Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/rG5fy08u3GTNEscNSTf2Y6xR4vw.roa
File: rG5fy08u3GTNEscNSTf2Y6xR4vw.roa (raw, json)
Hash identifier: fFScyG3fPk/egpniBlisWvV+kvkZVzLbw+fK+SZ/6gs=
Subject key identifier: AC:6E:5F:CB:4F:2E:DC:64:CD:12:C7:0D:49:37:F6:63:AC:51:E2:FC
Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D
Certificate serial: 0F1C
Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/rG5fy08u3GTNEscNSTf2Y6xR4vw.roa
Signing time: Sun 07 Feb 2021 12:47:58 +0000
ROA not before: Sun 07 Feb 2021 12:47:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131636
IP address blocks: 103.130.124.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3868 (0xf1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D
Validity
Not Before: Feb 7 12:47:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AC6E5FCB4F2EDC64CD12C70D4937F663AC51E2FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:dc:ee:aa:32:7c:24:8e:ca:1a:b0:4c:3f:35:
ce:af:ab:b0:1d:14:7a:ee:0d:aa:f9:8d:1b:61:3d:
e9:e0:2b:b5:2e:af:6e:81:06:6d:ed:aa:e9:18:52:
26:43:65:c6:dc:15:0b:7b:77:6b:87:79:15:86:66:
15:44:40:97:75:b3:ff:39:33:40:14:aa:a4:24:98:
54:89:1e:f7:1b:7d:d4:2f:f6:68:81:20:11:1c:6e:
dc:aa:e8:c8:0e:8d:3a:5b:64:5e:aa:83:10:c0:c5:
97:0b:b9:61:79:3f:8a:1e:8a:89:85:f9:f0:ee:f8:
58:05:ee:95:88:7d:b9:d8:8d:98:7f:13:85:96:7a:
14:04:56:b2:20:09:8d:08:a7:38:90:09:6f:e1:ca:
c9:b4:8f:a4:b2:1c:88:0d:c0:84:53:e1:33:94:d0:
fd:72:9a:b0:49:07:3a:4a:94:7f:ed:08:e4:00:33:
1e:d5:27:6a:f7:9a:c4:93:7e:58:04:b1:7d:36:ae:
25:2b:0f:cb:ca:4d:aa:31:0a:c5:b3:4e:14:c0:2f:
c1:a4:b4:9a:f4:cb:11:52:33:35:4d:3b:aa:fe:51:
2d:a1:d7:5a:b2:b7:76:f7:6a:d6:e7:0a:a8:bd:1a:
6c:68:89:b7:73:d9:b5:52:4f:09:9a:73:e3:3a:69:
ed:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:6E:5F:CB:4F:2E:DC:64:CD:12:C7:0D:49:37:F6:63:AC:51:E2:FC
X509v3 Authority Key Identifier:
keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/rG5fy08u3GTNEscNSTf2Y6xR4vw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.124.0/22
Signature Algorithm: sha256WithRSAEncryption
79:b4:bd:90:39:e3:78:f5:44:14:ca:fc:19:d5:63:6c:35:16:
a8:6a:20:fc:ca:00:96:dd:2b:27:5e:98:f1:3d:4a:9f:74:cb:
54:44:c6:fc:79:92:b0:f2:26:03:6b:e9:d1:fd:80:f5:08:66:
80:dc:88:79:55:bc:66:4a:81:f9:15:b4:24:33:1e:b6:08:e8:
ab:3f:e5:d0:73:67:90:ca:ed:3d:a3:3f:e8:84:f6:db:ca:72:
e2:6e:96:5d:86:70:3a:2c:b0:27:4f:08:02:57:47:fa:f1:e2:
b2:7b:ab:12:be:a6:50:0c:4e:c0:c9:e5:88:ac:74:86:d3:41:
63:b6:93:d0:07:74:bf:a1:f1:05:38:6a:13:6e:63:1b:27:9f:
39:f4:2e:36:db:13:4c:1a:6e:2a:a1:1f:79:c0:32:ed:89:23:
39:b2:88:95:bc:36:b4:a3:ca:63:b4:4f:24:10:e5:f2:8d:30:
19:4e:af:d7:0c:46:ec:79:ce:c6:16:bb:26:74:cb:99:8c:fd:
1e:bc:2f:8f:ae:81:35:42:94:b1:0e:a7:72:86:ff:e1:fa:a5:
2b:5d:10:0e:ea:49:d2:8f:59:59:b9:49:99:53:13:33:48:57:
c3:6f:5a:79:6c:1d:87:d8:63:52:3c:de:e9:92:ac:b5:b2:28:
c4:9c:60:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org