Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CKMATES/flveeB5OO59gcSUk83mxrqPLOnA.roa
File: flveeB5OO59gcSUk83mxrqPLOnA.roa (raw, json)
Hash identifier: KPDLXsNNFhUZ7tZS0vT2Nw8qrBixu0s2xLUrHYNLXEI=
Subject key identifier: 7E:5B:DE:78:1E:4E:3B:9F:60:71:25:24:F3:79:B1:AE:A3:CB:3A:70
Certificate issuer: /CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Certificate serial: 087A
Authority key identifier: 5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/flveeB5OO59gcSUk83mxrqPLOnA.roa
Signing time: Sun 07 Feb 2021 12:57:56 +0000
ROA not before: Sun 07 Feb 2021 12:57:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 133747
IP address blocks: 103.119.212.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2170 (0x87a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Validity
Not Before: Feb 7 12:57:56 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7E5BDE781E4E3B9F60712524F379B1AEA3CB3A70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:73:9f:fe:8b:09:2d:a8:08:c9:2e:fa:a7:85:
0b:f7:12:4f:5b:96:fa:50:fc:d0:c1:a7:ac:50:17:
e2:4d:06:f2:8e:2b:17:5f:58:6f:41:1a:0b:79:b4:
2e:a5:fb:1b:b5:b6:4f:a8:b7:68:28:9c:7f:f3:73:
23:64:52:93:e4:25:7d:82:a4:7b:1e:72:a3:d5:31:
c9:c3:aa:06:1e:14:5e:0f:56:93:f9:2f:fb:e6:aa:
b3:16:51:88:8b:6c:8e:d8:a7:da:50:12:f2:ba:f8:
6a:f6:02:53:82:f5:6d:c7:79:49:22:64:ea:1a:f2:
5c:a0:b8:f7:84:61:73:ca:5e:ad:50:6b:3a:31:07:
bf:4f:b5:8e:be:7a:7c:7c:7f:f7:6f:91:3c:44:a5:
a6:8d:13:15:6d:c1:65:b1:ce:4f:c2:90:9c:99:f4:
dc:09:bf:24:54:6c:a2:26:be:4d:1b:6e:07:e9:d3:
a4:0a:18:78:3e:85:76:2f:db:3f:75:b7:c9:a8:ad:
d6:4f:d7:67:bf:c2:56:cf:ef:a9:0b:ec:d8:ab:ac:
f8:6e:0e:4b:73:05:a8:cc:05:3e:88:ec:86:a2:60:
8e:e0:fd:a3:d4:10:1b:bf:ed:9f:db:e2:13:20:ee:
a7:36:79:99:37:ee:f6:2f:11:0c:22:8f:ba:a0:cf:
7c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:5B:DE:78:1E:4E:3B:9F:60:71:25:24:F3:79:B1:AE:A3:CB:3A:70
X509v3 Authority Key Identifier:
keyid:5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/XNEK1bakd108UE1mEHH4ziQ-KAc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/flveeB5OO59gcSUk83mxrqPLOnA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.119.212.0/22
Signature Algorithm: sha256WithRSAEncryption
13:55:8a:45:72:6b:ca:80:86:a7:af:31:8c:26:c4:2d:62:df:
c6:c9:7b:02:f8:f3:8f:b3:a4:e3:40:19:6c:0c:ae:49:57:8c:
74:8a:05:c3:6f:d8:f2:8e:e2:45:83:b1:3f:bb:21:cf:b4:63:
95:90:78:78:59:0e:d9:66:67:72:77:e1:09:b5:2f:f1:f1:ba:
a8:49:69:fd:6e:8a:6d:12:25:b1:92:56:23:88:70:24:36:85:
58:a7:ea:cb:1b:7e:6d:a5:05:6b:74:4f:59:5c:dd:a5:92:ce:
09:f7:b8:62:02:9d:40:de:43:9e:8e:57:4a:41:8f:03:30:0c:
1e:90:e1:7b:ef:18:3a:f2:c1:0d:de:16:be:82:3a:af:8f:35:
be:a1:69:50:9e:c1:17:17:b8:c6:5a:18:e4:8b:5e:aa:81:8b:
cb:3a:75:7c:d8:9d:19:de:f3:c1:bc:5a:c6:3e:a1:ea:53:a7:
23:d3:2d:16:e5:c6:fc:04:1b:49:dc:17:d4:13:6d:42:49:40:
25:36:ba:3b:f6:4a:b3:a9:ef:bd:16:29:96:76:f9:2a:a6:6d:
55:82:22:63:d7:85:2f:fa:77:42:e0:5a:40:0d:50:ff:39:8e:
ba:85:36:b6:74:5b:75:b5:27:2c:2d:4e:c3:57:2f:c4:fc:3c:
f8:48:9e:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:49 2023 by rpki-client on console-ams.rpki-client.org