Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/Ut8eJecWV-MVXfmx3bEgBQF31Xw.roa
File: Ut8eJecWV-MVXfmx3bEgBQF31Xw.roa (raw, json)
Hash identifier: 7dembCi/i0SKIxma1DGJJbsOclKuq/upNY0uAsVxzk4=
Subject key identifier: 52:DF:1E:25:E7:16:57:E3:15:5D:F9:B1:DD:B1:20:05:01:77:D5:7C
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 08C9
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/Ut8eJecWV-MVXfmx3bEgBQF31Xw.roa
Signing time: Sun 07 Feb 2021 11:46:57 +0000
ROA not before: Sun 07 Feb 2021 11:46:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131584
IP address blocks: 103.31.196.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2249 (0x8c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Feb 7 11:46:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=52DF1E25E71657E3155DF9B1DDB120050177D57C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:4f:37:3d:0f:ff:67:f4:33:8b:bc:52:c7:ce:
eb:f5:ef:cf:05:d1:0f:05:d5:25:26:19:c1:a7:8d:
76:43:65:5a:7d:ab:6a:a9:22:de:b5:d0:37:ff:b3:
b0:e5:6f:68:6e:ca:d9:d9:ae:88:b5:3c:16:2b:db:
50:71:14:eb:10:e2:e8:54:1e:b8:7c:68:ed:03:49:
f7:79:41:37:70:0f:d5:5b:ee:1e:0d:c7:88:3c:68:
4a:16:21:41:18:ad:12:c9:9e:57:ac:3c:e0:6a:da:
99:4c:39:e0:55:5b:50:83:81:0d:81:cc:a2:0d:56:
30:2c:8b:90:cc:f6:2f:55:3e:46:3b:7c:ad:a7:41:
a7:7e:9a:9d:a5:0a:6d:dd:78:f6:0a:1b:64:5d:83:
28:b1:2a:f9:8c:ef:c3:f7:03:16:03:b1:92:c8:35:
23:e0:29:11:59:66:e4:3b:f7:e5:fd:06:00:8f:9a:
0c:4f:82:fb:56:ea:f1:83:d3:23:ca:56:6d:63:16:
c3:1e:f3:7e:4f:08:fe:49:03:b6:79:0e:06:53:d1:
06:81:d7:f4:b2:24:94:16:27:47:12:b9:41:0c:fd:
bb:19:91:93:75:cf:a3:f4:86:7e:e4:4f:c3:87:13:
32:7b:2f:89:83:35:a0:ac:46:b6:49:72:bd:e5:35:
8e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:DF:1E:25:E7:16:57:E3:15:5D:F9:B1:DD:B1:20:05:01:77:D5:7C
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/Ut8eJecWV-MVXfmx3bEgBQF31Xw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.31.196.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:c6:56:cd:ce:90:ad:03:85:0a:e6:5d:6b:5d:6b:77:a1:39:
88:66:98:86:fa:dd:59:f2:ab:00:03:dc:5a:bd:6a:ef:e5:bb:
c8:4d:ce:1e:c3:4b:c2:11:c5:77:e1:fc:dc:24:36:2b:ed:fe:
9a:ac:44:20:40:9b:3f:fe:83:41:69:45:b3:84:72:c4:60:1b:
41:97:ab:d7:d6:40:13:dc:ba:e6:e2:d1:29:b2:97:9c:3e:a7:
4b:42:d4:2c:29:a2:29:80:dd:70:88:55:2a:8e:f2:4b:7d:86:
17:91:dc:05:c0:bd:23:23:b8:c4:bd:67:75:90:b4:51:da:13:
07:86:a6:20:27:72:79:34:b2:37:43:72:36:43:18:f9:76:9d:
e1:d2:37:46:b7:3a:42:d7:01:26:7a:a5:a5:5e:f1:14:91:69:
33:5f:fe:8f:b0:db:35:8e:f3:85:fb:82:81:23:88:99:06:3f:
f8:5e:cb:5a:a9:a9:89:10:af:6e:04:e6:30:78:ab:62:03:d0:
d0:9d:90:48:91:3f:ad:82:fb:39:fa:1f:e1:7e:4a:67:ee:55:
0a:f2:97:e4:0a:48:e1:11:4c:1b:17:ff:ec:f5:43:26:e8:d6:
b6:54:2d:8c:f7:91:8d:49:32:a5:7a:2d:09:a7:15:18:4d:6b:
40:96:f0:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org