Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/rqb1xdLWdc2K7F1UDyHAK0w-7HE.roa
File: rqb1xdLWdc2K7F1UDyHAK0w-7HE.roa (raw, json)
Hash identifier: 0cGIyfiojb+mMO2ArrhcXP3NvurZTC90ixAiJr0A0ws=
Subject key identifier: AE:A6:F5:C5:D2:D6:75:CD:8A:EC:5D:54:0F:21:C0:2B:4C:3E:EC:71
Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Certificate serial: 0363
Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/rqb1xdLWdc2K7F1UDyHAK0w-7HE.roa
Signing time: Wed 29 Sep 2021 02:55:52 +0000
ROA not before: Wed 29 Sep 2021 02:55:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9678
IP address blocks: 103.152.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 867 (0x363)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Validity
Not Before: Sep 29 02:55:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=AEA6F5C5D2D675CD8AEC5D540F21C02B4C3EEC71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2a:a6:cd:aa:09:d5:04:2c:c6:41:7d:fb:95:
cb:0e:72:b4:9d:f8:86:59:01:01:54:47:66:f3:53:
a8:7b:fd:e4:57:91:4a:3e:21:e7:ed:fa:ac:90:8e:
4b:a6:5f:4a:61:64:fd:1f:ac:25:d1:0a:b9:08:d7:
dd:0b:2a:ab:9e:34:fb:1d:1e:41:b1:50:7e:b8:59:
43:25:3a:5e:b9:7c:28:91:f5:39:b9:36:10:64:bf:
c0:f8:a9:35:66:a9:f4:b9:3d:fa:4f:7d:12:12:17:
ed:20:62:ce:b8:a5:b0:75:d8:5d:40:28:da:09:51:
74:ac:3f:be:41:77:50:5b:19:c9:97:dd:c2:ea:b7:
a3:f0:f8:99:30:0f:c7:02:fb:02:9c:f5:1c:24:73:
7f:59:ca:28:6b:d4:29:bb:14:49:27:39:a3:f9:d7:
0b:79:5d:b8:a4:f8:69:4b:81:eb:2c:97:39:b3:da:
03:30:79:bf:97:35:bf:11:12:24:c6:be:f2:a0:64:
9b:61:9b:f0:ad:b5:17:15:13:65:22:30:bd:ff:65:
e7:32:31:3e:7c:9e:5f:0d:af:86:f5:b9:c2:53:7b:
b1:2b:ce:02:5b:28:3f:24:23:be:bc:8e:30:6a:60:
7e:46:b4:2e:a1:46:61:96:ca:25:cb:91:19:83:b2:
e0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A6:F5:C5:D2:D6:75:CD:8A:EC:5D:54:0F:21:C0:2B:4C:3E:EC:71
X509v3 Authority Key Identifier:
keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/rqb1xdLWdc2K7F1UDyHAK0w-7HE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.150.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:86:d1:58:83:4a:71:83:ab:16:c8:77:2f:2c:c5:e3:1e:f0:
b7:16:f3:d9:8b:12:45:44:73:2e:6e:6c:1d:41:58:af:d5:a4:
66:fe:2a:b3:dc:1a:d0:d2:27:6e:98:11:ea:55:08:dd:7a:36:
27:d0:16:9c:16:a4:73:ff:19:c3:2c:7b:87:8f:6a:26:ec:76:
42:8e:3e:71:18:8b:f9:28:50:25:8a:04:9d:77:8e:49:1c:fa:
99:61:f6:14:be:fa:2e:bd:a1:07:3d:a8:a3:af:ef:51:cf:9e:
4b:9c:0d:3b:68:a2:9e:4a:7f:e1:a1:30:d3:d4:c1:72:8a:34:
3d:f6:19:60:1d:8d:17:0b:b9:aa:c9:0f:b2:bc:77:32:70:64:
86:af:bf:d1:48:e2:43:17:af:81:d5:48:80:40:9f:48:90:fa:
12:c8:49:e0:5c:bd:a9:dd:13:ef:c4:f5:19:b3:be:ad:a5:01:
b8:63:63:96:86:6f:b3:77:53:fc:84:2b:a5:1c:3f:84:8e:20:
94:93:c5:6e:4f:9b:ee:f9:05:e7:92:81:2a:b5:50:8e:3c:1a:
1d:22:3a:60:34:a5:0a:23:5e:ca:cd:a0:4a:11:00:1a:58:da:
32:45:fe:20:d1:4f:7a:35:6d:74:65:80:e3:5a:72:83:1a:3f:
45:15:7f:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org