Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/Cq_rT4XuSYDSpaN2kAt-JKxMVsw.roa
File: Cq_rT4XuSYDSpaN2kAt-JKxMVsw.roa (raw, json)
Hash identifier: HD7DdoG38BVSWc8DiPYmdeMzG3QONryh/vUmzR4OFAE=
Subject key identifier: 0A:AF:EB:4F:85:EE:49:80:D2:A5:A3:76:90:0B:7E:24:AC:4C:56:CC
Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D
Certificate serial: 1037
Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/Cq_rT4XuSYDSpaN2kAt-JKxMVsw.roa
Signing time: Thu 24 Mar 2022 06:05:32 +0000
ROA not before: Thu 24 Mar 2022 06:05:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131636
IP address blocks: 103.130.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4151 (0x1037)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D
Validity
Not Before: Mar 24 06:05:32 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0AAFEB4F85EE4980D2A5A376900B7E24AC4C56CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:9b:ef:83:fc:da:ac:e0:b6:a1:8b:f3:cc:d8:
8c:27:8f:0e:b8:7b:1c:9d:93:60:d3:c0:0f:70:95:
2d:95:7c:59:79:47:d6:75:e9:83:9c:20:0f:dc:b4:
30:a1:97:5a:5b:b3:f9:76:3e:ec:a9:ee:30:fd:53:
5e:b9:13:64:89:34:69:4d:72:97:19:0c:aa:c9:ee:
bb:c6:a6:5d:5e:7a:e5:ba:e3:1d:d4:14:62:cb:af:
42:be:46:22:55:95:aa:eb:2d:86:cc:88:10:a8:8b:
4e:43:22:7b:61:3f:ec:f1:f5:3a:7c:cf:ad:e7:8f:
87:a3:54:e6:51:d3:b5:e2:f2:f5:11:54:6b:4e:fd:
be:53:0e:fc:10:3a:a3:43:17:9b:a1:74:4e:c1:76:
81:0e:2e:08:39:4b:ee:4a:d5:19:47:9b:1e:a9:c5:
37:27:85:23:ae:1d:3e:b9:13:b3:99:a0:cc:8d:9c:
f8:b6:70:a9:4e:42:aa:a1:b4:80:e8:7b:c3:84:a4:
67:14:7a:62:18:07:8f:c9:bc:52:1a:c4:39:ac:2d:
33:bb:30:8f:66:f6:80:35:4b:1a:51:83:4b:95:73:
10:c2:79:ee:e2:49:6e:f1:b6:fc:1c:8e:d4:24:7e:
b3:83:4f:aa:e8:6e:96:a4:2b:3f:0c:04:5b:83:fa:
ca:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:AF:EB:4F:85:EE:49:80:D2:A5:A3:76:90:0B:7E:24:AC:4C:56:CC
X509v3 Authority Key Identifier:
keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/Cq_rT4XuSYDSpaN2kAt-JKxMVsw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.127.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:de:f1:9d:d1:62:4d:43:42:81:4a:d3:b0:9e:f7:58:ce:d3:
a7:f9:80:3b:2a:07:a6:ef:da:ef:bd:65:74:4c:85:61:8f:5a:
58:0a:e1:3d:5d:f2:49:98:da:a2:be:11:ae:dd:d2:77:fb:43:
9e:b0:08:07:d3:be:a1:5c:00:e1:ba:dc:23:5b:7e:76:cc:43:
3e:c4:39:81:9e:32:13:c7:94:ea:5d:75:6c:89:3c:f9:20:61:
18:4c:98:9e:20:6d:67:64:c0:f0:3f:d8:69:28:f3:72:29:0c:
66:29:6d:0e:22:82:ea:f2:f5:09:3e:ed:35:d4:2f:99:22:9e:
38:70:3f:6f:2f:b0:77:51:0d:11:9c:b5:39:8e:7f:1c:5e:8d:
d5:85:b5:92:a4:f3:1f:ac:ba:d8:53:44:b7:be:bb:2b:b1:29:
29:68:8d:8f:b4:68:54:31:bf:78:4f:8c:4b:5d:ad:37:6d:96:
9e:a8:54:89:ac:15:db:74:2e:63:f5:ad:ce:53:c8:4c:ea:dc:
08:a7:37:d6:6f:66:85:af:40:a7:67:8d:d8:6a:16:0d:5a:8e:
ef:f3:b8:d1:44:4e:50:d6:48:45:1c:fe:87:3f:57:c6:81:24:
6a:de:b8:fd:8c:45:18:9f:ca:e4:34:73:ee:8e:18:28:7e:cf:
6c:35:8e:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org