Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/fTblSurx4b_QAw3QOWica0gH1xg.roa
File: fTblSurx4b_QAw3QOWica0gH1xg.roa (raw, json)
Hash identifier: +IeBLAE3u4X925fs+VvlcBZVETqXvtcxFr8WBveyG/M=
Subject key identifier: 7D:36:E5:4A:EA:F1:E1:BF:D0:03:0D:D0:39:68:9C:6B:48:07:D7:18
Certificate issuer: /CN=CA1B71EFAC6F6AA43027609C18A734982764554B
Certificate serial: 0940
Authority key identifier: CA:1B:71:EF:AC:6F:6A:A4:30:27:60:9C:18:A7:34:98:27:64:55:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/fTblSurx4b_QAw3QOWica0gH1xg.roa
Signing time: Tue 29 Sep 2020 10:09:14 +0000
ROA not before: Tue 29 Sep 2020 10:09:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17408
IP address blocks: 103.138.106.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2368 (0x940)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CA1B71EFAC6F6AA43027609C18A734982764554B
Validity
Not Before: Sep 29 10:09:14 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7D36E54AEAF1E1BFD0030DD039689C6B4807D718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:84:e7:0c:83:f2:0a:0f:13:83:39:91:c7:2b:
76:64:32:45:52:c3:0a:1f:28:4c:2b:ac:de:18:2e:
d5:ae:a2:33:e1:2b:d9:6d:12:62:ff:22:db:53:8a:
68:e1:2c:ac:b5:63:97:d3:da:5c:0b:11:69:94:0d:
08:74:af:79:52:99:67:35:43:18:38:c2:4b:87:4f:
66:75:c5:c5:bd:50:ac:6d:99:4a:87:6a:93:55:fa:
01:12:ea:aa:f8:4e:7c:35:36:6d:1e:d4:05:a8:0a:
cd:48:50:de:22:a7:18:63:82:ed:5b:1f:60:b2:fe:
d9:5e:bb:f1:3d:1d:7a:5a:2a:1f:f1:87:71:a1:52:
40:6a:22:12:8b:75:94:f0:de:8a:b4:d9:86:b5:0f:
d5:9c:ec:92:13:c0:52:30:f1:5b:bf:1c:22:eb:80:
65:58:4e:f9:d5:b3:fc:bb:0f:20:9a:ab:34:42:29:
5c:b2:22:64:14:5d:18:20:45:2b:09:b5:3e:57:c1:
49:8b:aa:90:e8:c2:fe:4c:6e:9c:ba:6e:a4:81:36:
23:68:1d:2e:b8:f4:57:62:9c:22:20:0d:c4:fd:4c:
f4:49:71:05:c8:b6:32:c8:a1:33:7c:f4:c3:a9:83:
4b:d8:37:8f:20:36:5a:1b:13:7c:66:63:8f:d0:54:
fb:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:36:E5:4A:EA:F1:E1:BF:D0:03:0D:D0:39:68:9C:6B:48:07:D7:18
X509v3 Authority Key Identifier:
keyid:CA:1B:71:EF:AC:6F:6A:A4:30:27:60:9C:18:A7:34:98:27:64:55:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/yhtx76xvaqQwJ2CcGKc0mCdkVUs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/yhtx76xvaqQwJ2CcGKc0mCdkVUs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANTEASY/fTblSurx4b_QAw3QOWica0gH1xg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.106.0/23
Signature Algorithm: sha256WithRSAEncryption
46:3b:13:8c:f2:2e:2d:98:15:28:28:46:a1:4a:92:84:07:94:
6c:73:0e:8f:8a:c8:05:f7:67:96:0a:ea:9a:19:9d:df:1f:54:
73:98:fe:f5:65:ac:99:e9:26:e6:e8:3a:0c:2b:c7:39:4a:7a:
99:46:d7:80:ee:40:ef:6e:81:70:d8:ed:a5:aa:da:79:b4:81:
99:e1:07:29:de:3e:96:da:04:6c:5a:21:f5:da:ae:17:e5:2a:
3f:46:4a:6e:e1:8f:7c:ca:e2:79:19:11:5a:b1:4a:2a:de:50:
7e:1e:99:7e:4d:a1:43:13:84:00:11:05:47:a7:7b:a7:bd:9e:
32:c1:08:27:b7:cc:6b:88:f0:e4:98:b2:72:77:01:dc:a6:37:
31:97:77:66:5a:e6:2c:78:cb:61:cc:19:00:c4:78:1f:a4:92:
fe:b0:ff:aa:53:b4:24:3d:d7:e9:43:39:24:42:b3:e7:9f:96:
ef:97:39:0a:d9:10:2a:fa:ff:20:be:ee:be:33:c4:87:25:68:
8b:d4:87:ac:9f:8f:e4:67:67:3e:cd:7a:f2:e0:c0:0e:67:e2:
69:c9:73:d0:ec:7b:55:c2:ec:df:6d:a3:39:2d:fa:f8:a6:eb:
cb:63:ec:03:ab:67:05:26:de:33:3c:5a:02:87:4e:cd:4a:4c:
41:e3:da:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org