Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/4_KP3oJAl5_fAPB8tg_D1hErHlY.roa
File: 4_KP3oJAl5_fAPB8tg_D1hErHlY.roa (raw, json)
Hash identifier: hCE/hSLzWUouQhdPhTYKt54WUjrc/UTbmO/wnL86CL0=
Subject key identifier: E3:F2:8F:DE:82:40:97:9F:DF:00:F0:7C:B6:0F:C3:D6:11:2B:1E:56
Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial: 0792
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/4_KP3oJAl5_fAPB8tg_D1hErHlY.roa
Signing time: Tue 29 Sep 2020 09:53:05 +0000
ROA not before: Tue 29 Sep 2020 09:53:05 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 138145
IP address blocks: 103.106.54.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1938 (0x792)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Validity
Not Before: Sep 29 09:53:05 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E3F28FDE8240979FDF00F07CB60FC3D6112B1E56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a5:c5:61:79:16:6e:b6:2a:02:47:40:92:bc:
e3:0b:4e:6e:d9:18:5b:34:a3:52:07:14:c8:cd:ca:
5e:e3:9b:9c:03:75:bb:35:10:e2:37:fd:4d:26:00:
fb:de:eb:b4:4c:d0:59:11:ab:84:7f:68:16:fa:57:
b2:be:d5:ac:13:56:ef:79:53:65:33:ee:ce:20:a3:
62:21:cc:17:13:ee:49:1a:6c:23:55:3f:c4:5b:52:
6e:d3:61:d7:37:e4:9e:00:b1:c3:69:d0:a1:43:42:
e8:2f:2d:a1:8f:d8:73:9e:1f:21:dd:47:22:45:55:
ef:77:76:da:6c:74:e3:01:da:10:2b:a6:e4:3f:1f:
c8:1c:68:2e:5c:22:6a:e7:22:88:f9:72:1e:0c:b1:
7c:4f:38:14:6c:cc:b7:bc:0d:47:d7:09:33:e0:ae:
84:c6:0c:0d:f4:13:7d:dc:c5:39:b9:bc:12:35:74:
79:e8:ad:0a:af:a0:09:69:8a:4e:4c:0b:8a:39:bd:
f6:95:fb:f1:55:17:d3:4f:a5:7f:96:08:59:4e:62:
c3:9c:8f:75:26:53:9b:82:97:29:41:5c:ff:aa:57:
15:9a:76:08:36:00:c1:2f:3e:8e:65:39:a9:a2:b3:
2e:8e:07:15:52:7c:a1:4d:71:4c:e9:84:a2:18:12:
df:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:F2:8F:DE:82:40:97:9F:DF:00:F0:7C:B6:0F:C3:D6:11:2B:1E:56
X509v3 Authority Key Identifier:
keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/4_KP3oJAl5_fAPB8tg_D1hErHlY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.106.54.0/23
Signature Algorithm: sha256WithRSAEncryption
47:8d:89:70:bf:a6:d0:14:06:90:47:21:ff:b5:06:bf:0b:33:
13:a1:d4:de:2a:4c:95:85:d1:ff:1b:0c:20:69:15:cb:6e:e8:
a0:55:c5:5e:48:5f:40:83:7e:16:af:e9:e5:48:cf:5c:e0:de:
95:2f:29:2f:3f:c5:14:d8:93:8b:fd:9f:1c:06:76:87:0e:e6:
7f:31:fa:6f:f7:e8:7f:0d:12:9b:00:19:cc:0e:08:7b:8b:43:
d1:24:76:c8:37:99:6a:e5:09:40:93:55:13:8d:99:d5:73:0c:
03:75:ee:46:9b:66:db:59:49:27:e3:a8:e3:14:c1:99:79:ee:
05:43:30:94:b9:0d:6e:13:ed:e9:10:72:e2:e1:40:44:0c:dc:
62:f4:e3:08:df:d2:df:4b:cd:aa:8a:63:3f:ba:41:65:89:4d:
44:f4:a2:73:e6:e0:f2:27:df:80:09:26:da:f1:9d:dd:7f:65:
74:7e:e5:7a:d2:1a:14:fd:fa:b0:68:c6:e2:0b:13:13:77:5b:
f7:d1:b8:88:01:7e:c7:e0:d7:6d:89:21:e7:eb:ae:d8:da:f7:
cb:99:d5:5e:77:16:5b:d5:d3:f2:6c:6e:f2:3f:4e:8f:7c:36:
d6:79:59:b3:d3:4d:64:f5:10:f8:59:ff:1d:11:20:e8:53:13:
16:69:f9:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org