Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/_YGl-JZn0Sy2PXDjWpdkLwGipxo.roa
File: _YGl-JZn0Sy2PXDjWpdkLwGipxo.roa (raw, json)
Hash identifier: d6HU1/kHMh/8QLLPVU03kGKqBWuSCnEUCRIWw0XZkCE=
Subject key identifier: FD:81:A5:F8:96:67:D1:2C:B6:3D:70:E3:5A:97:64:2F:01:A2:A7:1A
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 079B
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/_YGl-JZn0Sy2PXDjWpdkLwGipxo.roa
Signing time: Tue 29 Sep 2020 10:07:15 +0000
ROA not before: Tue 29 Sep 2020 10:07:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 14618
IP address blocks: 103.235.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1947 (0x79b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 29 10:07:15 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FD81A5F89667D12CB63D70E35A97642F01A2A71A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f9:f5:33:17:68:40:13:74:39:a0:4d:47:6a:
22:f0:bf:e0:9b:83:21:06:e9:df:72:df:dc:aa:f4:
f8:7a:2f:60:40:0f:ed:52:20:67:28:80:8a:1a:0f:
92:d3:b5:c7:b3:5e:32:62:bd:76:ff:c3:7b:d3:7c:
f8:84:8e:f9:f7:d4:9d:b9:ba:ee:50:08:ad:8b:cf:
72:2b:f4:92:54:4f:c2:7a:58:d1:15:5f:19:54:8a:
9c:74:73:fd:66:80:d9:aa:57:a0:45:ea:d3:13:95:
f9:08:e8:90:f8:8d:4a:52:16:8a:a4:20:c8:83:a9:
ce:07:48:50:15:ac:1b:cc:10:b4:04:43:91:aa:0e:
cb:3f:1b:d3:82:8b:af:d5:a9:50:49:2e:e5:df:7a:
09:3a:78:2b:48:4c:d9:0b:a1:4f:33:f7:56:0c:85:
50:08:96:8d:05:d0:31:52:1e:83:43:0e:5b:48:ad:
0b:62:a5:39:e0:c4:ce:f6:e2:01:05:24:36:f3:2b:
48:00:a3:45:4b:04:59:c0:a8:c8:1c:6d:19:f9:f4:
47:fd:56:f5:d1:1d:ab:8c:f5:20:f5:b0:5c:85:c2:
14:83:9e:dc:5a:09:bf:94:bc:80:8c:8c:df:8f:71:
a4:50:3b:f8:79:cd:c4:f6:41:d4:59:70:f7:07:74:
40:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:81:A5:F8:96:67:D1:2C:B6:3D:70:E3:5A:97:64:2F:01:A2:A7:1A
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/_YGl-JZn0Sy2PXDjWpdkLwGipxo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.235.88.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:3f:f9:18:a1:25:dd:51:f9:6c:e2:20:07:36:14:81:2d:12:
cd:bc:ee:93:e3:f8:5c:7a:e2:6d:2b:88:1f:32:98:bd:37:d0:
24:f8:a5:bd:90:19:81:02:3e:1f:1a:8b:44:f0:7f:20:c6:64:
60:55:27:c7:ed:ff:e5:fc:02:51:06:c1:20:c0:57:18:76:14:
54:b9:19:d6:9c:08:8a:21:64:c2:bb:94:11:88:91:30:62:5e:
c8:6b:e3:5d:39:67:31:a2:e8:33:0f:59:c0:b2:7b:f3:29:af:
17:7a:4b:b5:96:1c:e5:3c:f3:2d:13:6f:65:c3:60:8c:65:68:
ed:af:79:c0:d9:46:b9:cb:e3:b9:f5:8c:8a:91:df:99:86:c8:
93:f8:40:ed:84:de:b5:4e:21:e0:e0:e6:14:92:65:17:fe:86:
de:72:f3:41:29:e1:4d:85:fa:bb:3a:03:97:cf:13:7e:06:c7:
af:5d:51:4b:fb:e0:d6:7e:2f:11:c1:a3:be:10:43:70:27:d3:
b8:92:40:8f:b8:6d:cf:97:c0:b7:84:86:50:70:85:54:b9:5b:
36:a8:0c:1e:0c:18:68:98:b7:20:33:33:bf:24:1c:e8:5a:5d:
06:c8:1a:ad:e0:74:4d:e1:e0:04:02:37:72:8e:68:c7:b7:92:
32:fc:60:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org