Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APPIER/9fZuc3CvB3pScM_5s6K7FzF0W-E.roa
File: 9fZuc3CvB3pScM_5s6K7FzF0W-E.roa (raw, json)
Hash identifier: MeRZKYDdfuFFuYzuA1OMla0Q4J0L+BtgsYkUOR3u8kw=
Subject key identifier: F5:F6:6E:73:70:AF:07:7A:52:70:CF:F9:B3:A2:BB:17:31:74:5B:E1
Certificate issuer: /CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Certificate serial: 0A25
Authority key identifier: 46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/9fZuc3CvB3pScM_5s6K7FzF0W-E.roa
Signing time: Wed 24 Aug 2022 08:05:35 +0000
ROA not before: Wed 24 Aug 2022 08:05:35 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 396982
IP address blocks: 103.122.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2597 (0xa25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Validity
Not Before: Aug 24 08:05:35 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F5F66E7370AF077A5270CFF9B3A2BB1731745BE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:05:99:09:d4:16:2c:4d:92:1e:ad:cc:27:84:
6c:33:ae:36:da:3a:05:e1:33:0e:2f:cc:85:c6:2b:
a9:83:a1:9e:a6:4c:0b:d8:0d:94:cf:b4:bf:3f:f3:
1a:a9:34:a9:27:87:f7:34:6a:22:6b:b8:61:8d:43:
aa:be:8c:ae:0a:1e:7d:1b:3b:4f:35:87:37:0d:15:
6e:32:79:51:a6:94:81:67:d9:3b:c5:be:6b:40:db:
dd:34:6c:f1:ac:4d:2b:ca:26:60:78:36:a0:da:4e:
c8:33:ba:47:c1:c5:5c:5e:69:d9:bc:f6:f2:b6:6f:
a5:85:11:e4:da:f0:fa:f2:bc:ac:5e:a4:b7:5f:1b:
40:11:d4:32:b7:a7:a9:72:19:a6:dc:99:5a:b6:24:
6a:43:49:1c:59:19:86:e7:0d:57:0f:63:d5:f7:f7:
5b:2a:6b:4d:b5:d1:40:fc:49:87:d8:25:07:f5:8d:
db:98:7c:60:d5:ba:5a:08:42:8c:5f:53:22:29:96:
a2:ee:76:ef:46:19:bf:ae:be:f9:ef:1b:b3:46:de:
32:a5:5e:f5:5c:ca:87:aa:42:cd:84:c1:e4:fb:ec:
23:65:cd:f0:b1:53:0c:ab:4d:9f:00:a9:38:36:b8:
fb:2b:27:87:b9:6a:78:f2:67:c8:a2:43:57:ad:ac:
85:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F6:6E:73:70:AF:07:7A:52:70:CF:F9:B3:A2:BB:17:31:74:5B:E1
X509v3 Authority Key Identifier:
keyid:46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/9fZuc3CvB3pScM_5s6K7FzF0W-E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.17.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:60:8b:05:10:e2:f3:5c:3d:30:a8:56:02:15:2f:be:1d:1d:
2a:63:ff:18:f0:e2:b6:2c:d7:09:5e:09:c8:f6:d1:ae:5d:67:
4a:47:93:c4:6d:d7:bf:b2:56:e9:71:16:34:c7:8e:d2:a1:e1:
83:72:89:5a:cd:12:e9:a8:fd:6e:52:35:7c:bb:ea:4d:d8:6b:
3d:5d:c6:a9:ad:e5:d3:06:93:74:0d:0b:13:68:e2:f7:70:c6:
7f:68:36:6b:cf:e8:c5:0d:25:16:7a:75:42:10:0f:83:38:48:
30:69:94:79:a2:5f:a0:11:cb:1f:06:f1:c8:f3:cf:ca:bd:01:
54:be:0a:91:37:5c:82:b2:be:27:92:6a:e3:cc:75:68:a7:6b:
d9:13:66:7f:2f:1d:ec:d7:f8:34:33:47:16:97:66:0e:c9:33:
75:0a:12:63:e3:e9:1d:54:0e:85:b2:de:89:61:41:36:85:11:
e9:5e:fa:3b:5d:57:6d:92:24:04:93:fb:c7:c8:a0:4e:5a:2b:
c2:31:8a:63:60:f3:5d:b2:0b:cc:b8:98:15:97:de:8b:be:fd:
69:d9:f6:e3:63:4f:4d:ae:81:2c:57:cb:59:7e:2e:30:25:22:
76:42:2b:85:7b:0c:2b:af:6b:a1:d1:f4:1a:8b:eb:0b:cb:6b:
ac:65:41:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org