Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/dqrCw3y-iuzCHz8z3E6kgc2NwXE.roa
File: dqrCw3y-iuzCHz8z3E6kgc2NwXE.roa (raw, json)
Hash identifier: UiD3NT5ciu8hUs9+BKAQ5jayjUUDTc2jr4scdsrZNk0=
Subject key identifier: 76:AA:C2:C3:7C:BE:8A:EC:C2:1F:3F:33:DC:4E:A4:81:CD:8D:C1:71
Certificate issuer: /CN=0BDA25C630F8FF46E307B194CD2AAD1E6D06331D
Certificate serial: 0633
Authority key identifier: 0B:DA:25:C6:30:F8:FF:46:E3:07:B1:94:CD:2A:AD:1E:6D:06:33:1D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/C9olxjD4_0bjB7GUzSqtHm0GMx0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/dqrCw3y-iuzCHz8z3E6kgc2NwXE.roa
Signing time: Sun 07 Feb 2021 12:43:20 +0000
ROA not before: Sun 07 Feb 2021 12:43:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 103.126.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1587 (0x633)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0BDA25C630F8FF46E307B194CD2AAD1E6D06331D
Validity
Not Before: Feb 7 12:43:20 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=76AAC2C37CBE8AECC21F3F33DC4EA481CD8DC171
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:32:53:5c:10:56:07:73:29:8b:c7:0b:46:4a:
5a:1d:08:d3:67:d8:a6:b1:c0:2b:2e:f4:bd:ad:58:
67:a0:3c:83:ae:c3:1c:66:34:ac:49:de:ef:ac:9b:
f5:fe:b6:ca:d7:9c:d6:48:9e:91:87:fa:b8:8c:3c:
f7:f4:3c:72:45:88:44:c8:d3:59:25:52:5b:00:6d:
4c:93:11:bc:73:e4:46:cf:bd:79:4f:10:39:cf:82:
2b:66:73:4c:f4:d0:63:4d:37:26:81:ef:e3:9c:ba:
57:37:a9:27:e5:81:6f:a2:d0:81:fc:73:11:24:08:
13:c0:3c:6b:91:cf:9b:2a:33:65:46:3a:b9:02:5a:
72:74:7f:ad:af:08:99:cd:a4:1a:48:a9:93:8a:57:
44:bd:3a:4a:23:39:c4:c0:4d:3d:e9:f0:83:ef:15:
4c:f3:e0:02:00:63:b1:1e:9f:c6:92:45:6a:f2:7c:
13:d4:f6:d0:b5:61:e5:0e:c2:a5:b8:80:12:69:58:
37:e0:a6:58:b5:49:2e:07:71:8c:01:1f:b7:97:93:
97:07:8e:c7:e4:d5:0a:6d:50:6b:3e:6d:a0:c4:15:
16:5b:ca:a4:97:6d:1b:3f:b1:79:2e:3a:98:69:68:
5d:10:0a:71:25:fd:dc:65:44:fb:d3:b7:23:25:de:
43:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AA:C2:C3:7C:BE:8A:EC:C2:1F:3F:33:DC:4E:A4:81:CD:8D:C1:71
X509v3 Authority Key Identifier:
keyid:0B:DA:25:C6:30:F8:FF:46:E3:07:B1:94:CD:2A:AD:1E:6D:06:33:1D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/C9olxjD4_0bjB7GUzSqtHm0GMx0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/C9olxjD4_0bjB7GUzSqtHm0GMx0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/dqrCw3y-iuzCHz8z3E6kgc2NwXE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.126.88.0/22
Signature Algorithm: sha256WithRSAEncryption
64:fc:40:0c:bf:77:bd:a5:e0:3f:2d:a3:d4:ad:87:e6:26:63:
51:65:09:52:b0:9d:01:ac:c2:63:5d:7b:a9:ca:c9:74:89:50:
ad:7e:93:46:0a:15:0e:dd:5e:8f:81:bd:75:0f:0d:1f:03:4c:
83:7b:18:47:e8:2a:45:85:14:29:16:bc:f2:06:c5:11:02:47:
5a:89:f5:75:8c:80:25:91:f4:4a:12:1c:1b:89:b7:a8:63:4d:
f2:ed:06:6a:f1:00:de:b5:96:65:e6:bb:39:8c:1e:f4:07:ce:
58:95:07:cb:c9:6e:f1:bc:f0:49:86:2c:5d:87:d1:5c:69:70:
6f:f9:c8:92:9d:3d:4c:b3:3e:fc:35:ba:75:40:4e:86:23:b1:
60:fd:a7:e6:5e:05:cc:8b:39:c6:1a:50:f2:0b:e0:f1:f7:f5:
38:bb:67:24:ae:7f:d3:ab:eb:01:ed:11:e3:35:44:8b:de:1b:
b6:0e:c0:db:33:74:11:04:e3:6f:51:4b:86:fe:f8:79:b9:ab:
73:bf:23:db:97:f1:47:47:61:09:d1:cf:aa:95:b6:2b:82:58:
69:06:4c:78:33:a4:de:09:10:f4:ff:6d:85:07:f7:df:f6:62:
97:03:9c:92:93:01:9b:b7:6f:b0:29:fc:a7:e3:43:8f:1d:6b:
69:d6:96:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org