Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/Tqv0fqsvjzjQlOMMS33t1dCJy84.roa
File: Tqv0fqsvjzjQlOMMS33t1dCJy84.roa (raw, json)
Hash identifier: ZxaNQvOhND1dLfYokgQHfR984I4zpsCRtf1gPFFpdLE=
Subject key identifier: 4E:AB:F4:7E:AB:2F:8F:38:D0:94:E3:0C:4B:7D:ED:D5:D0:89:CB:CE
Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Certificate serial: 0A4D
Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/Tqv0fqsvjzjQlOMMS33t1dCJy84.roa
Signing time: Thu 15 Sep 2022 02:37:48 +0000
ROA not before: Thu 15 Sep 2022 02:37:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17408
IP address blocks: 103.123.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2637 (0xa4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Validity
Not Before: Sep 15 02:37:48 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4EABF47EAB2F8F38D094E30C4B7DEDD5D089CBCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:da:f4:a4:11:1f:84:5c:d6:9a:33:85:fd:6e:
d3:16:e8:da:57:9c:c4:7b:4a:62:7e:33:0f:2b:5d:
7c:e5:8a:84:28:72:0f:c5:34:7c:c9:b3:c2:bc:cb:
b3:60:2d:12:55:6f:43:9d:16:c7:86:81:ae:bd:d5:
a1:35:ee:ff:f2:0e:ba:62:d8:94:49:5d:87:22:86:
0b:d7:06:5a:c2:b4:af:0d:10:0b:a8:7d:df:ab:f0:
89:59:09:ea:79:43:53:33:1f:87:e2:0f:80:46:ea:
4d:74:f3:38:32:8f:6e:c1:d5:33:37:df:e3:9f:70:
53:c2:f6:98:c6:87:bf:c7:90:b8:6b:fb:70:8b:f1:
89:97:f6:f6:1a:0b:b7:da:ea:0e:6e:c6:0f:f7:f5:
72:7e:b5:a1:5c:21:9e:d5:97:f3:61:d9:77:21:08:
9d:f9:fe:2d:cc:0d:08:f5:f1:b5:ce:70:56:fa:9d:
cb:bd:cb:08:ae:9e:59:b9:b6:83:13:58:c1:4c:e1:
ac:12:3a:a9:fe:15:c6:08:05:86:ca:50:0a:ab:2c:
f7:31:68:8a:d2:b0:90:a5:07:08:ab:bb:fe:1c:07:
30:c3:05:0b:fc:97:ed:69:5d:97:68:6e:33:40:a5:
86:97:e0:62:ad:00:41:a5:1d:12:f2:01:65:6c:26:
b5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:AB:F4:7E:AB:2F:8F:38:D0:94:E3:0C:4B:7D:ED:D5:D0:89:CB:CE
X509v3 Authority Key Identifier:
keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/Tqv0fqsvjzjQlOMMS33t1dCJy84.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.140.0/24
Signature Algorithm: sha256WithRSAEncryption
03:b6:1f:aa:16:09:fa:7c:ae:a4:ab:80:fd:f4:07:b1:bf:85:
17:f6:b7:ef:c2:4d:94:0f:eb:01:6c:ee:57:9f:6b:22:68:95:
d8:56:d9:5d:a0:6f:5c:ab:62:59:d3:de:8f:98:76:b7:a7:08:
f5:c2:04:6f:ce:1e:78:4f:02:2d:ac:cd:e3:49:00:11:15:99:
22:eb:6d:74:18:c2:6d:52:6c:26:4a:ef:30:8f:01:02:64:c1:
3b:e8:7d:84:2c:ce:7c:6b:84:c6:2f:68:10:d7:8f:a0:2b:14:
ca:40:f6:0a:9b:b0:6c:df:36:bf:a1:1a:90:49:d7:5c:fa:de:
5e:2b:b7:98:f8:c5:d3:3a:cd:21:b5:25:cf:eb:45:7c:67:99:
df:28:90:7b:4a:14:9f:56:f1:e9:94:da:6e:da:7c:b9:1e:a4:
a5:63:e3:b8:29:a8:8a:bf:f5:fb:f1:99:64:3d:7c:a4:9b:e9:
29:96:44:f3:68:77:b5:03:c0:ef:c1:34:ed:f8:b0:8b:b0:78:
5b:45:39:b7:1f:a3:38:08:73:a8:07:0f:21:3f:ee:4f:c4:75:
7b:50:d9:64:71:92:56:f9:01:b0:9d:fa:23:d3:e9:84:44:a6:
98:e6:27:72:53:95:df:44:eb:ca:de:0f:00:1a:7a:75:79:dc:
19:40:1c:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org