Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/2cN1afCaYCXzgex7HOgsGEqcKp8.roa
File: 2cN1afCaYCXzgex7HOgsGEqcKp8.roa (raw, json)
Hash identifier: Kjz1ksiTLScPLhWiPaGljOtOhk91Rubi2HvrBWQhRJ4=
Subject key identifier: D9:C3:75:69:F0:9A:60:25:F3:81:EC:7B:1C:E8:2C:18:4A:9C:2A:9F
Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial: 09A0
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/2cN1afCaYCXzgex7HOgsGEqcKp8.roa
Signing time: Wed 29 Sep 2021 02:44:41 +0000
ROA not before: Wed 29 Sep 2021 02:44:41 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38047
IP address blocks: 103.106.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2464 (0x9a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Validity
Not Before: Sep 29 02:44:41 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D9C37569F09A6025F381EC7B1CE82C184A9C2A9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1b:a6:ff:cc:62:14:e3:b9:2a:ed:ac:20:40:
49:07:9f:a8:21:6a:2a:72:3e:af:4b:50:9a:03:64:
8f:84:68:66:b8:5e:2c:ee:f2:7e:c6:95:ae:2e:66:
48:d6:1f:79:85:b9:7c:a2:4d:48:60:bc:a7:cb:84:
ff:e4:f8:36:67:a1:57:3e:4c:85:c6:09:df:02:7a:
16:22:fe:a8:23:b0:c4:ca:d1:26:2d:48:57:0c:3b:
2d:56:05:a8:39:77:c6:aa:eb:d3:ba:3c:5b:fb:23:
04:7f:0d:b1:ca:1d:ff:42:a5:77:b1:d0:6d:be:3f:
88:b5:64:70:af:b2:4c:f5:b4:07:f8:e3:cd:a5:c1:
95:3f:58:7e:1e:3c:15:21:41:bb:c5:32:a8:ea:71:
8f:60:e5:68:4a:ea:fc:5b:8e:4c:73:e8:d0:f9:4b:
da:d7:7e:10:40:2c:8c:3a:d5:50:d7:07:c7:10:da:
78:59:20:41:1a:8f:14:f5:b5:c8:0f:42:15:b8:2c:
b8:b8:3a:5f:cd:21:d9:c9:9a:c4:e3:7d:6c:c9:be:
06:27:0b:3e:59:28:d9:30:7e:c0:a5:81:30:0a:f9:
71:81:ab:f1:87:9c:c6:7e:f0:89:11:75:41:67:bb:
fd:b5:7a:80:71:79:d5:9e:26:51:c5:9f:91:fd:d6:
c6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:C3:75:69:F0:9A:60:25:F3:81:EC:7B:1C:E8:2C:18:4A:9C:2A:9F
X509v3 Authority Key Identifier:
keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/2cN1afCaYCXzgex7HOgsGEqcKp8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.106.54.0/24
Signature Algorithm: sha256WithRSAEncryption
74:8d:e8:80:80:35:cb:a2:b6:ed:0d:99:e4:8d:11:d9:21:9c:
92:01:08:e0:d6:0f:fc:a4:ce:92:fd:cf:4a:57:45:ff:9c:42:
7e:97:4c:d9:ee:d6:bb:b1:1b:63:e6:db:20:82:f0:1b:fa:a8:
c0:c9:9d:22:7e:fc:fc:ea:6d:73:83:59:44:4d:f1:f2:02:9c:
00:32:f1:fc:fa:c4:2b:e6:e6:b5:d5:aa:b6:90:c9:17:55:4d:
a8:7e:8c:bd:94:d7:e0:bf:0d:f8:e7:1c:a9:be:09:70:68:47:
21:20:d7:19:a9:97:f5:7d:b5:5e:01:7e:26:0c:41:d1:49:2c:
52:e4:99:a3:0d:44:15:86:a4:55:5b:41:59:4a:2c:9f:c2:51:
54:ae:bf:a5:e6:09:fa:c5:8d:f9:84:4d:81:7a:63:3c:61:51:
25:d7:49:b8:c7:5e:fb:7e:4b:13:f4:10:3e:45:01:b4:f2:c6:
91:f2:54:80:03:70:b0:32:91:4b:2c:2f:f7:2e:bb:91:3f:97:
65:1a:59:b9:51:38:83:90:6c:17:1b:4c:c6:ff:64:f4:93:3d:
c8:d5:a4:d4:23:17:ee:e4:8d:6e:81:62:41:d1:e0:d8:81:c9:
0f:fd:81:7b:bf:53:b5:4c:e6:e9:cf:31:ab:b7:e1:4b:9d:8c:
29:cc:b4:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org