Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COMPAL/2r_L9kkEmxXl279ikml-FiQ1KDQ.roa
File: 2r_L9kkEmxXl279ikml-FiQ1KDQ.roa (raw, json)
Hash identifier: WQOFg+Ps2Akh7PzM44V4UGfpHZetVOvjU9HEQHMflEo=
Subject key identifier: DA:BF:CB:F6:49:04:9B:15:E5:DB:BF:62:92:69:7E:16:24:35:28:34
Certificate issuer: /CN=791128256BB12B79908180ABC59F2CF8629889EF
Certificate serial: 0903
Authority key identifier: 79:11:28:25:6B:B1:2B:79:90:81:80:AB:C5:9F:2C:F8:62:98:89:EF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eREoJWuxK3mQgYCrxZ8s-GKYie8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/2r_L9kkEmxXl279ikml-FiQ1KDQ.roa
Signing time: Wed 29 Sep 2021 02:52:34 +0000
ROA not before: Wed 29 Sep 2021 02:52:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131680
IP address blocks: 103.122.216.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2307 (0x903)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=791128256BB12B79908180ABC59F2CF8629889EF
Validity
Not Before: Sep 29 02:52:34 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DABFCBF649049B15E5DBBF6292697E1624352834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:55:9d:bc:1c:73:d0:c8:27:e2:4e:82:ad:26:
80:6a:3b:c9:cd:b9:a6:8c:62:1d:b2:ae:75:bc:93:
d6:75:b7:ff:fa:e7:b7:b9:ff:6d:70:5a:5f:6e:70:
e7:05:6b:36:a4:72:90:b6:ef:e6:6d:f6:5c:b6:4f:
1e:b7:3d:bf:51:d0:ed:dc:58:97:b2:fa:7c:25:93:
6a:ee:05:63:ae:00:dc:40:2d:37:14:92:c1:e5:e7:
07:5d:bf:85:fe:d1:19:a5:37:d6:53:07:35:1b:56:
52:f6:b8:62:be:fd:c1:49:5d:7c:ac:7b:94:32:2d:
b9:15:23:f3:b0:8f:7e:1b:d2:56:b6:2c:7d:5a:5b:
3e:66:e4:0c:9b:a9:bd:75:61:15:9d:6e:1a:58:f7:
6e:dd:2c:c6:7f:46:da:4b:81:bf:71:c3:f2:a8:67:
de:5f:46:2f:37:71:a6:46:bb:e1:b2:9f:0f:6f:0e:
bb:4a:c6:7c:8a:66:06:34:9e:e0:a3:e9:a6:af:6d:
93:99:70:7d:1a:94:40:0f:44:32:a0:8c:a6:a7:9e:
28:0f:3c:eb:7d:58:ec:e4:cc:46:a6:a2:7d:19:eb:
94:a7:21:a9:35:f6:bc:51:c7:f1:0c:a6:84:a1:30:
d9:a4:c3:13:75:d5:54:40:62:c0:7b:25:ce:5d:f5:
6b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:BF:CB:F6:49:04:9B:15:E5:DB:BF:62:92:69:7E:16:24:35:28:34
X509v3 Authority Key Identifier:
keyid:79:11:28:25:6B:B1:2B:79:90:81:80:AB:C5:9F:2C:F8:62:98:89:EF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/eREoJWuxK3mQgYCrxZ8s-GKYie8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eREoJWuxK3mQgYCrxZ8s-GKYie8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/2r_L9kkEmxXl279ikml-FiQ1KDQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.216.0/22
Signature Algorithm: sha256WithRSAEncryption
79:9b:a9:dc:89:9d:1f:75:ed:2a:3b:5d:6b:a2:de:f2:35:59:
84:52:ec:05:dd:b6:88:a0:ec:30:4b:cf:40:29:87:67:3b:9c:
5a:61:ee:90:7c:aa:77:15:2b:f1:1d:24:f1:84:d3:ca:33:d1:
de:34:72:17:da:68:eb:e0:a9:4e:49:db:47:ae:e8:87:ad:ca:
d8:ab:88:7a:5e:d1:a5:04:8a:cc:65:ef:96:00:ce:24:19:52:
72:e8:93:8b:1f:53:80:84:84:94:90:99:96:99:96:2a:be:5f:
f5:83:2d:6c:87:4c:65:ea:23:17:f8:1b:70:de:5b:24:13:32:
02:12:c3:d6:a6:0a:9c:d3:7a:8f:d0:87:73:09:e1:c1:7f:4c:
20:7c:b1:e9:7c:b7:5c:bc:2c:54:3c:06:c6:d9:be:5d:eb:7a:
87:c5:42:cd:54:61:53:bc:f1:85:fc:5f:0b:d7:87:e7:08:af:
92:f4:c3:7d:21:46:48:a0:84:e0:a5:d2:03:c2:34:79:30:1b:
d7:4a:e9:53:50:55:43:e8:77:12:f2:ce:cf:bc:92:08:14:76:
e1:77:b1:57:f4:21:01:85:bc:32:f5:06:b1:ca:2d:d2:60:df:
c1:74:0b:2b:37:5b:97:ab:9e:93:db:4a:4e:87:33:b2:41:bb:
96:8a:66:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org