Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/o8j0IaFMQXO5dXBh3vNLmvsmpuA.roa
File: o8j0IaFMQXO5dXBh3vNLmvsmpuA.roa (raw, json)
Hash identifier: mwt3k7e0kXvS/t/6uYQrVnydkSlpyycN8pN5cCUVtn4=
Subject key identifier: A3:C8:F4:21:A1:4C:41:73:B9:75:70:61:DE:F3:4B:9A:FB:26:A6:E0
Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Certificate serial: 044E
Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/o8j0IaFMQXO5dXBh3vNLmvsmpuA.roa
Signing time: Thu 15 Sep 2022 02:35:11 +0000
ROA not before: Thu 15 Sep 2022 02:35:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9678
IP address blocks: 103.152.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1102 (0x44e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Validity
Not Before: Sep 15 02:35:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A3C8F421A14C4173B9757061DEF34B9AFB26A6E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8d:13:2d:54:8a:5b:0c:0f:a6:f3:1c:99:2b:
04:cb:13:b3:30:b5:20:44:5a:de:79:03:16:43:a6:
a7:9d:b4:16:be:7d:bc:98:ce:5d:f0:28:87:0d:10:
9f:20:f4:7a:a3:e5:1b:ba:21:11:14:35:93:18:97:
80:1c:55:23:8b:36:18:37:4c:dc:65:0c:22:8b:fe:
40:a6:89:c4:c3:87:f4:64:06:58:6b:97:27:d9:ef:
e3:82:e8:b1:56:8e:ce:17:3f:ab:7c:0b:c9:0d:9b:
81:7d:09:db:15:8e:48:bb:93:83:b3:ea:f2:32:6b:
5c:c0:21:6e:ec:0a:28:bf:5e:1f:b9:a5:e1:58:78:
d0:15:62:f4:19:88:9a:64:e2:a2:d9:54:29:ee:74:
08:87:b3:c4:d9:e7:35:2e:8f:f5:6a:9f:e2:10:bc:
c7:d6:9c:58:5a:10:e2:18:53:b1:d1:96:d6:f1:58:
87:85:ba:a6:66:26:25:f4:b6:59:ca:1c:de:a3:96:
55:1f:46:83:a4:55:80:4c:74:1c:9d:48:0c:58:48:
12:ef:ca:b1:01:0e:3b:45:71:66:f2:bc:c0:cd:3d:
62:31:8d:66:78:87:88:8f:2a:bd:6e:a5:30:5e:57:
b4:f2:d9:f6:ce:ea:63:58:42:ce:dd:3d:25:28:e7:
59:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:C8:F4:21:A1:4C:41:73:B9:75:70:61:DE:F3:4B:9A:FB:26:A6:E0
X509v3 Authority Key Identifier:
keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/o8j0IaFMQXO5dXBh3vNLmvsmpuA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.150.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:a8:da:82:57:28:7b:c8:e1:d4:87:d4:24:95:94:f9:e6:b1:
fe:b8:c2:90:dd:33:56:7c:a5:50:9f:e9:b8:5c:7b:ba:54:0f:
60:04:1d:1f:5b:b6:7f:70:c7:43:b5:26:b1:45:bd:ee:74:b9:
16:b2:f9:af:d9:94:6a:4e:ff:33:fc:ed:0d:78:8b:9d:13:52:
6d:7d:23:af:c3:ee:f4:a1:de:58:dc:85:a6:42:9c:fb:2a:ab:
63:8b:9c:a1:d3:a1:16:b1:05:09:cf:1b:64:7e:32:bc:c3:2f:
0a:29:3d:75:70:ab:03:21:6d:66:ad:a3:26:4d:13:0b:be:1f:
12:a5:12:70:53:fa:be:b8:df:dc:64:02:f7:fd:66:59:bd:42:
09:e5:b4:f8:f6:39:50:b1:df:fa:c9:67:ad:5a:85:49:a0:66:
15:db:a3:0b:b3:13:96:1b:ff:36:c2:6a:31:67:6d:f2:05:94:
70:27:93:89:9f:e6:de:7c:5c:9b:d8:16:c6:a1:76:52:48:98:
17:26:56:46:c3:6e:f4:86:f4:ff:88:b2:34:e4:96:53:41:df:
c3:65:42:7b:5e:56:89:de:ad:2f:d7:32:91:22:85:b2:a5:78:
f9:17:43:e2:08:99:0e:97:94:a6:52:fb:33:59:eb:ee:6b:fd:
d4:2c:35:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org