Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/T486cebT6EV-LWMXND6sX2m2hXs.roa
File: T486cebT6EV-LWMXND6sX2m2hXs.roa (raw, json)
Hash identifier: WCPUH/LVnOnhRfcqt8Y33OaK/QdkQNrP5zUh2oe/bnE=
Subject key identifier: 4F:8F:3A:71:E6:D3:E8:45:7E:2D:63:17:34:3E:AC:5F:69:B6:85:7B
Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF
Certificate serial: 0EF4
Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/T486cebT6EV-LWMXND6sX2m2hXs.roa
Signing time: Thu 19 May 2022 07:01:08 +0000
ROA not before: Thu 19 May 2022 07:01:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131633
IP address blocks: 103.127.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3828 (0xef4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF
Validity
Not Before: May 19 07:01:08 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4F8F3A71E6D3E8457E2D6317343EAC5F69B6857B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b4:3a:94:8b:0d:53:25:64:24:55:df:54:a2:
ed:e9:c6:83:d8:0a:4a:25:c4:04:ce:d5:f5:58:9e:
2d:1c:90:9d:99:53:bf:ea:2c:23:24:95:3e:65:53:
47:a1:41:f8:28:f3:0d:a2:19:d2:4a:85:b6:2a:db:
25:76:09:e4:40:9e:8f:e9:71:ba:92:81:54:68:49:
e3:fa:09:14:38:c5:49:e0:b5:c2:bb:e4:38:59:40:
d7:32:c4:86:0a:5a:ec:47:9e:51:f2:8d:23:54:4c:
01:df:7c:93:df:fc:47:9f:40:72:d4:f4:44:3f:4d:
78:8b:76:b4:e7:15:e1:df:62:6a:90:1a:b9:5d:8e:
be:6c:57:49:f4:ac:ec:0d:51:30:f3:99:c5:59:e3:
a0:c3:22:17:77:02:28:e5:a2:6d:35:26:17:7f:c2:
cf:e6:54:43:f7:9a:16:4b:3a:e8:c9:85:b7:58:c2:
7b:b7:b8:00:86:80:f4:b2:42:cd:a2:21:0b:24:b9:
d7:37:aa:29:42:e6:b8:9a:93:23:78:fa:82:7d:60:
7c:93:e2:b2:1a:9a:60:3e:8d:1e:eb:4d:0c:7d:c3:
dd:18:3b:bd:d8:f2:c0:40:a4:c5:eb:fd:43:dc:3c:
0c:03:4d:4d:d5:b5:1a:45:3a:78:1b:0b:36:ab:49:
9f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:8F:3A:71:E6:D3:E8:45:7E:2D:63:17:34:3E:AC:5F:69:B6:85:7B
X509v3 Authority Key Identifier:
keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/T486cebT6EV-LWMXND6sX2m2hXs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.236.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:29:10:79:51:4f:c2:f2:29:e7:8b:ad:a4:17:cd:2a:37:c2:
b8:f0:c4:73:c2:a4:2b:9b:08:ce:a3:92:af:d5:8c:c2:76:44:
38:21:97:44:82:17:ac:3a:37:48:6b:35:66:12:6c:74:e6:3c:
73:65:b8:05:39:de:88:c1:85:b7:44:79:1e:d5:39:9f:16:2b:
22:8e:b9:a9:d5:43:87:04:3b:0c:b0:70:5d:49:93:d7:bc:35:
5e:b0:7d:55:6a:df:68:43:52:f4:01:2e:0a:de:e4:3e:9c:86:
0d:28:cc:c0:8e:e1:0a:c3:a5:a9:cc:7a:f5:b7:f3:18:d2:c4:
59:19:20:6b:21:7b:13:46:0d:6b:fb:72:2d:af:b1:39:6e:1b:
df:d4:6e:b8:78:b3:f3:60:23:2c:da:7e:cf:c6:00:38:0e:a0:
7e:9e:1b:4f:f0:ad:8f:0f:89:98:6d:fd:6c:95:5d:a0:1e:9b:
a1:7b:e2:b7:2f:82:67:d8:8b:76:80:0d:64:5e:84:6e:85:da:
31:05:80:76:f7:5d:c3:56:6c:65:eb:bd:f6:71:9c:05:e4:29:
d4:17:08:e1:95:ac:76:08:6c:da:5f:3a:b4:36:dd:12:ea:3f:
4e:40:23:ba:48:c0:79:cb:bc:00:bd:f8:b9:4a:9e:f4:2e:c5:
55:b9:ac:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:05 2023 by rpki-client on console-ams.rpki-client.org