Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/4poOCS-hwysyeVdgFwCUImFH-Jg.roa
File: 4poOCS-hwysyeVdgFwCUImFH-Jg.roa (raw, json)
Hash identifier: WlL/w1kQ5fqwrh0n7qYJbs5ZcrAbOj+y6q/0RlFqUq4=
Subject key identifier: E2:9A:0E:09:2F:A1:C3:2B:32:79:57:60:17:00:94:22:61:47:F8:98
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0EDE
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/4poOCS-hwysyeVdgFwCUImFH-Jg.roa
Signing time: Wed 29 Sep 2021 02:56:14 +0000
ROA not before: Wed 29 Sep 2021 02:56:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 14618
IP address blocks: 103.235.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3806 (0xede)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 29 02:56:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E29A0E092FA1C32B32795760170094226147F898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:5d:d1:0d:66:bd:4d:12:74:ff:9b:b2:bb:1a:
08:90:6b:bd:4b:55:d7:5a:28:2b:b3:a6:f9:b6:e7:
d2:76:a6:a2:e7:32:9d:ca:ee:32:b1:b4:ee:98:38:
8c:4b:03:75:b3:51:92:ad:c5:cc:52:26:38:8e:f9:
50:80:66:24:8e:16:ec:fc:5f:6b:92:ab:6f:9c:31:
f7:f9:ce:d9:b2:19:b5:e1:b9:a6:eb:df:e0:0d:02:
5d:77:62:47:13:65:42:d5:86:0b:59:ea:58:c7:e6:
1d:8e:24:be:ce:7a:33:0f:af:30:38:69:bd:6c:12:
ef:65:fc:53:8d:84:73:50:e8:b9:ca:1c:a8:54:d4:
75:df:d8:5c:1e:ad:d7:4c:50:49:42:f5:bd:1e:bc:
aa:34:c4:7d:a6:54:d1:a5:c6:95:3b:05:73:78:19:
cd:a4:20:ee:bf:49:96:1b:f3:ce:ea:38:33:d1:eb:
60:c5:59:d5:45:b5:39:e5:2a:54:d4:ad:3f:b8:20:
f1:63:ca:a6:18:cb:a9:e5:84:1a:f4:5c:5e:74:de:
80:2d:ac:ae:64:a8:c5:3e:22:cd:aa:28:76:e2:2a:
c1:ce:1c:52:7f:11:a8:36:03:9a:c2:37:25:2a:80:
e3:f2:61:12:76:23:b2:f4:5a:2e:e8:f2:e6:62:67:
3a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:9A:0E:09:2F:A1:C3:2B:32:79:57:60:17:00:94:22:61:47:F8:98
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/4poOCS-hwysyeVdgFwCUImFH-Jg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.235.88.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:6d:5e:b0:58:0a:ca:64:6d:cb:4d:3f:b8:e1:2c:62:c4:03:
35:0b:2f:69:fc:42:9e:12:f3:24:c3:1d:3b:d9:ba:c4:a2:d0:
a9:41:9c:99:97:b0:02:28:3a:94:0a:3c:a6:7a:4d:71:f3:6d:
c8:63:2d:e0:1e:62:4a:66:15:bd:7d:af:46:e9:70:48:7a:b6:
c2:32:5d:cc:86:67:56:d2:c6:96:22:b6:86:7b:72:d7:7e:58:
eb:2d:d6:2e:d4:fa:f5:9a:08:10:88:a8:57:ab:0f:31:0f:01:
d2:83:ab:f5:ac:97:3c:25:87:58:c9:35:5a:aa:38:75:53:73:
4c:87:38:97:84:9b:0a:5b:18:1f:b0:94:74:2f:88:06:b8:08:
c1:50:3f:4d:5d:7e:b1:df:e6:88:68:ab:4b:5a:89:ee:87:ee:
42:80:50:55:05:09:8d:aa:b9:ab:4e:57:04:86:27:b8:06:c7:
3b:40:b9:30:3c:bc:d4:19:c1:41:c9:58:5c:f9:6b:92:d3:66:
e3:3a:68:cf:3a:ae:06:aa:19:6e:16:a6:71:20:66:67:f4:39:
69:18:a5:3b:1c:ea:7f:a3:ff:4a:fe:5f:8a:6d:3b:a2:21:ea:
2d:01:40:c3:0f:47:e3:29:0e:c5:78:25:29:6b:43:1e:40:82:
b6:e9:ea:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org