Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APPIER/gKkTXw6QeO38UevhaMikumxRxBY.roa
File: gKkTXw6QeO38UevhaMikumxRxBY.roa (raw, json)
Hash identifier: ZKoAo+3+S2erCXNmQTLDakkHVEjF8Hs+EIS2KnWvQPE=
Subject key identifier: 80:A9:13:5F:0E:90:78:ED:FC:51:EB:E1:68:C8:A4:BA:6C:51:C4:16
Certificate issuer: /CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Certificate serial: 0892
Authority key identifier: 46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/gKkTXw6QeO38UevhaMikumxRxBY.roa
Signing time: Sun 07 Feb 2021 13:04:41 +0000
ROA not before: Sun 07 Feb 2021 13:04:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20473
IP address blocks: 103.122.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2194 (0x892)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4640D988EC8146BA430596012122D1A1CFC1C36B
Validity
Not Before: Feb 7 13:04:41 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=80A9135F0E9078EDFC51EBE168C8A4BA6C51C416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:fd:53:69:13:dd:e4:3e:80:a5:fd:e3:44:32:
8c:66:f2:90:a4:bf:cb:e6:ac:34:9b:c4:25:1d:f0:
dd:ec:da:d4:0d:f1:77:43:21:52:28:a6:c5:73:8c:
2e:ed:e9:2e:54:54:fa:f6:17:0e:b2:26:a9:68:8a:
26:e9:4b:e7:13:60:4f:73:f4:92:3b:4d:58:1b:f7:
99:77:a1:6a:bf:1c:0d:07:79:ea:5d:c7:a5:fd:9c:
c3:47:42:2c:2f:7d:09:1c:31:1f:eb:c0:a0:2d:32:
0d:d8:85:75:e7:e1:26:85:ee:06:9b:06:39:42:4b:
ab:4f:3d:cb:a9:69:ea:7d:1b:73:f7:89:c7:36:12:
88:fb:57:f2:4b:3a:39:f0:8f:21:a3:1d:f1:84:73:
e7:2d:31:11:78:68:0a:7a:00:ae:ed:47:e7:0e:24:
44:6f:b7:76:9d:ba:f3:07:07:52:89:00:0f:f5:01:
de:6c:9d:d9:e3:a3:e2:e8:18:14:aa:7d:b9:3d:20:
31:ae:9e:4c:7c:4e:f4:fa:3a:2d:0b:fc:38:b7:e2:
d2:e1:d7:a7:92:08:b4:89:e2:8b:e0:cb:94:f9:ec:
48:da:66:07:8c:9a:37:56:a5:98:fa:25:9a:bd:82:
c8:35:fd:b6:29:e8:75:08:be:89:09:a3:fd:c9:c9:
bf:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A9:13:5F:0E:90:78:ED:FC:51:EB:E1:68:C8:A4:BA:6C:51:C4:16
X509v3 Authority Key Identifier:
keyid:46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/gKkTXw6QeO38UevhaMikumxRxBY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.16.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:71:80:30:03:a0:37:36:d1:ac:c1:9a:dc:82:4f:f8:4e:1f:
2a:1d:83:1f:fd:bb:a8:cc:fe:93:0f:38:de:7a:91:8d:2f:d8:
4e:36:f4:2d:11:b1:d0:78:3c:39:90:58:28:76:30:8f:14:b7:
90:a5:3f:fc:66:9f:10:3d:3f:71:55:c3:e1:00:6e:50:12:a3:
bc:ea:b4:f1:46:ae:f2:24:d3:c6:58:36:09:28:04:82:0b:d8:
2a:4d:04:b3:c3:83:25:2a:ed:ba:42:70:db:1d:9c:d7:24:0a:
44:7c:e7:c1:40:d5:04:4d:68:bf:ef:72:08:a1:47:86:2f:10:
7d:6f:74:9c:d8:ee:71:35:3f:f0:16:77:b4:bb:1d:33:a9:56:
0e:d6:a1:cc:e0:9e:81:de:86:49:02:9d:e0:b6:4a:71:24:df:
48:29:e9:74:68:c5:2b:33:c0:56:05:b9:fe:59:9a:8a:d7:a4:
24:4f:6b:09:55:20:35:c9:23:9a:34:3a:08:96:b3:62:2d:8b:
2e:6a:80:48:ae:13:66:7f:9e:bf:15:f7:84:02:92:b6:cf:78:
75:4b:62:ab:31:75:50:03:b8:61:1b:a2:db:23:e5:55:30:8d:
57:78:6b:91:66:a0:76:0f:64:82:11:be:9f:30:a2:5c:a6:f7:
6a:2f:3d:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org