Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/8OH6cJKh3ZqjJGEUlgHO4PtWZWw.roa
File: 8OH6cJKh3ZqjJGEUlgHO4PtWZWw.roa (raw, json)
Hash identifier: l7Ca7dHZ9nBUzjJBVeJE3r30UnnhCLxfjcaypnIePqE=
Subject key identifier: F0:E1:FA:70:92:A1:DD:9A:A3:24:61:14:96:01:CE:E0:FB:56:65:6C
Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Certificate serial: 04
Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/8OH6cJKh3ZqjJGEUlgHO4PtWZWw.roa
Signing time: Wed 22 Jul 2020 11:59:58 +0000
ROA not before: Wed 22 Jul 2020 11:59:58 +0000
ROA not after: Thu 22 Jul 2021 06:22:36 +0000
asID: 9678
IP address blocks: 103.152.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Validity
Not Before: Jul 22 11:59:58 2020 GMT
Not After : Jul 22 06:22:36 2021 GMT
Subject: CN=F0E1FA7092A1DD9AA32461149601CEE0FB56656C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:da:f0:c5:7f:14:50:11:21:db:1b:4d:87:aa:
13:3d:da:ed:e3:df:8a:09:ab:91:64:2c:03:71:8d:
9f:43:7c:44:1e:53:15:80:7e:ce:fe:be:fd:28:1e:
4f:6c:de:76:5d:d1:5a:e6:56:5e:8e:49:43:b8:b0:
86:b2:26:d2:ec:bc:ce:ed:29:31:5a:5c:72:fe:e2:
a4:a2:fa:3d:93:43:71:06:2c:d3:6a:07:fc:f3:5b:
ec:92:5c:d0:92:91:1b:96:fb:79:46:a9:12:ec:9c:
44:6f:bb:fa:67:1f:99:14:1d:aa:74:f6:3c:34:c1:
03:06:2d:fe:c5:c9:9a:d9:b1:2d:d0:bb:db:b8:43:
1e:11:53:d1:cd:f2:f2:23:60:5f:77:d1:66:14:19:
a9:74:e6:89:f4:a5:73:f5:66:e6:6c:60:54:39:1a:
19:88:b6:1f:0f:ad:90:1b:98:2f:55:e3:6c:aa:a4:
1c:02:85:e9:1a:1c:a0:9d:f3:8e:7a:ee:a0:6d:3c:
c6:0a:63:1c:f3:de:24:0c:85:b4:c5:c2:12:84:d8:
1a:ac:8d:5f:66:c1:2a:23:e3:56:cc:8a:54:ce:eb:
e0:a2:c6:44:04:12:9e:c6:b7:17:47:3a:a7:99:26:
10:77:5a:92:cc:fc:28:8c:55:90:95:a3:32:0e:35:
8e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E1:FA:70:92:A1:DD:9A:A3:24:61:14:96:01:CE:E0:FB:56:65:6C
X509v3 Authority Key Identifier:
keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/8OH6cJKh3ZqjJGEUlgHO4PtWZWw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.150.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:7a:80:a8:4f:70:34:a5:56:0a:be:7a:fc:e3:1b:cc:8b:82:
e1:35:73:2c:9a:13:d7:50:2a:5f:98:f2:27:b2:d0:22:73:7d:
9e:02:12:9e:53:c2:9b:9a:9f:bf:08:99:62:09:ff:63:24:b7:
5e:31:c9:27:67:1f:39:0a:83:c4:35:18:0f:90:b5:ef:5c:2d:
d2:1c:fe:18:3d:a2:e3:ee:2f:71:98:b9:b0:af:18:7d:43:05:
ec:24:38:48:94:7b:7f:40:6f:6e:bf:c0:9b:5b:59:ef:7c:84:
31:6b:94:be:17:99:52:28:9b:1f:4e:4c:b6:6c:7d:fe:c0:d4:
67:a1:44:89:53:dd:fc:6a:c5:cc:f1:10:88:5b:c1:8d:fd:2e:
09:70:eb:1b:44:40:c1:74:34:0a:bc:69:7b:7d:8d:d8:e6:cd:
86:ff:67:fe:8d:d6:ef:a3:3c:22:2c:61:84:e7:88:04:9c:30:
5e:d2:66:0b:e0:a3:7a:96:cc:fb:df:b9:a8:a7:bd:e0:4c:14:
46:09:8c:ac:91:20:09:a7:60:21:b6:d3:b9:f9:fb:84:61:90:
21:be:4c:22:01:ec:90:be:94:ae:ea:ec:2a:d6:c4:3b:82:9b:
13:36:85:43:90:db:79:1b:96:b6:2f:49:df:5c:28:50:1f:82:
6c:9a:7a:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org