Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUJIN/Hq_2p9pyAaQkTNGnPFnh15CPqKw.roa
File: Hq_2p9pyAaQkTNGnPFnh15CPqKw.roa (raw, json)
Hash identifier: 5YgPf2xPIw1EyBqnm+Xugh9EWnYzvnyT9SUpuEPQdg8=
Subject key identifier: 1E:AF:F6:A7:DA:72:01:A4:24:4C:D1:A7:3C:59:E1:D7:90:8F:A8:AC
Certificate issuer: /CN=3C2AD8671B3753265286D32E46BF06FDF52D0FEF
Certificate serial: 04
Authority key identifier: 3C:2A:D8:67:1B:37:53:26:52:86:D3:2E:46:BF:06:FD:F5:2D:0F:EF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PCrYZxs3UyZShtMuRr8G_fUtD-8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUJIN/Hq_2p9pyAaQkTNGnPFnh15CPqKw.roa
Signing time: Fri 04 Nov 2022 07:06:23 +0000
ROA not before: Fri 04 Nov 2022 07:06:23 +0000
ROA not after: Fri 03 Nov 2023 01:33:04 +0000
asID: 18416
IP address blocks: 103.24.54.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3C2AD8671B3753265286D32E46BF06FDF52D0FEF
Validity
Not Before: Nov 4 07:06:23 2022 GMT
Not After : Nov 3 01:33:04 2023 GMT
Subject: CN=1EAFF6A7DA7201A4244CD1A73C59E1D7908FA8AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b6:51:b2:30:87:a5:ac:40:7c:bf:85:e7:bc:
89:76:b9:a0:80:b1:8a:3b:c6:e3:bb:55:49:92:b6:
7b:3e:06:e9:8b:ea:5b:dd:00:8d:e1:fa:80:c0:aa:
e4:84:0c:16:62:ed:d8:29:93:57:81:56:7d:e8:2c:
4e:7f:96:32:70:b4:ca:da:0d:c7:cb:11:1a:8e:8f:
a9:dd:ab:68:c3:fe:ba:2f:48:cd:32:28:2e:40:0d:
3c:de:43:c2:49:7d:20:31:54:12:5c:b8:eb:ea:3a:
ec:35:22:b3:72:ec:b6:91:e9:6b:6d:a4:8b:bc:55:
87:0d:b2:da:7b:48:1e:c6:d7:26:aa:79:bc:0d:30:
bb:26:4f:16:72:58:de:d6:dc:fb:e4:46:b0:06:fa:
bc:c4:58:bb:7a:03:54:0e:f5:c2:16:6c:ee:4d:46:
08:80:fe:fb:8d:31:e7:09:bf:3a:dc:8d:1e:d8:e4:
53:b0:ed:fb:1c:23:09:5b:b6:ae:f1:75:ac:b9:e8:
d0:9e:06:13:b6:99:da:df:f1:39:e5:f6:2d:8c:ca:
08:ed:39:07:ad:17:87:c3:d0:2a:8d:b1:f8:51:bb:
34:83:22:47:19:8c:d5:b1:93:97:e3:32:21:6b:50:
6b:e3:c0:7c:bb:56:70:7c:38:dc:1b:03:c6:16:32:
79:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:AF:F6:A7:DA:72:01:A4:24:4C:D1:A7:3C:59:E1:D7:90:8F:A8:AC
X509v3 Authority Key Identifier:
keyid:3C:2A:D8:67:1B:37:53:26:52:86:D3:2E:46:BF:06:FD:F5:2D:0F:EF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUJIN/PCrYZxs3UyZShtMuRr8G_fUtD-8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PCrYZxs3UyZShtMuRr8G_fUtD-8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUJIN/Hq_2p9pyAaQkTNGnPFnh15CPqKw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.24.54.0/23
Signature Algorithm: sha256WithRSAEncryption
93:f9:d3:3d:7f:7d:25:5b:1c:cc:2f:30:04:33:95:5c:eb:0f:
1e:5f:4b:8e:b4:46:e1:b3:fd:54:21:a7:88:7d:df:00:21:2d:
75:73:5b:14:8a:0b:d9:33:a7:5b:28:7e:37:f5:33:91:62:86:
34:aa:8b:0b:94:d0:d0:71:7d:ca:1e:b9:e4:5f:9e:b7:43:50:
ca:30:82:e6:30:7b:1b:a2:92:0e:62:0a:54:83:0f:e1:ff:a7:
c7:4c:93:5d:74:f5:15:e1:db:31:88:f1:fc:50:cb:8a:f6:15:
f3:ad:83:ad:a1:8e:2d:93:d4:9c:5a:1f:3f:b3:5e:6a:79:33:
da:de:19:37:f1:25:3b:dc:ee:4e:7c:cf:d0:3a:09:1d:a2:ba:
d6:d3:22:a5:a1:41:fc:28:14:e3:5d:04:43:08:09:72:6b:d9:
c5:96:e5:70:86:81:8a:ed:40:3d:8f:a0:47:64:5c:07:bb:83:
86:6f:47:68:a5:94:71:e5:b6:b5:a6:79:71:a7:49:7e:27:d9:
db:6c:3e:c9:d8:a4:4d:e0:4c:42:dd:6f:14:fe:4f:f4:e6:71:
0a:07:17:55:8e:7f:39:6e:3e:a5:44:b1:66:15:70:bc:09:76:
ad:6c:3c:bc:af:26:85:a9:60:22:b5:bf:c1:e3:f2:12:d7:c0:
6e:7a:74:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org