Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/SKvtZFWJ8Ztnn-XfBzK9cBGWX5I.roa
File: SKvtZFWJ8Ztnn-XfBzK9cBGWX5I.roa (raw, json)
Hash identifier: UT0MGRm/dYjpVo5wVqcbKEE8NbRulWf/NTqrvFYSPOw=
Subject key identifier: 48:AB:ED:64:55:89:F1:9B:67:9F:E5:DF:07:32:BD:70:11:96:5F:92
Certificate issuer: /CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Certificate serial: 059C
Authority key identifier: CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/SKvtZFWJ8Ztnn-XfBzK9cBGWX5I.roa
Signing time: Wed 29 Sep 2021 02:36:25 +0000
ROA not before: Wed 29 Sep 2021 02:36:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9678
IP address blocks: 103.150.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1436 (0x59c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Validity
Not Before: Sep 29 02:36:25 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=48ABED645589F19B679FE5DF0732BD7011965F92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:fe:93:f1:fb:42:30:ab:59:99:c5:72:91:5a:
98:d0:1e:d2:bc:b6:c5:99:5d:9a:41:b9:fd:f1:6a:
e6:a7:bd:94:75:00:95:f6:8d:f9:41:ef:79:02:2d:
fe:76:c0:e7:f9:3f:31:82:93:0b:6f:ec:ed:b6:ec:
a8:85:e2:a2:67:9b:92:ff:39:db:17:00:ff:0b:83:
69:1c:35:d2:d8:2c:97:4d:f1:48:42:ec:e1:fa:dc:
3e:3d:b5:ef:50:ae:1a:f4:01:4f:58:a2:ba:b4:12:
2e:4b:1b:c9:7d:ee:0d:38:ee:11:32:1e:b6:52:6d:
45:e4:df:04:15:1e:f1:04:86:da:5a:ed:7a:e3:26:
1f:df:ee:c2:26:54:03:7a:f9:8b:ef:8b:ac:9e:57:
bd:45:9a:67:3a:f4:88:64:84:b7:5b:a4:ec:17:c7:
1e:9d:bc:e3:9b:c5:0f:23:ac:51:f0:20:c8:5b:ed:
07:a2:c7:58:c8:85:7b:9f:4a:b8:da:c1:0e:e8:53:
0b:aa:d5:a6:8a:27:6a:f1:c5:de:d0:94:a4:1a:35:
40:a4:67:c2:18:2b:4f:9f:8f:fa:68:2b:5d:6c:1a:
74:0e:87:64:5b:73:e9:76:24:a1:b9:b3:28:8e:06:
db:93:c1:25:40:eb:22:70:8a:76:b9:17:fa:16:be:
84:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:AB:ED:64:55:89:F1:9B:67:9F:E5:DF:07:32:BD:70:11:96:5F:92
X509v3 Authority Key Identifier:
keyid:CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/SKvtZFWJ8Ztnn-XfBzK9cBGWX5I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.150.36.0/24
Signature Algorithm: sha256WithRSAEncryption
64:96:4f:78:83:9b:84:8c:8f:c7:e0:60:e6:09:b0:2c:c7:bf:
f3:62:6a:a7:9e:d5:6a:22:da:4c:18:1a:44:7d:2d:7a:9a:70:
fb:3a:3e:80:ff:7b:4f:6e:3e:6c:13:9c:45:5a:c4:72:61:ac:
9e:46:78:36:89:49:99:cc:13:1e:ee:95:9f:27:c6:30:a6:24:
2b:a2:c5:7d:b3:27:7f:5c:0d:c5:49:1d:66:cb:ff:12:fe:d6:
fe:0f:7e:dd:27:94:3a:95:95:09:0d:9c:39:dc:f9:bc:ae:36:
54:75:d7:b3:2f:cc:16:5c:f4:8b:27:2a:c7:07:5f:c2:48:3f:
87:ff:10:05:cc:57:0b:81:f1:d8:ce:2c:bd:a6:cc:ec:5e:60:
97:9d:fa:6e:d6:34:7d:1f:d9:3c:52:02:de:d2:9f:ba:3e:ce:
4e:52:86:91:4f:a7:fd:b3:07:67:bb:99:f2:e0:74:fe:dd:c2:
13:9f:2b:12:f6:51:3b:07:9d:cc:42:0d:3d:93:8d:fe:92:80:
d2:9d:cd:21:b4:cf:87:d0:33:45:41:84:b4:54:86:f2:9f:1c:
84:65:f0:59:d4:cb:84:48:ae:fd:3d:85:64:66:f5:ff:91:7c:
a3:7b:0e:b8:6e:5d:d7:7e:b1:b5:96:59:41:e3:02:b5:73:50:
2d:ce:dc:24
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:43 2023 by rpki-client on console-fra.rpki-client.org