Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/QkVrumaEwSZH-WXXkGg2msiyKME.roa
File: QkVrumaEwSZH-WXXkGg2msiyKME.roa (raw, json)
Hash identifier: mAETGqaJvyvDpyOOvjumLzzkmZ6lkkXhniR+BBuesd8=
Subject key identifier: 42:45:6B:BA:66:84:C1:26:47:F9:65:D7:90:68:36:9A:C8:B2:28:C1
Certificate issuer: /CN=834D79F4126BF9E9DC0B32B86764E7D602514E01
Certificate serial: 09
Authority key identifier: 83:4D:79:F4:12:6B:F9:E9:DC:0B:32:B8:67:64:E7:D6:02:51:4E:01
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/QkVrumaEwSZH-WXXkGg2msiyKME.roa
Signing time: Fri 12 Nov 2021 16:32:46 +0000
ROA not before: Fri 12 Nov 2021 16:32:46 +0000
ROA not after: Thu 03 Nov 2022 05:42:06 +0000
asID: 7483
IP address blocks: 103.175.166.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=834D79F4126BF9E9DC0B32B86764E7D602514E01
Validity
Not Before: Nov 12 16:32:46 2021 GMT
Not After : Nov 3 05:42:06 2022 GMT
Subject: CN=42456BBA6684C12647F965D79068369AC8B228C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ca:94:2d:0b:7c:5e:e1:e1:0b:92:67:eb:7f:
1c:2a:27:bf:56:c4:b7:6d:b9:c6:bf:d4:ca:b7:62:
0c:a7:91:57:08:2b:d4:e1:e6:9b:6c:e3:03:97:77:
a3:a1:f9:8d:c2:67:57:01:6a:4e:cb:97:e0:aa:e5:
1b:20:cb:74:97:68:f0:3b:9d:78:20:83:18:83:32:
20:fb:08:76:8a:d8:a1:fe:b9:56:c3:e8:26:f4:4c:
08:5c:d3:9d:ce:f7:76:4d:83:ae:9e:a6:da:f1:f0:
57:fd:58:de:b1:b3:21:54:73:6f:72:13:fc:95:de:
1e:cd:bd:01:99:80:c6:b4:de:5d:d9:01:0d:51:09:
6e:de:7b:48:78:57:5f:6c:3b:f0:bd:b4:f0:a9:7f:
36:a3:67:11:6d:89:d1:df:ee:e0:96:dd:4d:47:05:
6d:6e:5b:c2:45:ee:b7:3c:0a:1c:4b:fd:67:7c:9c:
85:0d:41:95:b8:b6:77:df:b5:df:85:35:a9:21:bc:
d2:23:30:d7:1c:10:dc:bd:bc:dd:41:33:22:57:6d:
67:3e:9c:0c:0b:13:d7:df:05:32:ed:22:4a:c9:e6:
25:2e:d4:ea:62:8c:5a:b2:ca:25:d2:9b:80:6d:50:
70:48:85:18:03:9f:2d:d7:cc:66:c1:a5:af:55:84:
21:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:45:6B:BA:66:84:C1:26:47:F9:65:D7:90:68:36:9A:C8:B2:28:C1
X509v3 Authority Key Identifier:
keyid:83:4D:79:F4:12:6B:F9:E9:DC:0B:32:B8:67:64:E7:D6:02:51:4E:01
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/QkVrumaEwSZH-WXXkGg2msiyKME.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.175.166.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:7e:d3:3a:73:26:a5:15:c5:d3:ab:d2:99:c4:69:71:08:e7:
ca:28:cd:05:89:e2:02:42:ef:e4:33:3e:75:c6:8e:22:14:56:
01:3f:38:8c:5b:47:1e:39:06:b7:e3:a0:75:dd:9e:62:1b:37:
45:61:20:a4:dd:c2:29:54:85:10:ed:a6:91:80:68:70:80:fd:
10:87:25:76:14:45:7e:b7:12:b0:04:56:ea:1c:e6:05:9c:7b:
e1:84:d9:85:c1:d2:bc:b0:e0:b6:93:4d:3d:a4:a3:b5:c1:10:
fd:db:42:f1:0f:9e:5a:44:80:43:3a:94:be:55:bd:cf:98:83:
c0:fc:49:b0:a6:c0:a1:2c:97:e5:45:d9:18:72:94:c6:01:9c:
55:9f:4b:f8:c1:5a:97:5a:1e:ac:00:a5:90:8c:74:4e:2e:35:
ed:b8:01:d4:c8:1d:da:8d:7c:fe:48:ea:24:13:fc:01:07:a7:
01:4e:2d:52:af:4b:b0:b3:1d:2c:71:b5:08:b1:b7:7e:28:e0:
84:37:20:b1:b8:14:d7:94:e5:cd:1f:0e:59:9a:06:14:5e:b5:
a5:2c:00:18:73:2f:40:e4:00:ed:2f:ab:7e:ab:52:85:a7:17:
31:b3:8d:36:79:08:b6:27:54:bd:5a:70:77:92:1d:7f:40:85:
ab:9b:f1:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:49 2023 by rpki-client on console-ams.rpki-client.org