Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SGU/1qxAB5tnvbqHNw4r-cxOSYNDbIg.roa
File: 1qxAB5tnvbqHNw4r-cxOSYNDbIg.roa (raw, json)
Hash identifier: cbnwEDUb1ZDiYb7Mx2166VG5AVTLLN1Bxcs/fr2gee4=
Subject key identifier: D6:AC:40:07:9B:67:BD:BA:87:37:0E:2B:F9:CC:4E:49:83:43:6C:88
Certificate issuer: /CN=3294E71902A4A5C31B987BD67D094AF5830A816D
Certificate serial: 03
Authority key identifier: 32:94:E7:19:02:A4:A5:C3:1B:98:7B:D6:7D:09:4A:F5:83:0A:81:6D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MpTnGQKkpcMbmHvWfQlK9YMKgW0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/1qxAB5tnvbqHNw4r-cxOSYNDbIg.roa
Signing time: Mon 30 May 2022 10:00:03 +0000
ROA not before: Mon 30 May 2022 10:00:03 +0000
ROA not after: Tue 30 May 2023 08:32:31 +0000
asID: 134823
IP address blocks: 103.186.186.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3294E71902A4A5C31B987BD67D094AF5830A816D
Validity
Not Before: May 30 10:00:03 2022 GMT
Not After : May 30 08:32:31 2023 GMT
Subject: CN=D6AC40079B67BDBA87370E2BF9CC4E4983436C88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:47:ca:da:53:8c:35:2a:ec:c2:fa:e1:5d:80:
21:28:85:75:9c:6f:5f:04:7a:22:aa:86:35:14:f8:
17:f2:1b:ec:be:34:b7:5e:04:02:7f:99:61:85:be:
6f:8d:47:7d:ac:58:d6:cb:28:c1:f2:79:39:3c:f8:
ec:3b:e7:99:27:aa:a1:a4:92:6d:42:99:ef:d2:0e:
bb:d8:49:1a:80:01:07:fd:94:d6:7d:4e:6b:07:ba:
78:db:70:f7:39:c8:da:35:61:d4:1b:a6:ff:ab:ae:
b9:75:8d:b8:1c:ee:bf:9f:c1:58:5b:35:94:86:b8:
75:da:7a:51:7b:7e:f7:0f:4d:fa:e9:e4:c3:45:05:
72:a7:11:68:3f:32:2b:85:1b:76:f0:59:90:0a:2d:
6a:d8:c9:34:85:52:5f:5a:c8:f7:36:e6:46:50:17:
1e:1a:2f:24:cc:a8:c9:f3:6f:66:9d:ee:66:ae:fe:
1d:b3:cd:89:fc:8e:8d:a3:0b:f0:e9:d0:19:c8:53:
74:34:c2:c7:51:3f:24:48:f8:4e:ea:ce:27:94:28:
74:eb:05:69:64:c7:fd:00:66:6b:b5:d8:4f:15:56:
bd:3c:7e:2c:9c:2b:78:4e:67:13:71:03:3e:d3:08:
fb:54:72:fa:23:9e:ad:a1:e5:22:20:4d:63:32:ec:
b3:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:AC:40:07:9B:67:BD:BA:87:37:0E:2B:F9:CC:4E:49:83:43:6C:88
X509v3 Authority Key Identifier:
keyid:32:94:E7:19:02:A4:A5:C3:1B:98:7B:D6:7D:09:4A:F5:83:0A:81:6D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/MpTnGQKkpcMbmHvWfQlK9YMKgW0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MpTnGQKkpcMbmHvWfQlK9YMKgW0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SGU/1qxAB5tnvbqHNw4r-cxOSYNDbIg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.186.186.0/23
Signature Algorithm: sha256WithRSAEncryption
94:ec:df:1a:1e:ac:5b:60:f6:f2:39:a7:2a:e9:ef:2a:4e:5a:
45:3e:65:ea:74:20:a5:c7:01:5f:56:f3:55:8a:47:a0:84:71:
ef:7b:64:96:bd:b1:ea:3b:ad:d4:2e:e0:df:19:4d:45:22:01:
3f:ae:4d:c4:b0:63:12:4f:86:79:b4:67:48:49:ef:af:19:d2:
e9:9d:db:ba:d4:9f:cb:68:ca:aa:60:dc:8d:b7:1a:db:aa:b0:
19:a1:9a:b7:c3:1c:58:a8:61:da:4e:93:ca:1a:82:5b:2f:3d:
48:44:cc:88:21:aa:f8:f0:73:a4:9c:8b:31:73:4f:30:3b:b5:
3f:8f:a7:05:89:fb:65:99:d2:00:78:67:e7:3d:e3:b8:fb:2d:
d0:21:e5:78:cc:f0:2e:12:8c:59:7d:5b:15:44:34:6f:29:96:
0d:e2:1a:6d:61:fc:c1:28:f4:77:b0:8d:eb:a9:e6:23:b0:4e:
07:aa:c6:cb:44:59:81:eb:f2:31:f3:04:e9:1c:a8:cc:a1:e5:
d9:b0:fc:c8:1f:4a:f2:4c:21:37:cd:72:7f:ed:68:23:64:ea:
76:ac:59:19:97:6e:6e:9e:1c:e9:3d:de:c6:31:77:4e:5f:4e:
00:e8:97:14:89:05:ad:e0:ce:3a:8c:cf:99:62:1e:1d:10:35:
66:82:19:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org