Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/9Te4LMi8v2Ps1nhe7BN2i6YsSYE.roa
File: 9Te4LMi8v2Ps1nhe7BN2i6YsSYE.roa (raw, json)
Hash identifier: IOmEIA/WpscUAFyhBfjyVBxDjW4Q2O7gIRQKr9lSUO4=
Subject key identifier: F5:37:B8:2C:C8:BC:BF:63:EC:D6:78:5E:EC:13:76:8B:A6:2C:49:81
Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Certificate serial: 02C1
Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/9Te4LMi8v2Ps1nhe7BN2i6YsSYE.roa
Signing time: Sun 07 Feb 2021 13:04:03 +0000
ROA not before: Sun 07 Feb 2021 13:04:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9678
IP address blocks: 103.152.150.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 705 (0x2c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Validity
Not Before: Feb 7 13:04:03 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F537B82CC8BCBF63ECD6785EEC13768BA62C4981
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:38:df:30:1b:17:cc:cf:24:e7:87:f4:76:25:
6e:ba:a6:4b:93:2a:21:09:20:b8:db:34:24:29:34:
2c:fa:1e:eb:ae:e6:b3:f6:eb:30:0c:d7:1d:c3:ee:
98:1f:4f:e8:98:7f:d8:f1:61:a5:1e:87:d1:95:bb:
53:96:eb:61:36:58:54:83:93:45:e1:4e:11:a9:42:
fc:14:8b:01:5b:5f:20:85:59:f5:b8:c3:af:4e:4b:
68:11:48:43:3b:63:b1:cd:94:87:ad:86:b7:f5:60:
c2:47:6e:ad:0b:99:ca:a6:7c:9a:3e:4b:b3:92:9e:
9d:24:b0:2a:5f:01:bf:29:f9:d3:91:97:9b:44:2d:
9b:e0:8b:f1:11:a0:d6:00:55:09:f3:0d:48:9c:f2:
89:a6:7b:9f:a4:b5:26:55:fa:42:8c:4f:0e:b3:54:
89:4d:6f:47:00:47:78:a4:e3:2d:b0:e3:bf:c3:78:
ba:19:d4:ee:00:b6:e8:c6:2e:96:4a:8e:84:6e:ff:
d3:cb:79:8c:69:37:4d:b3:72:46:20:f0:a6:01:07:
b4:af:c7:07:31:97:1f:13:b5:0b:5e:0e:b0:67:12:
0b:09:2c:3f:68:48:88:87:84:1e:cc:ef:9c:12:6b:
51:9a:2f:50:4a:15:3b:21:14:24:98:e5:61:4f:e9:
25:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:37:B8:2C:C8:BC:BF:63:EC:D6:78:5E:EC:13:76:8B:A6:2C:49:81
X509v3 Authority Key Identifier:
keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/9Te4LMi8v2Ps1nhe7BN2i6YsSYE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.150.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:51:0e:9f:f8:d9:c9:5d:cb:b8:9b:0c:11:07:99:84:2d:16:
65:cb:39:fb:90:18:a9:12:e5:cc:30:c1:ea:2c:9f:0d:40:99:
53:78:a2:68:c1:b1:97:a3:cb:98:79:ee:1d:5e:7b:08:6e:2f:
bb:26:2b:06:63:d8:06:e6:54:26:91:ba:e7:a9:a2:57:c3:2f:
01:d2:fb:ea:f3:6e:85:57:e1:9c:f9:3c:31:51:7d:24:71:4d:
fc:25:0f:5d:d8:64:fc:1b:29:5b:01:f9:d1:01:98:01:79:c7:
af:c7:4f:54:68:64:8c:e0:8d:f3:f4:dd:e6:62:4b:74:de:91:
41:07:45:16:06:d7:50:2e:0b:94:29:0f:a2:4b:11:21:a1:a9:
69:57:b7:7e:fd:b1:1b:1e:a4:6b:23:b8:ce:0b:d1:cb:9a:90:
b4:a9:7d:d0:24:6e:73:1e:a0:21:38:3f:41:48:d3:d4:1b:a9:
7d:cc:43:d0:1d:ae:08:8c:08:38:70:19:4b:c5:b8:8d:5b:02:
d4:13:57:76:21:09:c6:21:88:7d:66:40:1f:03:e4:4d:01:cf:
a8:ba:da:1b:64:55:cc:c6:c7:30:b5:f2:d3:a7:1d:2a:27:be:
73:0b:f3:ba:82:7d:68:5e:63:02:73:be:c7:df:6b:2a:11:6c:
9a:25:4d:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org