Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/PB8BTaFGoKhVdlkdjFhcbehBwrU.roa
File: PB8BTaFGoKhVdlkdjFhcbehBwrU.roa (raw, json)
Hash identifier: 01AqeV0YzojJO73K2YTHmUaBYDPaB0eg8kfcNkZH7GU=
Subject key identifier: 3C:1F:01:4D:A1:46:A0:A8:55:76:59:1D:8C:58:5C:6D:E8:41:C2:B5
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0774
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/PB8BTaFGoKhVdlkdjFhcbehBwrU.roa
Signing time: Tue 29 Sep 2020 09:51:43 +0000
ROA not before: Tue 29 Sep 2020 09:51:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131149
IP address blocks: 103.17.8.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1908 (0x774)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Sep 29 09:51:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3C1F014DA146A0A85576591D8C585C6DE841C2B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a4:f4:aa:79:a8:7c:f2:9c:75:1e:9e:fe:c5:
44:b3:4e:62:2a:7f:8a:6a:02:d7:40:f9:84:15:a4:
ba:1d:a3:fc:86:c0:60:83:db:1b:cc:ee:69:d9:18:
7d:2f:25:60:8a:72:aa:5a:32:36:34:d2:1d:23:90:
f0:06:88:54:cf:04:9f:18:5b:2e:06:a4:93:ba:63:
71:ef:a9:53:3d:a4:85:59:13:f5:ac:6c:e9:2b:9c:
e6:6f:24:e2:c9:59:8e:9e:e8:2b:0d:5b:ad:96:42:
d0:0f:f0:58:6f:3b:51:da:7c:03:ff:31:a5:37:97:
f5:cf:a9:f9:68:dc:8d:5c:71:5f:58:ab:d6:34:93:
2b:5e:95:ae:b4:cc:16:70:99:74:43:57:ce:63:ff:
03:fd:51:f7:2e:91:88:74:85:6b:64:01:32:43:da:
b2:a4:34:89:e5:cc:3d:e7:27:f0:81:dd:df:11:2a:
51:67:eb:ce:f5:8c:28:71:a2:27:42:98:5d:05:a4:
ae:04:01:cd:97:0c:31:a8:e5:6e:61:86:43:43:b4:
a8:db:ed:d1:d7:53:6a:e7:b8:2c:e0:74:78:81:4c:
17:db:0e:9b:67:56:89:ab:a6:61:8a:ed:19:c4:9f:
93:50:0a:ef:1f:52:43:08:da:4b:54:09:0e:db:9c:
d4:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:1F:01:4D:A1:46:A0:A8:55:76:59:1D:8C:58:5C:6D:E8:41:C2:B5
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/PB8BTaFGoKhVdlkdjFhcbehBwrU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.17.8.0/22
Signature Algorithm: sha256WithRSAEncryption
25:4d:4c:1d:b1:5f:a0:a2:76:9c:76:5d:ce:88:bd:c6:bb:37:
15:c8:6c:f2:13:c5:62:eb:5a:ce:2a:1a:b1:bc:ec:86:be:04:
aa:c5:51:0c:10:7a:d2:fb:fb:2c:67:10:57:36:a9:84:d6:49:
ba:fd:25:d7:cc:9d:f2:f3:05:fc:1e:6f:07:9e:f1:97:e8:3f:
68:29:22:8b:c0:b2:ac:ce:68:12:56:50:bf:f2:6b:e6:a6:29:
15:76:d5:52:24:2f:d5:07:f4:c5:0f:8a:f4:33:b7:d9:ea:b3:
94:16:be:4f:84:c1:29:4b:d4:20:d8:ae:83:67:b4:10:f2:76:
f1:c1:6d:96:10:da:62:bd:92:0a:89:01:35:9a:95:bd:15:bf:
d5:32:2b:ef:bc:71:f9:34:da:17:09:86:62:81:55:4b:6f:6b:
a9:40:cc:d3:89:25:24:3f:30:d9:55:ee:42:3c:e4:ca:a2:ad:
81:f4:ed:86:ba:df:e1:64:84:95:fb:4b:86:a4:59:12:44:68:
8b:69:b5:45:79:10:49:36:2c:76:bc:02:3d:5d:7e:fa:c6:2a:
ef:34:34:ed:c6:63:8e:16:94:7a:b4:8d:da:ac:42:fa:51:d8:
53:5d:6c:83:89:2d:e3:89:6e:63:4b:b7:2c:07:f5:83:fb:78:
7a:23:1d:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:52 2024 by rpki-client on console-ams.rpki-client.org