Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SPETW/VdEusmEVhoR4Rrf3rpPaVGyDG3s.roa
File: VdEusmEVhoR4Rrf3rpPaVGyDG3s.roa (raw, json)
Hash identifier: PY7NFhUkByzl7rzB3Mb1Z704DiKLdJZa1Y2LdeCKWdg=
Subject key identifier: 55:D1:2E:B2:61:15:86:84:78:46:B7:F7:AE:93:DA:54:6C:83:1B:7B
Certificate issuer: /CN=6F8C92DFC78CBFE8C5EFD6BA5A37A1628221FFE2
Certificate serial: 0890
Authority key identifier: 6F:8C:92:DF:C7:8C:BF:E8:C5:EF:D6:BA:5A:37:A1:62:82:21:FF:E2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b4yS38eMv-jF79a6WjehYoIh_-I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SPETW/VdEusmEVhoR4Rrf3rpPaVGyDG3s.roa
Signing time: Sun 07 Feb 2021 12:50:48 +0000
ROA not before: Sun 07 Feb 2021 12:50:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131623
IP address blocks: 103.117.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2192 (0x890)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6F8C92DFC78CBFE8C5EFD6BA5A37A1628221FFE2
Validity
Not Before: Feb 7 12:50:48 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=55D12EB2611586847846B7F7AE93DA546C831B7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:0e:a4:ac:bf:26:45:98:20:c8:ad:00:a5:7d:
77:b4:e3:6d:1f:79:78:8e:e1:40:45:a3:6a:38:d6:
a7:67:ce:20:36:2a:26:87:98:93:f3:9e:8a:89:44:
77:0c:01:8b:82:30:0a:0f:9d:af:fb:29:cc:a3:99:
96:fc:e4:ee:0e:1e:8f:3b:c0:82:6e:9b:b9:29:68:
88:02:fc:ad:1d:17:7e:c6:f5:0a:e3:58:df:ca:6f:
00:29:81:49:4b:9a:35:6f:44:d6:9a:e0:30:c5:79:
63:34:62:c9:c1:4a:f7:3c:d3:44:59:97:46:69:7e:
a1:51:51:19:8e:e1:15:49:b5:04:03:c1:60:02:4a:
81:ff:37:bc:b2:bc:14:73:3a:73:2a:58:af:0c:88:
5e:86:9c:f0:07:21:6f:f3:ca:89:1f:ae:16:57:e3:
52:81:e4:7e:bc:77:e7:37:d3:3e:e3:e9:6f:4e:4b:
ba:ae:a4:37:de:a3:33:6b:ad:b4:0d:9c:c6:d1:86:
0d:a3:8a:b0:69:16:cb:35:cc:7d:ba:e5:f9:76:b6:
c7:6a:d0:67:c5:64:0d:92:6c:d7:ac:56:e3:9d:4e:
bc:6b:c2:5e:7e:fb:b0:d5:26:58:7f:12:2d:b9:54:
3e:92:fa:3d:a2:97:54:4e:77:fe:34:3c:db:e0:15:
fc:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:D1:2E:B2:61:15:86:84:78:46:B7:F7:AE:93:DA:54:6C:83:1B:7B
X509v3 Authority Key Identifier:
keyid:6F:8C:92:DF:C7:8C:BF:E8:C5:EF:D6:BA:5A:37:A1:62:82:21:FF:E2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SPETW/b4yS38eMv-jF79a6WjehYoIh_-I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b4yS38eMv-jF79a6WjehYoIh_-I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SPETW/VdEusmEVhoR4Rrf3rpPaVGyDG3s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.117.4.0/22
Signature Algorithm: sha256WithRSAEncryption
30:07:6d:cf:de:79:16:15:93:0f:49:df:59:53:23:67:b9:07:
1d:31:3b:74:2a:e3:95:a0:79:6f:00:8d:f6:e3:31:62:01:19:
b6:fb:dc:eb:95:bc:88:08:0a:04:e1:c8:da:d3:39:73:7d:df:
79:5f:68:b2:74:53:9f:6f:7c:29:08:53:87:1b:e9:d7:3d:77:
c3:6d:b2:61:84:73:2d:4b:97:57:9b:a1:ae:4f:25:75:d3:dc:
2e:66:82:1c:85:e3:40:62:81:25:2b:13:4f:c1:73:1f:46:cc:
e5:2c:95:9f:4e:9e:d3:ff:37:da:89:39:4e:e3:fa:4e:1d:4b:
fc:9f:20:6e:ea:f9:40:b0:87:83:70:0b:89:01:aa:b0:40:a6:
5a:31:35:59:6b:06:25:c1:ca:c2:4b:78:37:9d:cb:15:e7:07:
e6:2d:ab:fd:d9:88:1c:68:ed:c1:e7:aa:24:a4:f5:c2:6b:0e:
b9:26:1c:4d:e8:4f:8d:a2:d5:f9:05:bf:ef:c9:7a:72:09:9f:
87:8e:a4:df:78:18:30:20:11:5b:bf:5c:56:17:2c:96:6b:29:
e9:d8:bc:94:64:cb:d2:11:cb:66:ba:59:7d:3d:f0:6d:90:46:
77:0c:36:b2:13:ae:0b:14:80:e2:b7:5d:c9:0c:56:d6:ff:97:
5a:ec:0a:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:17 2023 by rpki-client on console-fra.rpki-client.org