Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/Nv8YoT-xwoa4fzBrQ-3_fe-AkdQ.roa
File: Nv8YoT-xwoa4fzBrQ-3_fe-AkdQ.roa (raw, json)
Hash identifier: VErYGfQtEO6nd+H9OBvyhCaVo5AbYx6EyNnsakNVucE=
Subject key identifier: 36:FF:18:A1:3F:B1:C2:86:B8:7F:30:6B:43:ED:FF:7D:EF:80:91:D4
Certificate issuer: /CN=C3FC116A3CCB105AB50DA417679B1F9C70A4BD97
Certificate serial: 01C3
Authority key identifier: C3:FC:11:6A:3C:CB:10:5A:B5:0D:A4:17:67:9B:1F:9C:70:A4:BD:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/w_wRajzLEFq1DaQXZ5sfnHCkvZc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/Nv8YoT-xwoa4fzBrQ-3_fe-AkdQ.roa
Signing time: Tue 14 Mar 2023 10:07:15 +0000
ROA not before: Tue 14 Mar 2023 10:07:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 138997
IP address blocks: 103.169.126.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 451 (0x1c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3FC116A3CCB105AB50DA417679B1F9C70A4BD97
Validity
Not Before: Mar 14 10:07:15 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=36FF18A13FB1C286B87F306B43EDFF7DEF8091D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f7:9f:44:58:49:48:73:ee:f0:e1:15:13:13:
e1:a7:18:b3:f8:78:c8:be:2c:fe:4c:53:ea:78:8e:
bb:52:cf:8a:c9:31:5d:fb:fd:d2:5d:9c:ce:6b:4f:
fa:f1:d0:38:73:ed:ab:d1:35:2d:a2:41:b9:4a:8a:
52:75:7c:d9:69:c7:0a:8c:2e:d2:7d:50:02:23:c1:
62:f5:1a:f7:da:39:26:bb:be:4c:2a:3d:c7:78:03:
92:51:4d:ae:48:b9:23:7e:b0:96:fa:c9:f8:5b:c6:
14:bd:f3:24:e9:c1:2f:48:56:8c:62:fb:b1:8d:eb:
60:82:28:a7:37:1e:cf:ac:7a:f5:82:47:a6:7e:f3:
a1:75:28:5c:02:1c:2f:a0:53:78:51:d4:a6:63:2d:
15:d5:94:e8:a5:fe:39:4a:3f:b1:21:29:c7:47:bb:
42:46:9f:64:d8:0e:27:c1:b6:d1:ac:68:38:87:d9:
a2:de:c0:a2:63:2f:20:db:6f:c4:49:e0:b2:bc:63:
c7:18:86:3e:5f:ed:5d:f0:4e:b5:53:f6:00:44:e1:
38:4b:58:88:e8:b0:98:40:bb:6b:09:0c:72:33:63:
3a:aa:c4:b3:63:11:68:03:a8:80:b5:25:47:ad:75:
2d:06:e4:0f:6d:98:62:9a:aa:85:06:87:34:e4:05:
07:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:FF:18:A1:3F:B1:C2:86:B8:7F:30:6B:43:ED:FF:7D:EF:80:91:D4
X509v3 Authority Key Identifier:
keyid:C3:FC:11:6A:3C:CB:10:5A:B5:0D:A4:17:67:9B:1F:9C:70:A4:BD:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/w_wRajzLEFq1DaQXZ5sfnHCkvZc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/w_wRajzLEFq1DaQXZ5sfnHCkvZc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/Nv8YoT-xwoa4fzBrQ-3_fe-AkdQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.169.126.0/23
Signature Algorithm: sha256WithRSAEncryption
89:25:e2:34:9c:4b:37:18:d4:38:d0:43:75:db:ef:94:c6:33:
79:e3:85:6f:e5:42:a1:51:f0:4c:7a:c3:7b:4c:9c:f4:0d:d0:
72:3e:d1:73:bd:10:7f:a8:d3:52:74:8a:99:7e:7e:ab:ce:9b:
89:58:d9:d0:1b:d8:9b:09:b8:6e:da:85:13:f7:65:45:b2:d6:
cb:bb:78:0f:ff:f0:f5:8d:89:fd:6b:32:6a:45:26:ad:e7:4d:
32:f8:ce:d1:d5:85:6a:a9:b5:44:fb:71:f2:10:3f:f2:11:21:
59:bf:b5:5f:0c:1e:92:45:24:a8:d1:eb:d6:99:3f:d5:43:46:
7f:de:44:bb:fe:47:1d:73:b1:fe:6c:a2:67:33:4d:97:2a:18:
68:0c:58:00:ce:d9:72:a5:f0:15:b7:c8:2d:48:0f:ee:2f:89:
94:cb:ec:34:0c:d6:ed:01:5e:d9:f5:83:fc:3d:49:cb:29:7b:
f9:8f:29:e8:3f:1c:eb:f0:7b:e3:38:0b:0c:b9:ea:e1:77:c6:
4d:2f:05:9f:67:13:b2:6e:47:3f:e2:62:4f:ca:16:de:2b:99:
aa:34:8e:3e:63:3a:57:b8:e7:86:dc:9e:fd:5b:b8:e6:a9:d0:
12:cf:6e:9d:3f:20:10:87:9e:82:89:ea:12:94:0b:b5:60:ed:
5f:f5:e1:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org