Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/ZMbaQeCcr55pnAqlO0aUCRJp40I.roa
File: ZMbaQeCcr55pnAqlO0aUCRJp40I.roa (raw, json)
Hash identifier: peOo2vOEwrnVGDukEQqpMvbH5bCq5EJJBYYIdKJ9Aq0=
Subject key identifier: 64:C6:DA:41:E0:9C:AF:9E:69:9C:0A:A5:3B:46:94:09:12:69:E3:42
Certificate issuer: /CN=0BDA25C630F8FF46E307B194CD2AAD1E6D06331D
Certificate serial: 0716
Authority key identifier: 0B:DA:25:C6:30:F8:FF:46:E3:07:B1:94:CD:2A:AD:1E:6D:06:33:1D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/C9olxjD4_0bjB7GUzSqtHm0GMx0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/ZMbaQeCcr55pnAqlO0aUCRJp40I.roa
Signing time: Mon 10 Jan 2022 07:11:30 +0000
ROA not before: Mon 10 Jan 2022 07:11:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 48024
IP address blocks: 103.126.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1814 (0x716)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0BDA25C630F8FF46E307B194CD2AAD1E6D06331D
Validity
Not Before: Jan 10 07:11:30 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=64C6DA41E09CAF9E699C0AA53B4694091269E342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a0:7b:d8:70:65:02:e2:b2:2b:05:3d:f9:b5:
72:25:9b:9e:54:e3:2a:26:f5:f8:46:cd:6a:69:bd:
1e:a1:82:84:98:c7:d3:a9:17:1c:66:5e:48:60:34:
9d:4a:d2:12:1c:5b:81:be:fc:b0:11:a8:e3:67:69:
4e:ca:88:e9:06:a8:8f:7c:97:d5:b1:db:bd:63:be:
3b:d5:82:09:82:57:84:b6:d9:fd:b0:8e:cd:cb:e2:
89:c2:09:80:68:c5:91:5a:16:40:5f:f2:a7:99:46:
6e:94:9b:01:88:38:2c:2c:c0:0c:3b:36:b8:3c:fc:
32:e4:c6:48:63:47:b8:c9:ac:9a:7a:f7:1b:e3:9a:
2b:88:18:ca:18:e4:e1:35:72:3a:87:74:d7:13:97:
26:d5:61:0a:c5:5f:9d:8e:5e:53:6e:d5:74:47:1d:
19:1c:9b:8c:32:e7:42:ab:b9:d2:10:61:26:73:2f:
e6:14:24:ed:6f:73:71:90:8e:d8:ba:f2:42:43:35:
ce:54:6f:e4:ab:b8:60:d7:75:18:f4:7e:06:bc:60:
78:af:ff:b5:55:1e:1a:3e:0b:b5:70:ad:20:57:37:
c9:ee:03:13:9a:2c:17:9a:71:2c:19:f9:44:a5:e2:
02:3e:08:e0:4a:d3:ce:60:5e:d9:a0:c1:98:9e:84:
e0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:C6:DA:41:E0:9C:AF:9E:69:9C:0A:A5:3B:46:94:09:12:69:E3:42
X509v3 Authority Key Identifier:
keyid:0B:DA:25:C6:30:F8:FF:46:E3:07:B1:94:CD:2A:AD:1E:6D:06:33:1D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/C9olxjD4_0bjB7GUzSqtHm0GMx0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/C9olxjD4_0bjB7GUzSqtHm0GMx0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/ZMbaQeCcr55pnAqlO0aUCRJp40I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.126.88.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:d5:48:fa:34:1e:4c:34:ff:96:b8:24:c5:34:cf:ea:ab:a3:
5c:d0:3e:df:15:0a:88:41:72:6e:dd:93:8c:48:74:e4:0e:2b:
93:c6:06:4c:54:38:4c:49:a6:73:bf:06:2f:f5:52:58:bc:97:
df:cf:7f:48:92:1e:d1:cf:89:e6:8e:d1:d1:92:24:62:4e:a9:
44:d2:f2:0a:69:bf:17:23:c5:35:fb:94:9b:77:4f:56:42:eb:
7e:b3:1b:b5:f3:a7:1c:12:b9:f1:75:82:22:42:7d:94:f0:1d:
37:c5:e2:57:88:5d:e0:a5:11:dd:20:d1:b1:26:9d:5e:dd:5d:
7b:c9:29:8c:b3:1d:c1:bf:1b:c8:b3:aa:59:fb:39:cf:bb:85:
d5:0b:1e:67:cc:61:3c:6b:1e:8c:0f:56:4b:a8:3c:e9:ac:53:
72:09:d4:26:28:9c:80:70:ca:1c:7e:47:96:41:60:5c:dd:16:
9c:8a:79:79:fe:c0:5f:f6:72:86:f8:48:3a:59:01:58:c6:90:
93:78:8b:f4:b9:f6:48:6d:e1:19:50:7b:ac:6c:73:a8:b0:04:
f0:2b:e9:c1:7d:d4:8e:24:a9:a9:e1:5d:9e:2d:69:c0:40:f6:
9d:e8:29:ff:73:00:5f:8d:64:c6:04:c9:50:9b:5e:95:6f:79:
b1:fd:3a:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org