Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDTV/aCo6FOHUaAdoGERS1skzt_osoU0.roa
File: aCo6FOHUaAdoGERS1skzt_osoU0.roa (raw, json)
Hash identifier: TVscKU6Ck7AAtWJHZtla2hCsUq2URkwaBld1UpqQcEY=
Subject key identifier: 68:2A:3A:14:E1:D4:68:07:68:18:44:52:D6:C9:33:B7:FA:2C:A1:4D
Certificate issuer: /CN=7F5D8D54ECB7CEEB46FD8DF5467C41C002443526
Certificate serial: 08B0
Authority key identifier: 7F:5D:8D:54:EC:B7:CE:EB:46:FD:8D:F5:46:7C:41:C0:02:44:35:26
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/f12NVOy3zutG_Y31RnxBwAJENSY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/aCo6FOHUaAdoGERS1skzt_osoU0.roa
Signing time: Sun 07 Feb 2021 12:43:04 +0000
ROA not before: Sun 07 Feb 2021 12:43:04 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131611
IP address blocks: 103.100.164.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2224 (0x8b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7F5D8D54ECB7CEEB46FD8DF5467C41C002443526
Validity
Not Before: Feb 7 12:43:04 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=682A3A14E1D4680768184452D6C933B7FA2CA14D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0c:11:89:69:41:27:44:90:c7:4f:36:87:2c:
be:a8:7b:ca:69:7d:49:41:20:a6:10:d3:e7:3c:64:
ca:7c:0c:8e:30:86:c4:61:78:c9:1d:40:cd:12:09:
78:04:19:50:5a:31:16:eb:c4:f9:1b:2f:52:d4:6f:
0f:d1:1e:19:fd:e6:63:93:da:62:eb:ff:67:5d:55:
44:f0:d1:7d:a4:5a:18:20:09:b1:3f:59:ea:48:e3:
f9:59:c8:5f:eb:ef:7d:d8:c6:74:50:1b:01:cd:4b:
b7:3c:6c:8c:53:fd:09:80:5e:24:ab:07:49:78:29:
ae:0d:10:fc:d5:aa:a2:9a:3f:87:23:06:2c:23:06:
6d:e3:23:a6:c6:ed:f5:6e:64:f2:2f:34:16:5a:b1:
73:57:75:38:7f:cf:0d:97:c7:30:65:6b:d5:48:88:
e1:3e:08:32:60:86:d2:65:07:16:58:52:a0:f6:ec:
dc:9f:86:e6:0e:4c:c4:92:f8:39:b5:5b:1f:cc:f0:
ff:82:fe:ce:e9:d4:0f:c3:a9:75:33:f1:de:25:e3:
20:3f:1d:1c:5c:f1:e2:47:64:bf:2c:db:b8:d9:5a:
83:49:10:92:4b:1d:e1:9c:4f:7f:22:97:b1:ed:b8:
4c:14:83:15:b4:d4:c4:fe:96:f4:8c:04:a9:dd:36:
3b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:2A:3A:14:E1:D4:68:07:68:18:44:52:D6:C9:33:B7:FA:2C:A1:4D
X509v3 Authority Key Identifier:
keyid:7F:5D:8D:54:EC:B7:CE:EB:46:FD:8D:F5:46:7C:41:C0:02:44:35:26
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/f12NVOy3zutG_Y31RnxBwAJENSY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/f12NVOy3zutG_Y31RnxBwAJENSY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/aCo6FOHUaAdoGERS1skzt_osoU0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.164.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:9f:84:ab:24:a6:5e:63:a3:0c:4d:10:4b:ab:5e:66:b9:fc:
6b:30:2f:d7:f3:ae:fc:40:98:04:46:fc:43:7c:3e:d4:27:89:
e3:32:94:60:97:28:64:a7:d6:98:1c:5b:10:33:e4:aa:42:91:
20:ba:15:e3:d2:82:eb:c3:6d:ac:37:cf:25:34:12:82:b7:94:
44:7d:05:20:60:03:e3:43:d0:e6:df:ad:1f:53:21:f1:50:52:
90:d5:d5:73:4a:e6:2a:41:3c:dd:91:63:43:fd:75:40:37:50:
6b:71:ad:81:10:ad:cf:c3:5f:01:3c:34:8f:82:2e:59:84:b5:
04:2a:2b:0e:1c:62:4e:4a:8d:f0:bc:f0:f0:df:b6:2e:9a:69:
e3:b7:26:9c:81:d4:fc:4a:f4:3c:71:05:af:3a:f2:a6:94:6d:
8e:4e:d7:b9:9c:13:ed:60:a8:f6:df:b3:2a:ff:6b:e8:72:0a:
1d:ef:bc:98:19:45:f7:71:12:bb:74:d5:20:b7:a3:1d:35:fe:
47:f5:e9:5a:20:b8:37:94:fe:3f:52:9a:69:59:aa:ef:ad:c5:
9c:71:0d:e0:8a:33:0f:b5:33:7c:27:c6:ff:6e:62:5d:25:81:
4a:ea:a9:91:ac:89:36:6f:0b:bf:c0:8a:6a:f2:9f:a3:58:60:
22:f3:dc:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org