Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ohBgrGtBIrF9OUcQmPvbwiX6L-A.roa
File: ohBgrGtBIrF9OUcQmPvbwiX6L-A.roa (raw, json)
Hash identifier: 3H8hMznzovBMqNmqUGkG8cphxOdMBv2U0h6pROEE3mk=
Subject key identifier: A2:10:60:AC:6B:41:22:B1:7D:39:47:10:98:FB:DB:C2:25:FA:2F:E0
Certificate issuer: /CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Certificate serial: 04FD
Authority key identifier: CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ohBgrGtBIrF9OUcQmPvbwiX6L-A.roa
Signing time: Sun 07 Feb 2021 12:47:50 +0000
ROA not before: Sun 07 Feb 2021 12:47:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 136038
IP address blocks: 103.150.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1277 (0x4fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CAD527022C8CD07568EC9FC82A1CE0DDE5B2C4AC
Validity
Not Before: Feb 7 12:47:50 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A21060AC6B4122B17D39471098FBDBC225FA2FE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:c3:13:43:6b:14:f9:d6:55:d5:9e:7c:88:78:
e4:34:84:e1:4a:0b:98:e6:04:59:ff:ba:fe:03:b5:
02:74:8a:4a:eb:87:8b:2f:64:0a:7a:cb:71:8b:7f:
90:e3:65:7a:c8:80:6b:01:8e:c6:ca:f4:4a:1a:52:
02:89:69:0a:51:9d:97:5c:bd:ae:1c:83:44:96:ea:
63:5a:22:8a:f1:5d:bc:80:5f:19:2d:fb:e2:39:0a:
69:2b:6d:6f:3d:a4:9a:f0:fe:1a:5f:58:a9:17:a3:
ea:1f:5e:a2:1a:42:c4:22:c2:bd:6f:4d:05:4f:a5:
c1:13:bb:b4:5d:0d:2b:a6:cf:e0:62:93:34:87:fa:
df:bb:f4:c1:49:e0:53:94:76:34:32:87:fd:06:53:
04:54:9d:16:94:f9:16:03:77:ab:cd:6c:b3:04:04:
62:6d:00:ad:16:77:ef:a3:16:5e:b4:2e:80:dc:98:
a6:80:fc:9e:4a:57:63:26:f2:5b:5d:4c:5c:25:79:
d8:8a:6b:ca:1b:26:59:d7:f3:cc:32:12:31:b7:8f:
b7:b1:6a:3d:26:40:a4:db:ee:31:a4:6d:cc:d6:b1:
78:f5:12:35:09:35:c8:fd:58:50:e7:35:39:4c:12:
a1:2b:f9:a7:98:81:26:c6:a0:ab:92:43:97:64:c0:
63:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:10:60:AC:6B:41:22:B1:7D:39:47:10:98:FB:DB:C2:25:FA:2F:E0
X509v3 Authority Key Identifier:
keyid:CA:D5:27:02:2C:8C:D0:75:68:EC:9F:C8:2A:1C:E0:DD:E5:B2:C4:AC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ytUnAiyM0HVo7J_IKhzg3eWyxKw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ytUnAiyM0HVo7J_IKhzg3eWyxKw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWBESTWARE/ohBgrGtBIrF9OUcQmPvbwiX6L-A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.150.37.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:92:e3:8f:d5:c4:16:e8:fd:90:cb:0e:21:3f:f6:8f:b6:45:
91:f1:df:ac:b5:e1:82:9c:03:d9:89:b2:64:4e:d5:54:da:fd:
14:cc:02:e9:58:ff:c8:87:ed:18:0e:c5:b9:04:7e:c0:d7:4b:
e2:fa:d8:a4:ec:5a:53:ca:b8:37:80:ff:89:3b:b3:fc:96:f4:
bb:63:1a:14:e0:50:66:30:56:b8:73:44:ed:8b:2e:d4:3d:04:
47:68:13:26:47:e9:9b:6f:ea:ef:b5:6d:c8:31:c3:82:b9:98:
c0:64:b9:21:ca:fc:9f:da:c2:4a:07:a3:a5:1a:80:05:aa:48:
fb:55:59:e7:a1:35:0a:6d:46:d7:0f:34:e9:44:3e:fa:e5:3b:
78:e5:33:45:f8:41:f2:0b:b0:9d:a8:80:8b:17:5a:05:b9:c2:
8b:f2:e1:ea:ec:de:a4:c4:67:c6:0f:9a:91:91:22:ee:a0:30:
f0:e1:e0:c2:99:0b:31:bc:de:c8:a5:fc:24:ce:1c:0c:08:e7:
ca:c9:1e:ab:75:be:ca:68:60:35:64:3c:86:6d:a1:4f:f1:86:
c3:d9:3c:c8:22:0f:e8:55:ef:fb:66:dd:11:ef:a6:15:7b:64:
a1:52:f0:81:2c:01:c9:46:2a:43:41:b1:e5:d2:33:c5:ae:27:
ab:c0:ae:d8
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:43 2024 by rpki-client on console-ams.rpki-client.org