Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/sllKxRxf1s48DYqj9eEdQyA7qYw.roa
File: sllKxRxf1s48DYqj9eEdQyA7qYw.roa (raw, json)
Hash identifier: efbzQ6n46gNkclcLWYBHfgdXprxxG/jvWtZw0E0sZYU=
Subject key identifier: B2:59:4A:C5:1C:5F:D6:CE:3C:0D:8A:A3:F5:E1:1D:43:20:3B:A9:8C
Certificate issuer: /CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Certificate serial: 0905
Authority key identifier: 75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/sllKxRxf1s48DYqj9eEdQyA7qYw.roa
Signing time: Wed 29 Sep 2021 02:52:12 +0000
ROA not before: Wed 29 Sep 2021 02:52:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131143
IP address blocks: 175.184.240.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2309 (0x905)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Validity
Not Before: Sep 29 02:52:12 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B2594AC51C5FD6CE3C0D8AA3F5E11D43203BA98C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:0b:e9:2f:7c:f6:b5:6d:78:3b:83:bb:60:38:
15:09:08:58:46:3e:90:23:a2:50:15:6d:92:2d:3e:
17:50:84:92:bd:86:73:df:6e:e6:ac:c1:65:b4:9c:
99:40:43:4e:8f:2a:a8:7f:ba:99:5d:1e:c1:08:b5:
53:e0:98:8b:6a:93:ea:98:eb:3f:d6:e6:ee:99:46:
6e:18:61:69:08:18:f1:25:7a:34:9f:59:dd:9f:6e:
3a:cb:0f:6b:40:42:e8:42:5f:b9:51:59:66:d4:4f:
a7:ca:0b:f2:85:0d:06:e6:09:5b:2a:f0:7b:3f:3f:
94:3b:99:bd:a7:d7:97:90:f2:97:ab:96:1f:76:f6:
77:92:9d:f3:4f:53:2c:52:86:6f:c4:0b:af:e1:c9:
66:a6:0f:18:c2:25:ed:88:64:24:c2:a9:0b:5f:59:
98:68:ab:ab:fa:ae:87:04:c5:8e:fc:a4:c5:1e:1e:
74:8a:29:67:c8:c4:a3:be:b9:89:78:bc:31:0a:79:
d9:e0:a9:77:12:2f:ee:68:eb:b6:c0:67:bf:b4:53:
c0:d8:35:4b:6e:54:a8:7a:58:47:54:0f:19:67:b6:
34:ad:8d:21:dd:97:b3:de:bb:6f:85:28:89:b3:74:
9a:17:13:e1:82:8b:99:7c:9c:85:ef:c0:da:0a:f3:
85:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:59:4A:C5:1C:5F:D6:CE:3C:0D:8A:A3:F5:E1:1D:43:20:3B:A9:8C
X509v3 Authority Key Identifier:
keyid:75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/db2TDHRdI-nqWFwE1rmflaljIuU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/sllKxRxf1s48DYqj9eEdQyA7qYw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.184.240.0/21
Signature Algorithm: sha256WithRSAEncryption
30:a8:02:16:28:e0:9c:f7:c8:a2:4c:59:ca:ac:1f:c1:04:f7:
20:75:a6:ab:76:b1:a8:e8:bc:b9:c8:94:3f:92:1b:3e:0f:a8:
19:5c:c9:e7:ce:6b:3f:4b:13:b2:dc:91:76:25:c8:25:d4:4d:
e8:23:4e:58:1b:9d:aa:2f:81:e7:19:7c:6d:37:84:e6:ca:e3:
4f:f8:28:5e:89:59:d2:58:21:4a:bd:a1:42:82:dc:6a:3a:41:
62:f6:53:b3:22:99:1c:db:09:09:cd:eb:2b:28:0a:27:c7:bb:
3f:e9:5c:5d:26:b5:b8:4d:17:0b:c0:cb:1d:56:a3:01:93:18:
e4:1b:59:a4:01:06:76:99:6d:07:ec:3f:d3:ce:64:e3:4c:4d:
9f:a7:a1:15:9c:83:37:ef:6d:82:a6:fb:a5:b8:56:13:a7:4f:
aa:97:c1:7e:c9:f9:06:cb:22:c6:fe:57:3d:d1:74:32:65:89:
a2:a1:47:7c:48:44:de:c8:b3:57:a8:df:82:b5:08:84:55:99:
3c:de:14:ad:96:b5:7f:17:b7:ce:b3:0c:13:1d:de:79:7c:e9:
ef:bf:e4:1e:15:1f:7e:f8:7f:93:80:85:1c:08:95:c1:65:dd:
30:67:4d:7c:d2:ff:99:10:b4:82:d5:05:0f:02:1b:10:53:26:
f7:ab:a5:57
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:59 2023 by rpki-client on console-fra.rpki-client.org