Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/caKP7JpjIzK2552GFQYqOSaF6iI.roa
File: caKP7JpjIzK2552GFQYqOSaF6iI.roa (raw, json)
Hash identifier: WeVJtUz+oRdgngOcd3LXFR3VWK4YkplaRhAy3RzVzDY=
Subject key identifier: 71:A2:8F:EC:9A:63:23:32:B6:E7:9D:86:15:06:2A:39:26:85:EA:22
Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Certificate serial: 044E
Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/caKP7JpjIzK2552GFQYqOSaF6iI.roa
Signing time: Thu 15 Sep 2022 02:35:11 +0000
ROA not before: Thu 15 Sep 2022 02:35:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9678
IP address blocks: 103.152.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1102 (0x44e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Validity
Not Before: Sep 15 02:35:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=71A28FEC9A632332B6E79D8615062A392685EA22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:0e:d9:a1:be:65:f4:3a:f1:32:3c:d0:ae:86:
72:6f:d5:5d:4b:c7:01:f5:db:23:bc:d6:d1:d2:b4:
2d:53:72:ff:c3:b3:dd:4d:a6:ab:84:53:e8:2d:0c:
bf:c9:5c:1b:d1:a9:10:31:a0:2b:1c:38:08:5d:4b:
34:67:f5:5b:7d:95:fa:65:ac:12:4c:61:a3:04:78:
7e:a1:ba:cb:92:5a:bb:87:a7:f3:48:22:64:bc:c8:
12:76:78:f4:70:da:b6:e1:ca:7b:63:47:d7:89:e2:
98:2b:49:2a:e1:9c:4f:06:e7:9e:94:f9:36:2d:19:
63:ab:f0:86:79:ae:8b:38:b9:ff:13:b5:cb:6a:bf:
a8:57:07:9e:0f:b6:0c:46:a2:82:c0:80:d7:d0:0e:
9b:a9:5d:cc:88:4b:03:e4:59:c0:33:55:47:86:92:
84:3c:bf:43:a3:f1:de:be:23:85:b1:e1:cb:0c:c6:
4f:b2:6a:21:cf:2e:95:2c:18:c8:f6:80:f1:6a:b5:
21:89:72:24:78:64:80:0e:1b:12:e9:45:0b:16:e0:
1b:fc:93:f6:71:58:08:15:dc:f8:96:85:0b:36:41:
6a:62:b5:0e:3c:22:99:c1:73:2c:2e:68:99:c3:5f:
39:f2:1b:8b:4f:0c:b3:01:53:c1:2f:61:a8:ea:94:
52:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A2:8F:EC:9A:63:23:32:B6:E7:9D:86:15:06:2A:39:26:85:EA:22
X509v3 Authority Key Identifier:
keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/caKP7JpjIzK2552GFQYqOSaF6iI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.151.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:9f:a6:43:95:25:c4:bb:9c:b7:2f:d0:e1:c8:5a:86:2c:33:
ec:0f:13:be:3e:33:20:24:ae:45:8e:be:d2:f5:05:12:07:d5:
43:5f:46:3c:05:a8:5d:ec:d8:7a:35:38:73:42:d4:ba:38:49:
9c:b7:be:bd:f4:fd:ed:e6:4b:b7:44:bc:57:e9:d4:35:39:05:
77:c3:f2:bd:eb:7c:52:c2:16:9e:b7:4f:99:1c:4a:05:87:6f:
bc:f7:1f:7c:68:ae:38:34:3f:99:52:e1:6f:ae:66:35:f2:6c:
b3:56:e1:07:f9:d9:f3:9c:ef:98:a8:2f:94:6c:82:a9:bd:7b:
6a:47:61:f2:63:e3:1c:cf:24:5d:34:d3:e4:63:d4:e5:44:31:
51:e4:a6:8d:bd:c2:ca:0c:7f:95:6a:81:ce:e0:19:e3:fd:7e:
d9:a1:31:9e:22:17:18:7f:5b:ec:8c:a5:bc:d9:e1:f3:b9:0b:
fa:9f:c9:07:35:93:bc:e7:94:51:38:45:2b:a9:b4:26:6c:3a:
9a:8e:c1:db:c5:0f:9b:ec:5a:d3:c7:80:de:08:2b:37:a7:eb:
ff:22:4d:90:44:7a:c0:28:3c:85:84:68:a8:1c:49:9c:f1:4f:
6a:81:f6:b6:32:a1:b6:0b:06:aa:2b:e6:58:26:17:f0:32:e0:
f1:16:0f:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org