Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/SOvjPnkB0LKovlE3QbmVfnHYz0c.roa
File: SOvjPnkB0LKovlE3QbmVfnHYz0c.roa (raw, json)
Hash identifier: OKpko/DOEKfnIVA3P4qIMXjN4JemVTP0iV267JhLBeE=
Subject key identifier: 48:EB:E3:3E:79:01:D0:B2:A8:BE:51:37:41:B9:95:7E:71:D8:CF:47
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0EDF
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/SOvjPnkB0LKovlE3QbmVfnHYz0c.roa
Signing time: Wed 29 Sep 2021 02:56:14 +0000
ROA not before: Wed 29 Sep 2021 02:56:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 16509
IP address blocks: 103.235.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3807 (0xedf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 29 02:56:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=48EBE33E7901D0B2A8BE513741B9957E71D8CF47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:71:b2:ef:8f:cf:ca:68:fb:36:0e:b0:cb:55:
f1:0a:14:52:bb:14:a5:12:98:40:b3:b0:c1:95:0e:
0d:c9:17:56:8e:60:40:11:0d:bb:ab:9e:d5:16:3f:
b1:4b:dc:8e:7d:4c:46:c3:5e:23:93:7c:b9:e1:06:
df:99:86:36:b1:a0:41:5f:10:2a:c0:a3:7a:6a:c8:
c1:7b:83:87:e5:a9:cb:6e:e7:c7:7c:c8:ca:f8:eb:
01:51:d0:fd:f4:9e:11:03:33:72:a9:67:4c:32:e4:
ee:d3:d0:5b:c4:36:8e:94:d7:9f:64:44:44:20:72:
ca:f7:88:26:09:2c:4a:a7:cf:71:22:42:b7:59:cd:
71:d2:bf:6c:72:73:c5:99:29:98:16:74:26:5d:56:
e6:ac:08:f5:8f:2d:e3:ff:4c:df:ad:4e:9a:e3:e1:
98:0d:25:f9:19:64:90:0d:a8:a8:b7:39:c5:90:dd:
1c:a5:53:40:12:e8:1d:94:17:2d:c2:3b:68:d8:ab:
67:46:da:a3:e8:5a:51:c7:16:a1:79:fa:2c:1a:9d:
06:8d:37:08:02:6c:74:dd:63:85:ff:9a:21:e6:a9:
06:4b:07:fd:65:76:0f:bb:40:37:85:88:89:28:72:
fd:a6:1f:a0:d5:93:9b:90:da:e1:ff:69:06:fe:69:
de:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:EB:E3:3E:79:01:D0:B2:A8:BE:51:37:41:B9:95:7E:71:D8:CF:47
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/SOvjPnkB0LKovlE3QbmVfnHYz0c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.235.88.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:69:af:85:ba:31:30:82:41:0c:0d:bf:7a:55:89:33:ea:96:
d0:42:2b:91:b0:58:1f:2d:ef:72:54:85:b5:0c:49:4b:1e:22:
26:a6:40:f0:9d:11:b4:d4:9c:db:c6:00:c0:4c:2f:6b:34:4e:
b6:9f:af:ab:f2:15:c5:2c:9a:31:d1:40:f9:68:69:3c:39:56:
ed:13:5a:8a:7b:9f:2d:7c:14:54:d0:15:a4:31:af:65:f8:ff:
f7:5b:f2:fe:53:5a:71:7c:2d:d2:2b:cd:f8:81:26:8f:7f:d5:
e4:4b:f2:25:c2:51:69:80:25:0f:37:2d:4a:fb:2e:11:86:ab:
db:8c:fb:5f:5e:3a:ef:b4:8d:1e:c2:75:8f:39:42:60:f9:2e:
2f:69:c0:68:92:1a:62:a5:b0:6a:99:5d:5a:43:4d:12:4e:32:
4b:84:92:3b:03:15:bd:c3:04:16:f3:1e:dc:b0:d6:9c:02:34:
36:99:9f:03:0b:e6:15:2d:95:1c:46:44:b8:f9:72:ac:03:06:
d6:02:c1:89:59:11:92:dd:eb:22:07:b7:61:3a:ec:96:da:c5:
8f:95:7d:ce:2e:49:72:b1:4d:0d:e8:89:fb:17:4a:2c:04:76:
07:3b:0a:bf:b6:aa:f3:b3:0e:17:21:29:4f:03:7b:27:b4:ae:
e1:dd:80:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:32 2023 by rpki-client on console-ams.rpki-client.org