Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/AvVeeZqGL3fY5eahRtWqJdifXQY.roa
File: AvVeeZqGL3fY5eahRtWqJdifXQY.roa (raw, json)
Hash identifier: Zh0RkK+iOOx8X7XeZD2tiXMKFI+GqdeDVyvHf4vlukY=
Subject key identifier: 02:F5:5E:79:9A:86:2F:77:D8:E5:E6:A1:46:D5:AA:25:D8:9F:5D:06
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 09E8
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/AvVeeZqGL3fY5eahRtWqJdifXQY.roa
Signing time: Thu 30 Sep 2021 14:12:18 +0000
ROA not before: Thu 30 Sep 2021 14:12:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18429
IP address blocks: 103.224.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2536 (0x9e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 30 14:12:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=02F55E799A862F77D8E5E6A146D5AA25D89F5D06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2c:2b:ed:85:e6:80:5d:c6:73:9e:b3:a6:a5:
44:3e:e8:90:a8:7e:fc:85:1e:0e:17:92:67:ab:31:
54:1e:5a:14:86:ca:a1:e7:f1:f5:09:d5:a3:04:b1:
9e:7b:a3:0e:ce:64:03:d4:a1:7a:53:52:2d:51:9c:
ad:21:ab:6b:6d:93:b0:69:d8:92:e2:31:af:ed:a3:
28:7f:5c:ec:86:84:50:27:a1:a9:a1:3d:f6:59:d5:
28:db:7f:c2:e0:ef:9c:b0:6c:64:ef:fd:40:05:2a:
b7:4b:3e:ae:a8:69:0e:e5:d8:ca:77:bd:c7:d2:94:
d6:75:70:b2:2e:19:94:dc:6a:dc:ed:18:1b:f1:d6:
69:7c:64:25:64:75:fd:a6:a5:34:ca:e9:b2:db:b8:
dd:ab:22:16:df:4d:f3:61:76:d1:06:6f:06:e7:a9:
45:2d:d0:d4:af:9d:fc:43:5e:11:e8:1f:54:e6:08:
84:02:cf:15:53:83:c6:0c:fd:d1:9f:6a:b8:01:ea:
75:d2:05:df:0f:01:fd:cf:17:a4:c1:93:29:b4:be:
cc:39:c5:62:c9:c2:7b:e2:ca:1b:fa:4b:4f:b4:e4:
39:51:e1:d7:4c:e9:1e:43:c2:8e:a3:cd:db:36:a2:
4a:68:fc:8a:f7:e4:c4:7c:bc:a5:da:7e:44:d0:f3:
45:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F5:5E:79:9A:86:2F:77:D8:E5:E6:A1:46:D5:AA:25:D8:9F:5D:06
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/AvVeeZqGL3fY5eahRtWqJdifXQY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.224.200.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:48:c4:04:e7:24:de:a4:4b:49:9e:1d:06:1c:a8:fb:50:eb:
af:40:25:9a:09:16:d9:e5:86:56:30:69:a3:68:33:97:6e:fe:
34:c3:a3:74:4d:a5:97:9a:9a:69:b4:df:14:8e:4c:31:89:3a:
41:21:8f:d1:eb:d1:02:25:ec:1a:d7:a2:7c:6a:f7:0a:73:61:
aa:36:7d:fb:28:b1:16:0e:84:54:7e:88:ee:8d:b1:ed:55:1b:
c9:42:00:a3:e4:a8:d1:3b:9a:c2:25:78:ca:c4:d0:8e:ea:df:
ac:8f:42:d1:2a:13:e2:85:22:c2:26:35:af:85:5f:30:37:84:
08:f0:a1:b0:59:10:f5:2d:63:59:3a:a8:3a:97:76:10:7b:1e:
5f:a4:e4:80:a2:5c:bb:8c:17:ba:4f:a3:a1:5b:e6:9c:03:57:
42:42:bc:51:c2:28:2f:4d:23:21:ea:c9:c2:85:ad:ef:8b:2b:
75:f9:81:76:c3:9b:83:99:5e:ed:74:d5:f4:29:0f:bc:53:8a:
2f:02:d7:e3:08:5a:ee:fe:30:4a:14:00:47:00:81:4e:65:b7:
01:94:e1:c0:9d:96:51:b2:de:54:ce:f1:26:cc:71:87:50:1d:
dd:73:0c:96:91:a4:1e:c3:4b:2d:12:6f:1f:57:37:cd:e9:52:
ae:86:f6:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:47 2023 by rpki-client on console-ams.rpki-client.org