Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/WqHgrAZWTbqwsTe98L8-PC3tqoA.roa
File: WqHgrAZWTbqwsTe98L8-PC3tqoA.roa (raw, json)
Hash identifier: v7QmI1fk9J9n4MnZX2Zbk54mmw8b0x+MAMSy29zSvJU=
Subject key identifier: 5A:A1:E0:AC:06:56:4D:BA:B0:B1:37:BD:F0:BF:3E:3C:2D:ED:AA:80
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 104C
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/WqHgrAZWTbqwsTe98L8-PC3tqoA.roa
Signing time: Thu 15 Sep 2022 02:37:10 +0000
ROA not before: Thu 15 Sep 2022 02:37:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 396982
IP address blocks: 101.101.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4172 (0x104c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 15 02:37:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5AA1E0AC06564DBAB0B137BDF0BF3E3C2DEDAA80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:df:ef:1f:e6:eb:d3:8d:c9:a1:00:4e:e2:16:
1d:c1:12:67:b0:38:3e:92:df:08:1a:fb:6d:b6:ec:
5e:5a:ec:cd:dd:e0:32:6e:ca:cd:06:a8:c8:7a:e3:
2f:45:8a:54:67:c1:03:79:04:2f:3c:9e:da:12:e4:
08:f0:90:f0:aa:d1:18:d1:e3:60:14:40:94:07:69:
d1:81:f7:cf:de:47:8f:0b:cc:80:83:ed:9e:82:b6:
95:97:9e:a2:f0:af:db:85:5f:51:bb:6e:5d:3c:ca:
d4:a0:4f:bc:54:73:f7:79:7e:0a:e6:f7:6e:b3:ff:
f2:37:18:98:6e:f8:c1:d6:0c:06:7c:42:d1:0e:4e:
27:34:26:66:cf:7f:21:67:52:cf:aa:e7:bf:c7:c0:
fa:ed:1b:55:21:2c:fb:6f:eb:2a:08:70:60:e9:2f:
15:51:70:6c:65:0a:23:29:cc:85:4c:43:2a:5a:f3:
03:1f:7e:87:de:ae:73:0f:69:36:06:a3:73:14:3e:
01:1e:db:af:5b:46:eb:2b:14:f0:1f:b9:f1:f8:5d:
40:50:44:5e:63:75:21:c0:a0:83:ad:4f:3b:8c:d9:
f5:b2:dd:42:a5:c0:84:39:0f:79:34:42:d5:f2:b9:
36:de:98:8d:15:e7:42:f9:fb:e6:40:09:5b:94:9e:
3b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:A1:E0:AC:06:56:4D:BA:B0:B1:37:BD:F0:BF:3E:3C:2D:ED:AA:80
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/WqHgrAZWTbqwsTe98L8-PC3tqoA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.101.101.0/24
Signature Algorithm: sha256WithRSAEncryption
00:eb:fa:9c:e4:2d:e0:a1:f0:ce:60:d0:2c:47:2b:6c:db:5d:
91:11:7b:2b:8a:f5:cb:59:f5:b4:87:a9:78:74:12:52:9f:1e:
b6:b1:33:a4:a4:82:5c:2c:26:fc:8b:a7:55:7d:1c:2a:64:4d:
2b:9c:e8:20:00:29:1f:53:ec:e0:53:71:ac:05:de:8a:cc:b6:
dc:cc:d1:2a:4d:09:79:83:3a:b9:09:f1:e5:86:74:7a:57:3e:
f6:2b:18:aa:47:fb:82:8e:38:0a:53:8b:d3:3a:55:c3:62:38:
56:58:33:b8:1f:84:0f:c7:b8:6a:19:b3:24:ba:e8:c7:a8:e1:
fb:39:43:c9:2d:59:4f:7d:56:e9:d8:ae:76:d2:0f:ee:e9:db:
72:15:60:23:ce:96:14:61:2e:11:f3:cf:67:25:ef:fa:c0:50:
a8:40:da:38:55:5b:b9:e6:c0:25:65:be:40:d2:3b:c3:aa:4c:
90:2c:33:87:6f:81:aa:53:63:60:66:f7:d2:2e:b6:f8:a7:bf:
59:e0:53:3c:e8:6a:17:7d:ad:15:3e:3f:85:ca:45:9c:e7:48:
c2:04:78:14:5c:61:65:e0:ab:97:fd:5f:47:d9:43:ad:7e:82:
10:70:9c:e2:a5:f9:4a:fc:e0:23:35:87:9e:3e:c7:5b:5a:00:
17:17:de:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org