Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/QndRSfRm-iAYnntpBihTcgmrpRU.roa
File: QndRSfRm-iAYnntpBihTcgmrpRU.roa (raw, json)
Hash identifier: 5Vwo8yMLC8/IkzJRXjzki0cWvXIVT54IptvFQbOIedI=
Subject key identifier: 42:77:51:49:F4:66:FA:20:18:9E:7B:69:06:28:53:72:09:AB:A5:15
Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Certificate serial: 077B
Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/QndRSfRm-iAYnntpBihTcgmrpRU.roa
Signing time: Tue 29 Sep 2020 10:07:22 +0000
ROA not before: Tue 29 Sep 2020 10:07:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38851
IP address blocks: 103.229.100.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1915 (0x77b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Validity
Not Before: Sep 29 10:07:22 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=42775149F466FA20189E7B690628537209ABA515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f6:cc:70:de:b6:94:2b:c1:9f:4f:dc:33:2c:
56:fd:79:d4:22:25:09:88:d6:1d:d7:70:7e:82:b0:
2e:75:46:2e:8b:be:1f:ef:ca:7f:6e:cd:0b:9a:c5:
97:62:62:af:93:4c:37:a7:4b:98:0d:6a:a2:b5:54:
69:24:f6:97:a5:08:ee:ff:58:64:b6:b9:ab:a7:e3:
76:2a:b9:93:d3:08:e1:88:f2:ba:3c:48:c8:f7:50:
e7:a2:24:6f:fc:c6:16:18:00:ef:4b:4f:41:f5:8f:
ec:ef:68:08:f9:fe:0d:a4:07:30:90:3e:9f:56:c7:
c6:ff:35:15:5e:eb:e3:82:25:9f:52:93:7b:0f:22:
c8:6b:f6:90:e6:50:94:95:f9:02:3e:e3:42:88:d3:
43:aa:cf:0f:85:5b:12:92:86:4c:64:d1:bf:87:7a:
b0:4b:8f:44:2a:5f:45:c9:51:92:85:4d:50:bc:97:
0a:3b:66:05:3c:cf:94:bb:62:ab:cb:d9:ab:92:4c:
49:0c:ef:82:50:35:7d:ef:84:71:33:fd:c9:16:ce:
3e:75:95:cd:e0:c0:b0:b1:1b:dc:61:fd:06:c0:d9:
43:f5:8a:17:c3:cc:72:c7:f5:9f:ef:a4:5f:af:d0:
50:95:e6:68:e4:35:eb:ba:47:9c:60:d5:1a:44:bf:
ac:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:77:51:49:F4:66:FA:20:18:9E:7B:69:06:28:53:72:09:AB:A5:15
X509v3 Authority Key Identifier:
keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/QndRSfRm-iAYnntpBihTcgmrpRU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.229.100.0/23
Signature Algorithm: sha256WithRSAEncryption
60:51:76:a9:87:78:16:8b:77:8d:b1:ef:bf:a6:00:9d:4d:38:
71:7e:46:b1:48:eb:b0:aa:a4:fd:76:5e:b8:21:9c:44:64:cf:
e1:79:c0:3b:89:13:ba:8e:39:83:19:12:e2:40:c4:dc:5c:82:
b1:a1:19:42:2a:93:2e:33:68:8a:12:2a:a4:55:a6:18:99:96:
9a:b5:1e:ff:25:c4:be:21:ef:5d:2d:22:d8:3b:fc:6f:45:22:
84:c4:0d:d1:9c:7c:46:f2:94:86:06:b0:b7:9a:2f:e4:f9:5d:
eb:fc:40:05:5b:8e:60:46:ce:8c:2f:8f:d5:33:81:7e:85:05:
37:8b:bf:27:0f:ac:ba:33:a7:1f:a2:f8:7e:0d:b0:ba:a6:c9:
8f:5c:5d:d5:59:be:cb:36:b6:7e:00:cc:b0:6b:1b:9e:f0:40:
d5:50:14:c5:76:a5:b7:3a:58:43:a4:36:ab:23:53:44:66:c9:
3e:c6:d9:31:6f:b1:84:06:c6:4f:14:24:27:0f:3b:85:fe:d6:
d9:1c:10:a6:e4:82:03:b5:48:08:94:d3:a7:d9:d0:f0:8f:4b:
78:fc:8f:18:9a:b0:ee:66:57:27:d2:b4:fd:f7:04:9b:7e:9d:
53:68:a5:b4:7a:ad:2c:6f:cb:ec:84:fa:0b:b1:72:fb:54:11:
5a:93:a3:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org