Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ULC/qSsQYt8KqVmabNpb1r6P8QmC4u4.roa
File: qSsQYt8KqVmabNpb1r6P8QmC4u4.roa (raw, json)
Hash identifier: F4TckYhkcGkRCMq071OGyBEmPT9rOqBEafUnw4WsHEg=
Subject key identifier: A9:2B:10:62:DF:0A:A9:59:9A:6C:DA:5B:D6:BE:8F:F1:09:82:E2:EE
Certificate issuer: /CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Certificate serial: 2A
Authority key identifier: BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/qSsQYt8KqVmabNpb1r6P8QmC4u4.roa
Signing time: Tue 20 Oct 2020 04:06:32 +0000
ROA not before: Tue 20 Oct 2020 04:06:32 +0000
ROA not after: Sat 16 Oct 2021 04:29:56 +0000
asID: 18178
IP address blocks: 103.157.42.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42 (0x2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Validity
Not Before: Oct 20 04:06:32 2020 GMT
Not After : Oct 16 04:29:56 2021 GMT
Subject: CN=A92B1062DF0AA9599A6CDA5BD6BE8FF10982E2EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9c:80:43:66:18:e7:88:7f:13:8e:b8:1e:e2:
6d:ba:75:34:d3:9e:98:a9:1e:ae:17:46:47:8e:00:
ff:89:7c:21:2f:3d:dd:19:07:24:c9:06:bc:7b:09:
12:8f:01:24:a3:79:b6:e7:58:4e:f7:43:e2:c2:32:
fc:77:ba:41:a7:b2:c7:7d:f2:c9:b8:cb:ff:6c:6a:
c1:4d:f5:bf:50:b9:80:a5:e1:0c:b7:d0:f5:a8:0e:
ae:95:cc:5b:a4:0b:ca:c6:d6:54:38:15:46:a6:b4:
10:87:dc:d1:f9:6f:26:1e:24:91:48:c2:00:23:98:
93:6a:de:6e:e9:49:2a:a2:d0:5a:f8:4a:ec:3f:8f:
06:48:2f:af:bb:7f:02:88:d7:bd:07:3a:89:e3:f7:
87:86:75:27:ee:cd:44:39:6b:56:76:b9:96:22:4c:
3a:e1:1c:f3:ab:14:c6:ec:c8:ef:0a:da:6a:14:51:
e6:3a:24:4b:88:b3:ef:75:81:80:de:43:a7:17:22:
01:de:58:35:cd:60:13:94:8f:a6:6f:a9:4e:c6:33:
5c:04:8b:e8:85:79:f7:c0:79:eb:8f:44:f7:e2:44:
f4:44:85:7d:84:5e:13:aa:5d:58:9f:a2:13:1f:9e:
e6:71:6b:d9:de:c7:4e:0d:61:97:8d:9f:28:4e:08:
dc:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:2B:10:62:DF:0A:A9:59:9A:6C:DA:5B:D6:BE:8F:F1:09:82:E2:EE
X509v3 Authority Key Identifier:
keyid:BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/qSsQYt8KqVmabNpb1r6P8QmC4u4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.157.42.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:8e:61:1f:dc:fd:ff:57:af:51:0b:ba:f3:4b:b5:1b:3f:a5:
55:4c:42:e6:eb:a2:2f:d2:f9:49:16:e1:98:db:44:30:04:38:
99:42:94:9d:b7:e6:f6:d3:09:65:27:8e:db:fb:80:55:d0:23:
fd:76:cc:a2:26:6c:31:c6:ec:94:27:bd:f3:8d:ac:5b:88:e2:
f0:da:88:9b:ee:85:b1:aa:72:6a:9e:2b:3c:0b:ee:a5:f0:f4:
98:28:00:e6:c4:09:f5:cb:b0:c4:c6:39:d6:f7:60:44:88:85:
7b:03:8b:ce:fd:37:2d:24:b4:16:ec:4d:8e:65:e3:18:a8:9e:
6a:5e:cf:a4:1b:fd:ed:4f:fe:b2:10:35:ed:54:84:df:2c:60:
5a:8a:38:11:7d:09:a9:63:e2:10:21:d0:22:c1:45:61:09:03:
06:02:6e:f8:b3:44:b6:98:75:9a:f3:1c:9f:5d:65:d3:01:62:
2f:56:4a:fc:88:82:93:9f:4d:54:36:d3:ab:2a:2d:ab:99:43:
dd:43:62:f9:c3:a6:b6:c6:95:96:c1:27:99:81:5d:5e:f0:e6:
0c:ab:6f:6b:0f:31:74:08:e7:d3:4d:f6:ca:97:68:51:67:bd:
98:aa:ca:f0:ab:71:81:ed:58:ad:eb:11:46:10:d9:5f:47:6b:
fd:87:2b:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org