Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CENTROID/nT2Msz7IzVWRHduuCJyX5Yt3-Es.roa
File: nT2Msz7IzVWRHduuCJyX5Yt3-Es.roa (raw, json)
Hash identifier: b90JMY7e0kkRr9W5Mqalz5OKqnhykH9j4mWLPlKKzUk=
Subject key identifier: 9D:3D:8C:B3:3E:C8:CD:55:91:1D:DB:AE:08:9C:97:E5:8B:77:F8:4B
Certificate issuer: /CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8
Certificate serial: 0874
Authority key identifier: 79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/nT2Msz7IzVWRHduuCJyX5Yt3-Es.roa
Signing time: Sun 07 Feb 2021 13:15:48 +0000
ROA not before: Sun 07 Feb 2021 13:15:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 135293
IP address blocks: 103.104.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2164 (0x874)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8
Validity
Not Before: Feb 7 13:15:48 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9D3D8CB33EC8CD55911DDBAE089C97E58B77F84B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:74:ce:30:ba:22:cb:98:b1:77:c3:ff:0c:a4:
69:e2:32:9c:5b:3e:94:18:b8:7a:1d:f3:44:ca:04:
45:fe:9b:77:0d:e9:e0:08:84:db:fa:e6:33:11:b2:
bc:a0:bb:fc:a9:3c:10:62:8d:da:0f:a3:ed:6b:98:
43:b7:fe:cc:40:04:74:30:87:da:98:a5:72:2f:52:
36:7e:ad:a7:7a:f7:0c:56:02:ad:14:5b:03:a1:e4:
7f:93:16:7e:f8:50:92:d8:33:0e:32:a2:0e:4f:cc:
4d:7b:b5:94:90:72:a3:91:6a:30:d7:c5:a1:3f:99:
9a:6f:8f:a3:f0:ee:cd:6e:64:60:42:44:6b:e3:f0:
01:5e:c6:14:ef:c9:66:14:7f:32:15:51:3e:ff:bc:
78:07:1c:a1:ba:fb:fb:8e:4e:a4:fe:98:a0:e1:2b:
6f:26:c0:9b:63:3a:0a:95:6f:d8:2b:a5:16:82:18:
91:d9:a4:bc:ac:f9:a8:36:5b:cc:50:0c:d2:2c:ef:
4c:f5:6e:7e:e5:83:2b:da:8e:b4:2d:dc:4b:63:11:
13:a0:df:a6:08:c1:dd:2d:18:38:e9:5d:82:a6:0e:
7d:6b:8a:1f:a6:f0:52:ba:50:c4:09:d5:31:90:9b:
aa:75:f6:5e:62:33:08:36:90:80:d5:4e:02:fc:cb:
95:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:3D:8C:B3:3E:C8:CD:55:91:1D:DB:AE:08:9C:97:E5:8B:77:F8:4B
X509v3 Authority Key Identifier:
keyid:79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/nT2Msz7IzVWRHduuCJyX5Yt3-Es.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.104.149.0/24
Signature Algorithm: sha256WithRSAEncryption
99:a1:a5:71:be:76:1b:b9:50:27:ad:8d:e4:a8:09:a0:73:22:
51:7c:21:0c:a9:cf:6c:4d:a8:09:f4:af:bd:8f:da:19:17:0d:
86:03:de:63:6b:ab:bd:6e:df:ed:53:f9:12:63:f6:4e:93:05:
41:73:f0:2a:53:67:db:0e:9e:4f:02:16:40:30:02:4b:dd:b1:
99:34:95:2a:fd:6d:d2:d1:e2:3a:e7:ea:65:61:a0:ae:3d:12:
bc:87:55:f9:94:85:6a:fe:a6:8b:de:a5:06:c6:d6:a1:ea:41:
8f:3c:6f:6f:8e:03:c9:5c:6b:f8:10:34:8d:1e:1a:ef:11:00:
f8:c5:a7:11:de:af:1a:c3:28:ff:0e:68:89:6a:82:2b:c1:f8:
2a:76:3e:3c:d9:66:26:09:87:fc:58:3e:26:2d:2e:26:88:05:
aa:bf:29:af:d7:85:74:2a:93:d0:7c:b3:f7:36:55:ea:dc:8b:
19:ac:6d:4b:38:d2:59:8f:31:e0:72:6a:b7:83:b6:3d:e9:3c:
9f:79:d8:6e:f4:5a:3c:43:63:1a:86:df:54:b6:44:dc:1e:d1:
2e:86:53:73:9e:0b:e1:54:d6:dd:6a:2a:93:40:bc:9b:6f:5c:
3c:ac:29:4e:f9:96:11:dc:cf:c9:a6:5f:3b:8b:a0:c9:3d:7c:
f3:40:f5:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:47 2023 by rpki-client on console-ams.rpki-client.org