Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/GN0Q-yTnykC8kFMtGM4DdH0lLGQ.roa
File: GN0Q-yTnykC8kFMtGM4DdH0lLGQ.roa (raw, json)
Hash identifier: wvF6TH0ZbylDIUosdtDgxCiFztx3rvbp4YEnOhtqrd0=
Subject key identifier: 18:DD:10:FB:24:E7:CA:40:BC:90:53:2D:18:CE:03:74:7D:25:2C:64
Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Certificate serial: 04B8
Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/GN0Q-yTnykC8kFMtGM4DdH0lLGQ.roa
Signing time: Thu 16 Feb 2023 09:53:42 +0000
ROA not before: Thu 16 Feb 2023 09:53:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 209854
IP address blocks: 103.152.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1208 (0x4b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Validity
Not Before: Feb 16 09:53:42 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=18DD10FB24E7CA40BC90532D18CE03747D252C64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:1d:72:ec:cb:67:9b:bc:7b:11:d0:ae:b5:a1:
a7:c1:be:9e:29:70:a2:3b:d9:62:a6:6d:99:80:11:
29:cf:8c:29:a0:07:38:02:04:f5:c2:a6:99:8b:85:
c0:44:2d:9a:93:b4:39:29:e7:8b:18:f6:66:80:2d:
ff:e9:69:e4:76:64:f1:ab:3c:96:ba:3c:95:02:31:
31:29:8b:9d:b9:c9:c9:4e:d8:9a:f6:56:9c:01:d2:
df:99:d3:aa:e3:e0:b3:2a:c6:10:ac:71:c7:0e:3b:
45:79:6f:bc:72:19:dc:de:60:f0:56:12:65:8b:e2:
c1:8e:62:c1:cf:49:c3:fc:ac:c0:ec:b8:f2:e4:7d:
5f:e8:41:6a:24:65:70:9f:f4:d0:2e:36:96:b4:6c:
0b:24:e5:90:c2:77:c7:5a:b3:ed:94:97:bd:14:18:
82:c0:be:20:1f:0a:2d:c4:98:17:b7:cc:97:bc:54:
10:2a:a7:03:ef:22:ba:29:12:3d:8b:36:75:7f:8b:
e1:d6:aa:22:56:fa:8a:07:fa:41:87:81:d1:c5:b3:
77:48:9d:a2:90:18:cd:d5:89:10:9f:11:10:bf:23:
2a:43:02:3f:bd:9f:e1:49:a4:3c:4c:21:fa:1d:43:
13:11:d9:48:40:5f:63:f6:fa:63:11:3e:e5:ee:cd:
0e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:DD:10:FB:24:E7:CA:40:BC:90:53:2D:18:CE:03:74:7D:25:2C:64
X509v3 Authority Key Identifier:
keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/GN0Q-yTnykC8kFMtGM4DdH0lLGQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.150.0/24
Signature Algorithm: sha256WithRSAEncryption
77:69:9b:fc:d6:41:cc:cd:a8:87:46:e2:fe:99:0d:1d:92:2a:
87:5b:02:46:93:3b:94:aa:95:69:b1:aa:74:d3:61:5c:63:24:
eb:f0:ef:d1:d2:aa:b2:de:20:0b:a6:78:30:2b:56:7e:95:19:
58:79:fc:5b:ac:58:2f:6d:85:3f:db:ad:30:5c:bc:5d:98:05:
56:3b:c1:4d:e2:58:31:6b:27:81:fc:01:65:2a:47:57:b5:66:
62:dd:5e:bf:fe:c4:3a:82:81:d3:45:f8:57:e1:e3:dd:78:1d:
a6:85:02:26:34:08:25:73:7f:90:ac:97:07:10:60:da:1d:10:
2f:cc:b2:df:e5:cd:48:8f:4e:4a:77:be:bc:0e:49:06:92:6b:
32:5b:55:33:79:a9:e9:12:22:5d:a4:41:35:bb:00:00:ea:e9:
05:cd:3f:c0:e9:32:2e:ef:74:af:7a:dd:40:44:dc:d4:a8:0f:
08:c9:98:63:79:81:92:a8:dd:b2:77:e0:90:ac:d0:23:c2:b7:
88:6f:50:75:fd:ae:b8:b7:0d:99:32:81:b3:dd:51:1c:07:b0:
e9:f1:96:f9:84:56:df:b5:80:55:c2:ac:fb:85:bb:82:9b:0f:
fc:66:c8:be:c6:75:65:c3:4b:83:37:51:e3:6f:8d:f8:7c:be:
6e:b6:97:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org