Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/MY9O_Gpm03Jwp_gDbEqWv64aX5I.roa
File: MY9O_Gpm03Jwp_gDbEqWv64aX5I.roa (raw, json)
Hash identifier: AF+rteXE0cbKSzyA9+JuOywO/OWwbjgH/syk24inqKE=
Subject key identifier: 31:8F:4E:FC:6A:66:D3:72:70:A7:F8:03:6C:4A:96:BF:AE:1A:5F:92
Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Certificate serial: 08AB
Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/MY9O_Gpm03Jwp_gDbEqWv64aX5I.roa
Signing time: Mon 08 Feb 2021 02:55:39 +0000
ROA not before: Mon 08 Feb 2021 02:55:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9264
IP address blocks: 202.169.160.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2219 (0x8ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Validity
Not Before: Feb 8 02:55:39 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=318F4EFC6A66D37270A7F8036C4A96BFAE1A5F92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f1:e9:bf:88:73:dc:93:15:af:e1:71:e6:58:
f7:a4:75:23:25:8c:f8:67:c5:75:b0:73:25:9c:2c:
0f:e0:6e:3b:5c:70:f7:23:44:df:0d:66:06:c8:3e:
28:e6:33:32:0c:2c:44:d1:98:9b:48:ef:a8:e1:5f:
89:6f:20:4d:00:04:61:94:9a:5d:14:e7:7c:38:59:
8d:5c:eb:a5:35:27:1c:83:70:06:60:1b:c1:81:cd:
aa:86:82:ca:dd:b8:58:66:50:d4:a7:9a:70:a3:fd:
2f:44:3b:e1:c8:75:be:c0:94:8b:49:d7:ee:4c:0c:
6b:e3:b3:6d:26:cb:ba:2b:06:5b:09:bc:f0:84:71:
a4:c5:54:60:d6:1b:71:ab:31:c2:8a:ad:20:f0:b4:
4f:25:4f:c6:58:dc:39:d5:13:1a:bb:6f:33:cd:e0:
2d:d9:af:08:ba:25:53:92:ec:ff:5c:e9:da:67:68:
cb:de:59:e9:bd:e0:e8:b7:59:dd:53:95:e0:1b:cb:
bf:72:46:02:89:7d:2a:b2:e2:bc:dd:b7:f9:af:f5:
0b:3c:da:3c:5e:6a:4d:24:b2:07:d8:bf:3a:81:6d:
6c:dc:c5:38:4a:34:95:bb:34:a5:6d:df:93:78:bd:
c7:9b:e2:58:31:eb:68:a1:43:7a:60:9a:22:6e:6c:
03:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:8F:4E:FC:6A:66:D3:72:70:A7:F8:03:6C:4A:96:BF:AE:1A:5F:92
X509v3 Authority Key Identifier:
keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/MY9O_Gpm03Jwp_gDbEqWv64aX5I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.169.160.0/20
Signature Algorithm: sha256WithRSAEncryption
2a:6c:de:35:b5:9b:a0:33:a1:1d:91:9d:23:46:de:12:02:78:
6a:88:ea:07:f5:b6:19:da:7c:8a:cc:f7:d6:4d:41:cf:da:4d:
b0:62:f6:cf:90:d8:21:8e:70:b5:6b:8b:64:be:a3:69:ab:6d:
8e:5b:b3:3b:3b:f7:2b:80:0b:52:c6:29:f7:29:b1:78:8d:2c:
1f:27:90:36:06:1d:29:6f:c5:86:e0:3f:20:8c:ba:78:f6:8e:
23:af:28:c2:c6:b6:e5:f1:67:e8:45:8f:89:76:26:39:e1:29:
cc:1c:a7:0f:3a:c4:b5:f7:36:78:d6:dc:23:8d:f2:ba:e2:62:
51:35:14:05:e7:3c:1d:42:0b:71:bb:23:7d:10:d9:41:e5:84:
b0:3f:87:75:c5:76:c6:7b:8e:8b:78:5e:01:a2:77:89:31:0e:
39:5c:8a:fd:68:c7:ad:9c:c6:2e:60:44:dc:c3:eb:97:c8:fd:
fd:a5:1f:49:fd:ca:eb:c6:50:9b:47:84:67:1b:ad:93:9b:26:
e2:29:2e:41:0f:cc:43:d5:f4:70:a4:07:ff:b3:3a:82:40:6b:
1b:7f:0c:d2:d4:3f:42:9a:8c:cd:76:3b:2f:18:73:5c:10:94:
00:69:00:58:34:47:7d:e0:4f:28:46:b8:46:6d:aa:a6:67:95:
38:6c:10:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org