Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ej2KwEYgfiIMtzRidR7gNliztOQ.roa
File: ej2KwEYgfiIMtzRidR7gNliztOQ.roa (raw, json)
Hash identifier: ibsvpqSTLHuiA9xz2R5p992rrJ1zQ2QaYO/yLwR45iw=
Subject key identifier: 7A:3D:8A:C0:46:20:7E:22:0C:B7:34:62:75:1E:E0:36:58:B3:B4:E4
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 0EE0
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ej2KwEYgfiIMtzRidR7gNliztOQ.roa
Signing time: Wed 29 Sep 2021 02:56:15 +0000
ROA not before: Wed 29 Sep 2021 02:56:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131621
IP address blocks: 101.102.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3808 (0xee0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Sep 29 02:56:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7A3D8AC046207E220CB73462751EE03658B3B4E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2d:b1:43:e9:8d:9a:04:6b:4b:eb:96:55:27:
79:87:85:7d:44:46:2f:08:2b:4e:aa:a6:76:6f:23:
6b:61:81:36:7f:94:6b:20:cd:97:e9:ab:fa:5e:d8:
8e:f3:85:3b:de:9d:73:f4:eb:1d:d2:c7:cf:2b:da:
75:fa:b3:6d:33:1d:57:6b:10:a3:f9:14:dc:b1:b7:
0a:2d:c8:66:c4:68:b7:e4:3b:8b:d6:a7:9f:fd:1e:
a3:1e:ee:8e:11:8d:12:bf:e0:95:2a:c3:9c:e8:8f:
ec:31:79:38:cb:35:70:2e:f7:d3:29:06:ad:86:63:
74:11:a4:93:0e:a8:f9:67:61:f7:2a:f3:fc:33:22:
7c:3c:51:90:9b:38:c0:fb:ce:bd:bd:7e:49:01:64:
9e:eb:28:08:79:87:1f:b5:4d:5c:d7:27:93:91:74:
c8:b1:99:72:99:59:47:1c:e1:b1:ff:42:ce:8a:10:
61:7e:19:55:c2:2b:87:b7:30:89:14:68:c9:0b:09:
54:46:3e:59:99:c8:40:8a:a8:76:4a:bd:aa:f0:3b:
e4:a2:95:cd:0d:11:7d:da:be:95:5b:a2:76:e1:32:
d6:7f:59:1a:5f:e9:1e:e6:a5:76:f7:89:99:8d:68:
da:42:74:b3:b0:c9:e6:27:30:9c:90:9e:1c:ce:2e:
77:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:3D:8A:C0:46:20:7E:22:0C:B7:34:62:75:1E:E0:36:58:B3:B4:E4
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ej2KwEYgfiIMtzRidR7gNliztOQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.102.103.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:a8:0f:55:9a:00:6a:1a:e9:83:7f:cd:97:ba:59:aa:29:d7:
41:7f:15:05:f6:07:53:af:24:5d:ab:86:0b:05:ca:ea:5d:87:
fd:7f:5c:2f:39:31:2f:47:90:cf:16:54:e8:b4:95:fb:e2:d6:
39:7c:33:23:f8:73:72:62:35:ad:c7:1a:b4:d5:3e:9d:23:e0:
8f:4e:61:bb:ad:b3:19:f8:a0:f4:88:fe:67:8c:e1:0d:3e:56:
9d:ad:a6:b0:15:e0:42:54:09:a3:3f:33:5e:17:b5:e3:bd:37:
06:a1:61:0a:61:c6:d2:51:1c:1a:2f:20:a2:e3:48:fb:bc:8e:
b9:b6:06:7c:f0:5e:88:46:3e:e0:01:9e:86:15:bc:bb:1e:3b:
83:32:d5:c9:0a:04:1b:1f:a5:8e:ad:33:4b:6e:68:48:7b:d7:
17:a0:69:4d:8e:85:81:b4:19:69:86:90:27:b3:1f:57:31:92:
b3:f2:0a:9c:85:48:28:dd:e1:7c:b1:f3:52:73:e6:36:86:53:
db:40:8e:c1:1d:77:5e:0d:53:b5:e3:64:43:21:ac:d8:ac:e8:
e0:16:2c:4b:24:14:ce:28:e8:2b:4c:32:d8:94:ed:15:88:39:
82:fc:02:42:a0:b5:8d:09:c2:b6:15:ee:9e:87:96:20:83:23:
c2:0a:0a:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org