Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/RZ4l47CpyWfSXlzfFcZPFzxDYlw.roa
File: RZ4l47CpyWfSXlzfFcZPFzxDYlw.roa (raw, json)
Hash identifier: aLmv0z6CWwRZfWUpsar97xDxR8yH3HJJ9S/30Hol4PI=
Subject key identifier: 45:9E:25:E3:B0:A9:C9:67:D2:5E:5C:DF:15:C6:4F:17:3C:43:62:5C
Certificate issuer: /CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989
Certificate serial: 094F
Authority key identifier: 05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/RZ4l47CpyWfSXlzfFcZPFzxDYlw.roa
Signing time: Mon 13 Dec 2021 14:49:04 +0000
ROA not before: Mon 13 Dec 2021 14:49:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 147035
IP address blocks: 103.122.116.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2383 (0x94f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989
Validity
Not Before: Dec 13 14:49:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=459E25E3B0A9C967D25E5CDF15C64F173C43625C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e3:7d:e7:60:db:85:8c:0e:5c:83:4e:7b:79:
10:f0:e8:75:68:2b:98:30:fc:0f:48:1a:f6:7e:73:
7a:99:8b:16:e7:f7:1b:98:46:90:96:36:5c:ed:8d:
c2:89:d9:4f:40:f2:e9:6a:91:ec:07:c1:38:89:65:
e2:9b:d2:fc:9b:e0:8b:29:d6:31:3d:06:0e:ec:12:
28:4e:b2:78:f5:d1:c5:68:bb:3f:a4:ca:bd:5c:4c:
27:9d:ea:15:e0:93:15:eb:a1:54:53:5a:cd:cb:65:
ce:70:37:49:96:c1:88:c8:a4:91:d6:06:94:06:59:
81:2a:99:0d:db:55:3e:35:3b:72:40:75:b2:b8:59:
23:4a:53:61:99:6a:96:89:69:43:eb:0d:7b:e1:72:
2b:3f:2c:45:00:09:9c:ac:0a:3a:c4:19:a9:a3:31:
07:70:1d:c9:61:22:ff:2d:ca:e0:f9:dc:07:c2:9a:
18:d7:b8:86:fa:bd:01:79:ca:7f:28:cf:f1:db:54:
2e:f5:b6:ff:3a:e3:2f:0b:b2:de:38:b7:0c:f5:95:
bc:c0:8d:69:21:34:f2:2d:84:60:a8:65:84:d3:e4:
d3:75:ff:fa:57:60:13:f7:2c:dd:50:2f:66:e3:86:
5a:91:df:90:27:d2:6d:f0:66:74:3b:e4:90:be:97:
e0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:9E:25:E3:B0:A9:C9:67:D2:5E:5C:DF:15:C6:4F:17:3C:43:62:5C
X509v3 Authority Key Identifier:
keyid:05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/RZ4l47CpyWfSXlzfFcZPFzxDYlw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.116.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:c2:a3:f0:d6:01:2a:70:99:56:2e:70:05:68:23:a6:1c:6d:
26:08:81:3b:a9:35:e7:95:62:74:e7:8d:83:d4:4b:64:3b:33:
75:3d:80:c5:24:a0:7c:21:d8:cf:10:bd:b7:bd:e3:24:b8:e0:
88:e7:a9:11:a8:5c:23:2d:7c:a6:80:25:76:c8:bf:1b:c2:c2:
5e:89:46:89:8b:40:f4:95:8c:92:e8:8e:10:c4:f3:f1:64:13:
30:60:c5:8f:1a:92:0c:4a:0f:95:09:28:10:9b:48:9b:28:ed:
de:fb:57:2e:5f:8f:d1:c1:6e:5b:e1:2f:50:61:28:c8:4f:53:
40:ed:1d:f0:05:87:00:da:1b:75:dc:d0:f0:6a:f8:4b:72:20:
dc:0c:f1:66:3e:2b:b8:83:61:70:c6:64:11:42:28:92:83:05:
30:c2:84:a5:18:7c:a2:92:6a:10:fd:27:40:ec:e3:f5:e0:07:
dd:83:ee:e5:74:b6:09:8d:c7:32:67:cd:4c:eb:b0:68:47:be:
38:26:a1:20:05:d9:c6:e7:53:f8:cf:25:fc:a7:fc:34:c5:8e:
eb:5e:26:04:14:53:d4:3d:56:95:0b:8b:10:67:aa:c1:21:f6:
ad:39:f0:c8:f5:f5:0b:0a:ca:6f:c6:78:d4:44:ad:0a:87:51:
0d:f6:e0:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:57 2023 by rpki-client on console-fra.rpki-client.org