Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/H-fSd2rK5AXqCMomPieVOcRgJ0U.roa
File: H-fSd2rK5AXqCMomPieVOcRgJ0U.roa (raw, json)
Hash identifier: ex1cK85sRAgrIoBhytvEmD1cNmNTbjyFXZuiIX30kI4=
Subject key identifier: 1F:E7:D2:77:6A:CA:E4:05:EA:08:CA:26:3E:27:95:39:C4:60:27:45
Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D
Certificate serial: 0FBA
Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/H-fSd2rK5AXqCMomPieVOcRgJ0U.roa
Signing time: Wed 29 Sep 2021 02:51:55 +0000
ROA not before: Wed 29 Sep 2021 02:51:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131636
IP address blocks: 103.130.124.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4026 (0xfba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D
Validity
Not Before: Sep 29 02:51:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1FE7D2776ACAE405EA08CA263E279539C4602745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f4:08:89:74:9f:73:61:45:9c:e3:4c:ef:27:
ba:38:97:1e:73:ae:41:a0:f7:fb:f7:dc:d1:f8:5a:
52:27:b5:8f:4d:7e:b9:b8:5f:86:d6:fa:38:07:7f:
aa:eb:0d:77:a1:f4:e3:5b:00:7a:d4:ba:87:9c:1c:
27:bf:08:ba:e5:59:3b:04:86:85:25:55:24:b7:92:
0f:d8:22:0f:46:f2:21:ab:5b:64:d1:13:06:c6:81:
7b:f9:23:c5:fd:13:58:6a:a0:b6:fc:5f:9a:91:4c:
e9:fd:2e:c7:48:e8:4a:7a:fc:2f:71:aa:e8:02:a0:
de:8a:6c:95:c1:2f:97:08:76:28:ed:35:ce:61:b4:
45:1d:4d:9b:96:76:2b:8f:f0:62:7c:b2:20:9c:27:
7c:a0:31:12:5e:9b:d1:66:b7:2f:12:b4:5f:ab:fd:
31:ed:2c:dc:d2:1d:50:f5:8d:9b:5d:7d:e4:0c:96:
da:25:5f:38:f7:7e:a2:ac:f5:f5:cf:1b:2a:f8:b4:
16:86:d7:cc:9f:cb:0b:29:03:ff:d0:9f:fa:80:39:
9c:1a:1c:d5:a1:81:6c:88:35:d2:31:0b:a1:e1:f5:
d7:e3:1e:72:5c:ff:e6:8e:2e:83:d4:51:51:1b:10:
58:e8:2b:f7:58:5e:e5:8d:8d:64:a8:f0:b4:c7:48:
f3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:E7:D2:77:6A:CA:E4:05:EA:08:CA:26:3E:27:95:39:C4:60:27:45
X509v3 Authority Key Identifier:
keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/H-fSd2rK5AXqCMomPieVOcRgJ0U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.124.0/22
Signature Algorithm: sha256WithRSAEncryption
18:52:0c:69:bf:bb:fd:db:78:88:f8:9f:7a:14:bd:3f:3e:e6:
a2:ee:b1:a5:5b:5d:57:90:bb:0d:a8:3f:52:cb:77:27:45:b0:
de:d9:ba:d4:63:cb:9c:29:56:96:aa:23:c0:f1:70:69:9b:06:
e2:a7:d8:8a:f6:5b:43:35:75:5e:8e:28:f6:6c:fb:1c:80:0e:
95:e7:1c:38:6e:fa:c1:40:fb:1c:2f:15:ce:91:ae:23:6b:43:
96:33:ee:18:f9:06:e8:d5:0e:b1:05:35:2c:d4:c6:a5:3f:cd:
cc:37:68:eb:65:8a:d7:ca:24:4c:46:17:25:35:d8:1c:11:63:
5b:9b:f7:07:83:6f:0b:61:02:95:e2:9e:0b:ac:d8:5b:e4:f1:
f7:3d:82:02:a5:40:63:60:8b:1b:c9:6b:84:60:f5:b3:e2:de:
1a:5d:c1:56:fd:82:d0:94:15:cf:9a:e0:1c:7c:c9:cc:d9:b7:
44:85:5d:9f:fd:35:a2:4d:9c:f2:f1:5b:95:b2:f3:bc:0c:8c:
7b:0d:a8:9c:30:63:42:c9:a3:ac:72:58:e8:4c:94:3c:2b:ac:
31:68:ed:6e:a8:7e:35:12:f2:61:83:ff:25:2d:18:fb:c9:f2:
0a:40:19:dc:23:75:94:62:6f:77:80:4a:45:e4:38:3b:f2:d5:
03:5f:23:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org