Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALI/Np60pdqMMZ7x7FektjM-wHRLT04.roa
File: Np60pdqMMZ7x7FektjM-wHRLT04.roa (raw, json)
Hash identifier: FXYhPdf38Chtku2tRFP1PEsqRFUIudqKbsrahmJEuDs=
Subject key identifier: 36:9E:B4:A5:DA:8C:31:9E:F1:EC:57:A4:B6:33:3E:C0:74:4B:4F:4E
Certificate issuer: /CN=C46656F8C9D72547BCA79848DC6A2E6B0FC3E2B2
Certificate serial: 0F6B
Authority key identifier: C4:66:56:F8:C9:D7:25:47:BC:A7:98:48:DC:6A:2E:6B:0F:C3:E2:B2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xGZW-MnXJUe8p5hI3Gouaw_D4rI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALI/Np60pdqMMZ7x7FektjM-wHRLT04.roa
Signing time: Sun 07 Feb 2021 11:46:53 +0000
ROA not before: Sun 07 Feb 2021 11:46:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 103.130.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3947 (0xf6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C46656F8C9D72547BCA79848DC6A2E6B0FC3E2B2
Validity
Not Before: Feb 7 11:46:53 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=369EB4A5DA8C319EF1EC57A4B6333EC0744B4F4E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:30:a4:6f:48:05:6b:9c:7f:eb:8d:b7:5f:ac:
6b:a1:df:9b:79:e8:a2:3a:ca:34:e9:66:69:d3:e7:
0b:8b:92:f4:3c:7c:af:48:a6:bc:cd:c5:ca:36:23:
5e:fb:03:ae:70:24:01:03:3c:7e:ac:29:a3:6e:85:
80:24:df:9e:dd:da:3e:5c:d6:e6:37:40:2d:74:05:
1b:75:d3:4b:2c:1c:f5:5f:f5:0c:55:d1:e9:57:58:
55:44:b4:7b:2e:49:6e:34:a6:7d:db:f4:91:10:d6:
fa:b5:da:25:c1:f8:a1:72:a9:68:f7:61:b1:58:9d:
74:99:5d:98:9b:36:54:df:8a:0e:b5:bc:88:1e:8f:
b5:e8:8c:a2:b3:92:d9:01:ea:b0:2c:92:e4:65:98:
5c:c8:38:15:4c:3f:7f:12:06:cc:c7:6c:00:a1:3a:
90:8a:18:a4:93:52:81:85:1e:4a:0e:d9:b5:f0:05:
47:4c:f8:41:03:2c:12:4c:68:6d:0d:79:46:3a:ab:
d8:21:fc:42:2a:80:04:28:fa:6d:43:cb:79:d9:c7:
cb:ff:2f:9e:07:7b:f8:fa:6f:16:72:b1:39:92:b3:
61:94:ec:75:d2:87:ad:6f:6f:eb:19:ca:8b:08:c2:
d4:69:f2:3c:47:9d:22:23:d4:84:47:fe:73:f2:a3:
f4:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:9E:B4:A5:DA:8C:31:9E:F1:EC:57:A4:B6:33:3E:C0:74:4B:4F:4E
X509v3 Authority Key Identifier:
keyid:C4:66:56:F8:C9:D7:25:47:BC:A7:98:48:DC:6A:2E:6B:0F:C3:E2:B2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALI/xGZW-MnXJUe8p5hI3Gouaw_D4rI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xGZW-MnXJUe8p5hI3Gouaw_D4rI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALI/Np60pdqMMZ7x7FektjM-wHRLT04.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.40.0/22
Signature Algorithm: sha256WithRSAEncryption
cb:39:08:2c:17:80:b6:92:0f:bd:fd:a8:82:8d:e3:29:d9:27:
a8:8d:1e:3b:13:e3:58:b1:3f:a5:13:20:89:25:e2:31:ae:bb:
d5:98:96:9e:9d:67:03:15:a5:ce:9b:bd:0d:6a:da:59:8b:ad:
2e:6a:0f:d4:a7:a3:0f:1c:b8:83:3b:f4:04:f1:0c:2e:1f:8a:
ad:dd:36:ce:3b:1a:ac:29:10:e3:4f:5d:33:d0:73:6e:41:9e:
82:26:3a:a2:5b:92:65:15:0f:43:92:9e:6c:18:23:84:7e:97:
ab:20:3f:55:01:2c:c0:3f:87:19:b0:0a:6b:79:a0:a7:77:61:
7c:f6:2c:2d:16:a1:af:eb:d4:df:b3:7a:f1:4f:85:ef:f2:25:
49:d6:90:2e:00:fc:3d:8a:61:0e:0e:e4:b0:28:c7:2c:45:03:
ab:e4:5e:7d:26:22:e5:90:8a:eb:17:3b:e6:06:c1:a1:20:e1:
1e:ee:3a:df:c1:55:5a:1c:10:61:85:08:40:89:c0:0b:33:38:
3f:e5:41:23:99:7e:fd:1e:0d:87:fe:22:01:f5:cf:aa:56:fb:
19:42:bd:fd:c1:5d:83:98:34:37:2c:d9:17:9e:7d:90:65:31:
45:5e:c4:12:ca:69:dd:d6:f7:83:52:7c:cb:8f:28:5b:17:33:
a4:f4:4a:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org