Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/k7qHzJbhCR7WC0TSSSWLTdyvYNk.roa
File: k7qHzJbhCR7WC0TSSSWLTdyvYNk.roa (raw, json)
Hash identifier: 2b7Jb6AQnJ5Ig6fzdYoa4GI8eS5ylFxo/GFqj5Nm7FQ=
Subject key identifier: 93:BA:87:CC:96:E1:09:1E:D6:0B:44:D2:49:25:8B:4D:DC:AF:60:D9
Certificate issuer: /CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Certificate serial: 0866
Authority key identifier: 75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/k7qHzJbhCR7WC0TSSSWLTdyvYNk.roa
Signing time: Sun 07 Feb 2021 13:02:47 +0000
ROA not before: Sun 07 Feb 2021 13:02:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131143
IP address blocks: 103.126.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2150 (0x866)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Validity
Not Before: Feb 7 13:02:47 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=93BA87CC96E1091ED60B44D249258B4DDCAF60D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:86:69:1d:dc:84:5b:9d:a7:f9:0d:6c:f0:b7:
c1:27:b1:a0:92:aa:50:87:73:26:31:ee:0f:cf:7f:
9f:80:92:32:5b:8b:41:3f:40:c4:3d:0e:3a:5a:c9:
5b:ca:75:56:80:21:cb:e5:37:54:a0:4d:16:c4:3b:
55:74:b3:e2:d0:9c:0d:73:ad:34:45:78:0b:3e:84:
87:4b:27:3c:36:07:fe:b7:4d:2c:50:25:3c:16:84:
df:7b:e6:1e:83:33:3f:0a:a5:8d:fd:8a:93:d4:d9:
db:b0:38:85:f3:c8:02:bc:ec:b8:51:b1:2e:33:7b:
a9:37:1a:5b:c5:af:d3:86:ce:c0:9e:65:dc:84:19:
be:0f:bd:0d:b2:54:1d:42:e2:f5:69:e2:78:6d:39:
12:30:f2:f8:a1:42:f8:03:3a:6a:b5:78:7e:d9:89:
51:cf:be:3b:98:ee:5b:f6:fc:67:73:e1:86:a1:dc:
58:e4:f0:cc:ca:aa:7b:35:41:8f:eb:9d:4a:23:9e:
65:9f:fb:f8:32:55:b1:e6:c2:ba:2a:82:e7:82:80:
95:25:61:51:10:54:87:47:ae:00:40:49:35:5f:80:
49:97:65:be:0f:f4:ba:00:20:dc:72:dd:af:b0:bc:
dd:23:1b:62:1b:35:af:ec:68:98:59:b9:fc:fd:67:
74:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:BA:87:CC:96:E1:09:1E:D6:0B:44:D2:49:25:8B:4D:DC:AF:60:D9
X509v3 Authority Key Identifier:
keyid:75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/db2TDHRdI-nqWFwE1rmflaljIuU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/k7qHzJbhCR7WC0TSSSWLTdyvYNk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.126.164.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:76:60:19:c4:5c:ee:dc:18:ea:01:fe:1d:25:eb:49:63:f7:
ab:68:d6:e3:e0:80:aa:cf:fb:98:7b:ff:9b:0c:98:e9:9a:29:
01:a2:1c:35:4c:56:66:cb:b9:04:cb:93:9d:c6:6b:12:41:d6:
01:03:01:5b:1d:a2:59:3d:54:f8:84:57:35:8b:0e:4f:42:19:
c8:85:35:10:a8:db:92:41:52:79:e9:40:ae:9e:e7:78:49:1a:
22:31:28:55:f8:ca:e4:88:08:f4:cd:33:8b:35:0a:f8:d8:a7:
eb:bb:6d:2e:6e:51:9b:48:ee:34:61:b1:bc:8e:dc:06:50:f8:
64:cb:59:d5:6e:77:07:d0:2f:de:8a:10:bd:40:d2:73:05:70:
22:89:df:ca:f2:59:4f:fb:bc:01:51:f7:e8:c2:8a:b8:2b:4c:
2e:e5:d4:47:33:d8:98:40:46:22:b3:bd:48:4d:c0:27:a0:a0:
53:80:11:cf:ab:97:1e:dc:5d:c4:b9:a6:e1:60:ea:c6:1a:3d:
bd:7e:55:9f:34:b0:0b:3e:61:d4:1d:fb:e1:ed:02:cf:d8:90:
32:db:09:4f:cb:b9:c9:2e:db:3f:fb:c3:69:65:5c:4e:51:e3:
22:68:5d:21:8a:a2:2d:a1:53:2f:fb:ee:2c:40:97:89:aa:7b:
29:b9:2b:5c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:59 2023 by rpki-client on console-fra.rpki-client.org