Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIDC/OHAb7pciaFJk0xH0HpS8kbmrji4.roa
File: OHAb7pciaFJk0xH0HpS8kbmrji4.roa (raw, json)
Hash identifier: cD79AIHmEavia1BDkRnljzSnOCQCu0XbyLJvfXc5R6g=
Subject key identifier: 38:70:1B:EE:97:22:68:52:64:D3:11:F4:1E:94:BC:91:B9:AB:8E:2E
Certificate issuer: /CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Certificate serial: 0A37
Authority key identifier: C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/OHAb7pciaFJk0xH0HpS8kbmrji4.roa
Signing time: Thu 15 Sep 2022 02:44:09 +0000
ROA not before: Thu 15 Sep 2022 02:44:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131609
IP address blocks: 103.99.88.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2615 (0xa37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Validity
Not Before: Sep 15 02:44:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=38701BEE9722685264D311F41E94BC91B9AB8E2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:65:fb:74:b9:c7:5a:09:b6:3c:a7:39:eb:27:
ed:a5:cb:31:6d:6e:28:bb:a5:28:4d:93:7f:b7:aa:
c9:04:b5:20:a6:a5:3b:1d:8e:84:91:b5:b6:5a:dd:
d7:05:ec:d6:0c:75:3c:65:1d:d8:8e:37:34:b9:7e:
53:0c:a7:67:58:80:8c:4f:fd:69:99:f4:f2:1b:3c:
d0:b5:15:a2:d4:72:3e:65:e6:27:a7:2b:13:2c:57:
7d:fc:a0:b8:f0:90:a2:88:d9:76:0f:f5:9f:77:86:
68:29:32:28:50:98:46:64:77:9c:a7:fc:cb:68:2d:
4a:ba:29:30:6c:bb:de:80:50:27:86:a4:a7:d6:a4:
95:5f:08:38:bd:24:41:26:21:ac:ac:d5:9b:fc:04:
06:f4:23:ca:46:cb:29:7d:af:bb:18:04:81:76:d6:
84:11:fb:80:cb:bc:7e:be:87:1f:5f:13:cb:18:39:
94:b3:53:21:8b:e3:92:da:4b:9c:93:59:5e:d4:97:
ef:5f:b6:39:67:f2:45:25:e1:42:aa:2b:3f:d1:8f:
0c:3a:da:1e:05:de:16:1a:87:01:c2:3b:15:50:c1:
14:7c:aa:fb:23:04:97:de:10:84:e3:44:4c:c7:ea:
15:2c:90:6b:88:3a:00:81:e0:f3:48:34:41:a4:a6:
30:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:70:1B:EE:97:22:68:52:64:D3:11:F4:1E:94:BC:91:B9:AB:8E:2E
X509v3 Authority Key Identifier:
keyid:C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/wIUVyLn7U_jO1InSE09kQf-toF4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/OHAb7pciaFJk0xH0HpS8kbmrji4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.88.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:d4:b8:13:0f:4a:bf:16:64:1b:90:ce:e5:7f:f7:bc:1b:1f:
bf:e1:ac:bb:74:35:fa:1d:ff:63:93:05:58:f8:b6:6d:ab:dc:
bd:3f:a4:d2:7d:5f:5a:db:3e:51:14:11:1f:59:95:b9:44:90:
2a:d7:2f:4e:48:ff:fe:95:db:16:4a:03:16:ff:80:e6:cd:3c:
3e:a6:07:3f:d6:f8:57:c5:30:68:eb:66:6f:28:88:d0:18:ee:
50:fc:49:49:86:af:f4:11:67:f7:0d:2c:24:ac:87:02:41:2b:
15:0c:70:5b:80:e6:74:8a:33:cf:25:2e:be:94:b5:1e:da:95:
60:6b:c9:a5:c7:a0:10:ee:b9:1a:f7:64:9f:a3:cf:6b:c9:21:
57:0c:5d:20:e1:2a:46:f7:1c:21:57:3b:f2:aa:9e:0d:5b:b4:
9f:c6:be:1d:c9:a3:35:03:8c:bc:1a:e0:74:f7:9d:b2:9f:47:
02:28:b9:48:47:92:5d:63:53:a0:2d:70:c7:ea:fe:ff:8d:b1:
36:6d:3d:c7:22:7e:c4:f1:0c:48:13:f4:13:07:40:16:d7:1a:
3c:d9:f0:fe:b7:ba:f9:17:53:b3:47:ea:43:89:75:c1:37:55:
cf:ac:fe:5f:be:70:6f:c1:d3:1d:5c:20:07:bc:29:ff:f9:a3:
0d:4e:3c:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org