2:ea:15:
c6:db:7a:18:05:20:4a:83:6c:a0:0c:79:6a:2b:63:
7e:08:e6:12:df:77:d4:d9:cb:6e:9c:3a:ef:78:6b:
5c:5a:3b:f8:9c:91:76:ce:dc:45:c2:ed:dc:88:f6:
e1:a4:41:5d:d6:b6:bd:d2:b9:92:5a:b1:d1:3b:ad:
59:64:32:aa:fc:25:07:74:fa:62:95:58:26:83:10:
15:75:94:78:24:15:19:b7:63:73:03:40:9e:66:ad:
f1:a4:bb:a4:cd:b8:bd:07:ef:71:9b:1d:02:a7:75:
e3:74:ad:5b:47:2c:e8:65:84:4a:58:b4:f9:2a:d1:
ad:17:46:33:60:b6:c3:29:94:af:00:e8:93:46:bd:
53:0a:53:ec:30:91:ec:ee:4c:2a:05:b6:a5:30:fa:
f2:ff:5b:e4:39:6f:fd:2a:1b:4b:c6:37:47:5f:30:
72:2e:58:cb:e2:da:aa:5f:72:58:37:3a:2f:67:3e:
57:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:44:CB:6E:74:7A:C8:24:94:C7:9F:BB:74:ED:B9:48:37:02:F0:25
X509v3 Authority Key Identifier:
keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/o0TLbnR6yCSUx5-7dO25SDcC8CU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.218.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:35:88:50:03:11:8b:be:06:5b:8e:b2:af:d4:97:ff:4f:a1:
82:90:66:ec:67:eb:43:c2:00:4b:1a:99:0e:d4:93:73:22:8a:
33:8c:da:8f:18:77:9c:49:22:ea:50:40:c3:2b:24:da:14:ec:
58:1f:d2:bb:7b:47:c0:23:2b:b5:c9:6f:10:2e:7b:55:84:3c:
e8:dc:dd:e7:23:98:0a:df:e7:c9:7e:ab:96:57:23:79:44:f6:
bf:e6:bd:a3:c7:1b:8d:9d:cf:af:55:0a:6c:5c:9d:d2:a8:ee:
8b:a1:8c:a2:9c:72:8b:9c:d0:8b:98:1b:f5:d1:32:be:c7:82:
07:ab:c5:58:16:eb:19:70:40:23:40:9c:66:3e:08:cd:b7:1e:
64:c1:60:d6:58:d0:04:8d:ee:4f:ca:2d:c2:74:4a:1c:81:64:
55:ad:e1:58:39:b4:23:08:6d:ce:15:3f:aa:bf:9e:d9:ac:8b:
63:77:be:06:b2:d0:fd:f4:81:3c:65:a9:93:15:a8:ce:13:67:
83:85:bb:47:cc:95:53:39:ea:ab:d0:25:f7:65:35:6d:5a:92:
8b:76:e9:73:6d:58:04:83:22:0e:90:c8:01:1c:4a:3c:88:9b:
ab:cf:cc:8b:04:51:0d:fb:09:8f:88:c4:d6:e0:23:cd:16:1c:
5f:f9:e5:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org