Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/Lj4nCRVFLxeWq0x6mcSk_M856Dk.roa
File: Lj4nCRVFLxeWq0x6mcSk_M856Dk.roa (raw, json)
Hash identifier: kZm7SRsYMoQaZMBpQLOPJlDl9OmG8Vp7JNThVEBagSQ=
Subject key identifier: 2E:3E:27:09:15:45:2F:17:96:AB:4C:7A:99:C4:A4:FC:CF:39:E8:39
Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Certificate serial: 08C2
Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/Lj4nCRVFLxeWq0x6mcSk_M856Dk.roa
Signing time: Sun 07 Feb 2021 13:04:43 +0000
ROA not before: Sun 07 Feb 2021 13:04:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 103.123.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2242 (0x8c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Validity
Not Before: Feb 7 13:04:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2E3E270915452F1796AB4C7A99C4A4FCCF39E839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:89:ff:a8:67:d2:e0:6f:ab:cd:af:e3:9d:6e:
4c:4d:5c:c6:a8:fb:9f:93:25:13:f4:ce:34:52:3e:
8c:0d:81:a0:55:c5:c1:c5:c7:a2:e3:0c:6f:31:b6:
0c:46:93:7a:e6:7b:00:22:e9:cc:06:ee:d2:01:f1:
03:e2:3d:d8:20:28:f3:71:a1:de:f6:ed:7a:bc:37:
37:3a:40:67:c0:7d:ff:b9:e5:70:cb:a0:7b:82:61:
9c:67:e3:2b:a4:70:e0:ed:11:3a:3d:2c:af:fb:0d:
19:54:66:6a:89:42:1d:b7:4f:f9:b9:91:7c:b7:4b:
e1:5b:9c:3f:23:3e:73:25:70:d2:ca:2a:d5:da:b8:
05:db:e9:b6:52:b0:3e:3d:72:92:d1:2f:3d:3b:47:
6f:72:43:9d:c8:3f:50:b3:24:3d:a3:ba:de:26:cb:
ef:c8:c5:04:f1:19:77:39:cb:44:3d:49:51:2d:94:
27:e4:bb:19:83:b9:b9:6e:63:44:8e:8f:01:2b:08:
2c:05:53:42:e7:da:7b:89:22:bc:ee:20:11:12:7e:
ae:86:ae:8c:71:4f:04:49:e7:70:85:e0:07:6e:57:
83:3f:3e:a5:3c:ad:fa:c4:aa:b4:ab:41:ff:19:95:
3e:7f:93:2b:65:5a:5d:d8:6e:3a:05:74:de:8c:e9:
ac:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:3E:27:09:15:45:2F:17:96:AB:4C:7A:99:C4:A4:FC:CF:39:E8:39
X509v3 Authority Key Identifier:
keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/Lj4nCRVFLxeWq0x6mcSk_M856Dk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.140.0/24
Signature Algorithm: sha256WithRSAEncryption
96:f8:06:09:78:cf:a4:d9:60:7f:67:0e:9c:65:dc:a7:ac:39:
78:47:1b:b1:21:92:36:a2:e3:e8:7b:e8:64:5e:42:67:e3:b3:
7b:db:d8:3c:92:fe:3d:59:41:c1:c3:d8:0f:98:e3:9e:e8:37:
65:2a:51:33:9b:a2:1d:fb:f0:a9:54:f5:85:b8:30:de:0a:df:
02:79:46:15:81:ec:bd:93:25:72:35:bc:87:92:d2:3d:ed:0c:
e4:95:d0:30:2b:93:2e:0e:fb:b4:23:e0:7a:bc:50:08:ac:b9:
8b:44:51:d4:79:05:f8:07:9b:d8:08:fa:c9:e9:3a:84:0f:4d:
1c:50:c2:66:a5:df:af:ff:29:d2:67:0d:5e:36:09:b7:60:04:
7a:e5:a6:a9:4a:19:d6:e3:bb:d4:81:e7:81:79:43:36:b1:0b:
ce:04:be:fb:df:98:9f:4b:b8:39:04:72:db:b3:4e:06:4f:5e:
c3:46:c4:5b:2a:ca:a0:66:78:47:83:86:7a:f1:46:97:23:73:
57:4b:20:da:99:19:36:1a:48:35:42:a0:1d:42:49:01:50:c8:
5b:07:41:37:dc:f9:2b:ba:2f:e2:85:c9:5a:05:1e:ae:51:21:
d1:c7:ce:c6:8d:90:7c:05:b2:c8:0f:47:b3:58:73:c0:2d:2c:
98:c2:ab:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org