Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/Lq0knzoxvVXNvRUl-Y3YOTO3Bcg.roa
File: Lq0knzoxvVXNvRUl-Y3YOTO3Bcg.roa (raw, json)
Hash identifier: Si2cGtotesq6l228HPhoh/fHlwT9bSR7hZR8A6IjM+k=
Subject key identifier: 2E:AD:24:9F:3A:31:BD:55:CD:BD:15:25:F9:8D:D8:39:33:B7:05:C8
Certificate issuer: /CN=CA1B71EFAC6F6AA43027609C18A734982764554B
Certificate serial: 0A8C
Authority key identifier: CA:1B:71:EF:AC:6F:6A:A4:30:27:60:9C:18:A7:34:98:27:64:55:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/Lq0knzoxvVXNvRUl-Y3YOTO3Bcg.roa
Signing time: Sun 07 Feb 2021 12:46:36 +0000
ROA not before: Sun 07 Feb 2021 12:46:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 103.138.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2700 (0xa8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CA1B71EFAC6F6AA43027609C18A734982764554B
Validity
Not Before: Feb 7 12:46:36 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2EAD249F3A31BD55CDBD1525F98DD83933B705C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:49:aa:7c:58:1b:f9:d6:e8:9a:7c:12:72:9e:
7e:5b:3b:c3:04:9e:b0:0c:ed:cd:58:14:9c:f1:a9:
8e:d9:e9:8e:d5:a0:71:6c:a1:2a:93:d8:ab:ff:69:
ea:48:e3:67:d2:ef:f3:e0:9a:1b:a5:24:c9:3c:d3:
97:f3:41:54:ef:fc:9f:2f:e7:25:a8:1c:37:b5:8f:
e2:07:8b:b8:6d:e5:e3:bf:94:29:c2:25:97:3d:64:
d0:38:21:64:1b:88:96:e0:84:80:5a:a5:04:d9:c7:
21:b0:7d:b2:aa:3a:9d:71:eb:6b:73:f7:f1:cd:b3:
ff:8b:6b:15:34:5a:0a:95:ac:98:ad:90:47:d9:cb:
45:1e:1f:2a:d8:ef:61:ef:67:cd:a2:e8:3a:0c:8e:
04:07:f5:e6:ea:b4:ad:97:bb:95:c1:1d:52:87:bf:
db:df:35:03:d4:b1:1c:db:69:c6:30:e2:c6:66:da:
f6:2d:6b:d2:2e:d7:bb:59:9f:32:d9:70:a8:17:35:
ad:74:b5:9a:52:7b:0a:b2:26:20:33:d6:7d:07:80:
1b:a2:8a:29:96:76:78:aa:5f:82:69:e6:22:b2:c8:
c3:90:fa:ac:7a:92:c1:ed:a9:ec:b6:f2:02:b4:ae:
da:d5:50:d7:5e:ea:46:de:cf:d7:90:02:5c:23:69:
c9:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:AD:24:9F:3A:31:BD:55:CD:BD:15:25:F9:8D:D8:39:33:B7:05:C8
X509v3 Authority Key Identifier:
keyid:CA:1B:71:EF:AC:6F:6A:A4:30:27:60:9C:18:A7:34:98:27:64:55:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/yhtx76xvaqQwJ2CcGKc0mCdkVUs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/Lq0knzoxvVXNvRUl-Y3YOTO3Bcg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.107.0/24
Signature Algorithm: sha256WithRSAEncryption
46:0e:19:10:fa:b6:95:a3:01:12:a5:e4:78:de:3c:ca:28:ae:
9c:97:a9:2b:15:1c:cf:63:a1:db:00:fc:27:e7:1c:3f:26:00:
74:df:2d:41:bf:c5:55:f9:5a:62:08:88:58:20:73:b8:d1:f1:
61:5d:fc:00:f2:7d:6d:79:6f:58:68:45:8a:60:d9:6d:8b:2b:
ff:44:84:53:de:b6:1a:a2:33:0a:0d:18:c3:2b:5e:6d:c5:65:
0d:46:32:1a:41:ec:ff:3d:ae:b2:69:4d:7f:e0:b1:b3:52:26:
b5:be:00:52:09:55:4c:f8:ba:3c:d5:72:43:c1:a6:39:1e:09:
56:e9:c3:b3:f1:1f:c6:ef:8c:29:50:b4:d2:d4:c3:8c:34:3b:
a8:f2:7a:aa:ce:35:90:4c:bf:54:00:e3:90:28:01:e5:18:6a:
a3:d0:a0:b2:0f:d1:16:25:fe:08:d9:cc:a3:8a:29:67:2d:ac:
0d:54:44:ea:55:ad:09:4d:fc:f2:c0:67:37:6f:17:f8:0a:84:
48:94:7d:7b:0a:8a:e2:5e:09:c7:8d:50:85:fe:e1:96:48:41:
6b:0a:be:70:d0:56:b2:62:23:41:e6:ad:10:49:70:53:9c:a1:
e4:80:c9:53:cd:45:d6:91:20:79:18:65:08:a4:a6:df:d7:d2:
33:4e:8b:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org