Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/aPtSJs5vzz6QVxcHXErp3cYNTNY.roa
File: aPtSJs5vzz6QVxcHXErp3cYNTNY.roa (raw, json)
Hash identifier: V0sne8KRVVKqrT84gTxImP2KMqqGS+fZ799EXyos/R8=
Subject key identifier: 68:FB:52:26:CE:6F:CF:3E:90:57:17:07:5C:4A:E9:DD:C6:0D:4C:D6
Certificate issuer: /CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Certificate serial: 072D
Authority key identifier: 75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/aPtSJs5vzz6QVxcHXErp3cYNTNY.roa
Signing time: Tue 29 Sep 2020 09:59:35 +0000
ROA not before: Tue 29 Sep 2020 09:59:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131143
IP address blocks: 103.126.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1837 (0x72d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Validity
Not Before: Sep 29 09:59:35 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=68FB5226CE6FCF3E905717075C4AE9DDC60D4CD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:14:0a:9c:eb:60:0c:46:4b:0e:2d:f0:b2:65:
96:dd:c7:63:2f:97:51:07:18:b7:06:7c:45:c5:02:
ee:14:39:28:df:69:37:62:9c:e1:1f:61:38:eb:15:
d2:58:cb:85:30:a8:c5:b6:f5:ce:52:18:91:4b:95:
9d:9d:6a:56:21:25:3d:66:d1:ab:a0:1c:60:14:67:
8a:9a:8d:28:73:c5:dd:a4:17:7f:b3:91:b0:dc:25:
62:98:44:5e:61:fc:c6:b5:7e:15:66:5e:2a:00:c9:
d5:c2:41:7a:11:b1:10:a7:04:b6:cd:10:5a:1b:82:
0d:43:82:ba:c7:f6:d6:1f:bb:69:c9:30:77:c9:c6:
3a:78:a7:83:36:05:aa:3d:b4:ec:30:c7:cd:d9:14:
4f:e6:59:ea:62:89:e4:8e:0a:ce:db:f4:43:e2:e3:
00:0e:c4:9f:44:04:0f:c6:56:9f:91:b1:e0:7e:3b:
8e:c3:ac:98:d7:ad:2b:39:4a:30:27:13:7d:d7:c5:
f9:25:ef:50:1f:93:80:c9:6b:28:fe:8d:a2:0a:62:
cc:93:b5:80:2e:f8:cf:28:ff:e2:13:ab:bf:b3:a0:
cf:0c:4a:53:e3:96:1a:7e:6c:5b:f8:e9:3e:ac:22:
94:65:54:6c:d9:8c:2b:e0:4d:f0:38:13:d0:ff:0d:
27:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:FB:52:26:CE:6F:CF:3E:90:57:17:07:5C:4A:E9:DD:C6:0D:4C:D6
X509v3 Authority Key Identifier:
keyid:75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/db2TDHRdI-nqWFwE1rmflaljIuU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/aPtSJs5vzz6QVxcHXErp3cYNTNY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.126.164.0/22
Signature Algorithm: sha256WithRSAEncryption
97:33:e7:91:ba:06:b0:5f:a2:c1:04:c5:1b:9e:82:e9:07:df:
b6:b8:ec:bf:04:94:9a:4f:33:b1:38:a7:6f:fb:db:fd:57:d4:
e7:ac:e1:cf:d5:c2:71:28:77:48:ec:13:f8:99:11:37:85:c1:
62:f2:12:4f:a4:9f:8f:67:41:be:d3:dd:53:8f:d4:b3:1f:1b:
a0:c4:b0:99:2f:31:58:36:dc:12:87:db:8a:64:a7:68:8a:af:
c6:6a:fd:e3:bd:74:58:9e:b0:d0:25:65:08:8e:07:f0:6b:ca:
42:f1:45:5e:5a:3c:0f:1a:f2:ed:98:35:80:6d:b0:32:32:d6:
4f:65:52:6f:50:d5:6b:7f:08:20:5b:15:8e:57:a7:53:60:89:
ee:a2:65:c4:66:0d:8c:aa:4d:04:fc:65:d1:c4:f8:01:48:9a:
6e:40:59:c3:72:68:10:47:35:be:1f:52:2c:f8:bd:fa:30:d2:
a6:7a:98:29:55:5e:d4:58:9e:9e:58:f3:dd:d3:cc:84:7e:bc:
0b:9a:78:9b:c0:c4:d5:f2:d9:7d:67:dd:9b:80:be:97:0c:bd:
28:03:74:a8:8d:bb:87:74:eb:a4:eb:16:e2:b6:eb:c0:69:a9:
f4:fa:95:85:75:cb:a6:ef:97:ad:24:a0:73:91:bf:b5:4c:81:
56:d2:65:3a
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:49 2023 by rpki-client on console-ams.rpki-client.org