Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/PvTTBvx5Vqjor1nRfeSS-VxCZQU.roa
File: PvTTBvx5Vqjor1nRfeSS-VxCZQU.roa (raw, json)
Hash identifier: wQfnhOL11+xKUwbsh2pGBqGYtAkv31ceurSP2diPRbQ=
Subject key identifier: 3E:F4:D3:06:FC:79:56:A8:E8:AF:59:D1:7D:E4:92:F9:5C:42:65:05
Certificate issuer: /CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Certificate serial: 0904
Authority key identifier: 75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/PvTTBvx5Vqjor1nRfeSS-VxCZQU.roa
Signing time: Wed 29 Sep 2021 02:52:12 +0000
ROA not before: Wed 29 Sep 2021 02:52:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131143
IP address blocks: 103.126.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2308 (0x904)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Validity
Not Before: Sep 29 02:52:12 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3EF4D306FC7956A8E8AF59D17DE492F95C426505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0d:ed:cd:11:75:31:00:e2:d2:66:d2:f4:cd:
43:a2:cd:b7:17:4f:7d:aa:8e:03:4e:dd:90:26:69:
eb:7e:7f:17:bd:0c:a4:a6:3c:31:3e:94:e9:58:58:
d7:d9:05:be:16:d1:56:69:fa:ca:da:f2:73:ef:76:
4a:9d:48:86:46:f0:21:8f:55:ef:ac:5a:49:53:ec:
82:23:4b:22:01:dd:4b:ec:8e:3e:2c:94:24:f3:93:
ee:4d:79:64:1c:49:41:b7:a4:cf:ce:32:e4:de:e4:
0b:99:f3:3a:d0:29:78:0b:d1:4f:06:83:04:c6:e7:
7d:76:52:33:45:2b:08:54:68:03:63:e1:2d:af:94:
2e:17:57:bc:13:5f:e7:0b:93:33:9c:4d:dc:2d:01:
24:ce:cf:c2:21:7e:be:fd:9e:7a:66:34:1d:66:64:
95:96:56:fe:a5:dd:d1:e0:c5:6e:ea:e9:1a:82:bf:
97:6e:c8:2f:d7:b2:e1:6a:0a:20:92:4a:73:38:b2:
13:0a:89:7a:4b:00:c6:44:fe:cc:58:52:6e:9a:92:
e0:7d:c2:89:a8:f7:8b:a1:35:31:ca:1f:a8:ba:2f:
7c:fa:0d:38:cf:5d:65:b3:b0:5e:45:e1:a2:a9:1e:
5c:0b:36:20:61:ec:61:c2:4a:d5:17:a9:15:37:9b:
eb:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:F4:D3:06:FC:79:56:A8:E8:AF:59:D1:7D:E4:92:F9:5C:42:65:05
X509v3 Authority Key Identifier:
keyid:75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/db2TDHRdI-nqWFwE1rmflaljIuU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/PvTTBvx5Vqjor1nRfeSS-VxCZQU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.126.164.0/22
Signature Algorithm: sha256WithRSAEncryption
10:6f:58:b5:b7:33:04:1d:f0:25:4c:93:e8:27:80:03:dc:12:
b2:27:8d:4d:9a:c9:02:9c:18:6c:3b:c7:4c:4e:61:25:7b:f5:
6a:44:e4:9d:ec:3d:43:20:0b:94:50:9a:29:35:b1:90:12:fc:
cc:f6:df:3f:10:49:84:56:2c:e4:26:c0:8a:da:ce:2f:06:d1:
05:03:3c:fc:ac:3b:c3:25:d9:f3:56:9c:c1:3a:4a:a0:4d:7a:
22:d1:d9:d1:af:ab:99:5d:f7:0b:28:c0:d9:4a:4a:46:08:e5:
c7:47:e2:81:33:81:ab:fd:2a:8e:07:9b:90:c9:62:a6:54:25:
a1:00:45:19:d1:25:22:60:1f:69:bb:16:be:6d:c2:94:d1:6b:
7f:72:21:80:3d:22:6a:00:db:aa:b0:3b:fc:ff:9f:7f:05:74:
8f:2b:aa:ca:c1:68:a9:d5:f4:31:66:1d:bb:ed:d8:2e:08:8f:
95:20:bf:1d:33:c8:c5:cf:19:f6:89:7d:c2:58:33:53:94:1e:
0d:cf:03:4a:e9:67:f2:54:21:cd:5d:4b:46:22:b2:66:18:ae:
1e:71:48:13:85:c3:3f:d3:e2:59:cc:6d:ee:21:99:91:6a:b3:
c0:78:6c:45:94:52:74:c4:98:62:61:6b:6d:aa:a3:b0:11:ba:
7b:b7:a4:60
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:59 2023 by rpki-client on console-fra.rpki-client.org