Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COMPAL/hM4w6I6RNBggeZkDj0KN3mnqz8Y.roa
File: hM4w6I6RNBggeZkDj0KN3mnqz8Y.roa (raw, json)
Hash identifier: k1VR1Bf2lJqxk9vLoLnZ27sqSWmzzPRupJ7Ker9pFvg=
Subject key identifier: 84:CE:30:E8:8E:91:34:18:20:79:99:03:8F:42:8D:DE:69:EA:CF:C6
Certificate issuer: /CN=791128256BB12B79908180ABC59F2CF8629889EF
Certificate serial: 072F
Authority key identifier: 79:11:28:25:6B:B1:2B:79:90:81:80:AB:C5:9F:2C:F8:62:98:89:EF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eREoJWuxK3mQgYCrxZ8s-GKYie8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/hM4w6I6RNBggeZkDj0KN3mnqz8Y.roa
Signing time: Tue 29 Sep 2020 10:00:02 +0000
ROA not before: Tue 29 Sep 2020 10:00:02 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131680
IP address blocks: 103.122.216.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1839 (0x72f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=791128256BB12B79908180ABC59F2CF8629889EF
Validity
Not Before: Sep 29 10:00:02 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=84CE30E88E913418207999038F428DDE69EACFC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2d:32:65:0e:1f:fa:a2:d2:4a:ac:ac:2e:82:
e9:91:f7:1a:a0:ab:9d:da:92:71:78:bc:1a:c0:44:
dd:e2:43:d6:f3:90:41:ca:72:13:80:73:aa:59:ad:
a2:a4:59:06:c5:65:ff:80:60:8b:ca:67:c8:14:da:
46:75:22:3f:bb:7d:5c:3b:4f:0f:00:3b:ee:fe:59:
36:07:d6:0e:3e:d1:ca:a8:46:f1:a4:98:b2:fd:5c:
6c:b8:1b:d2:58:20:50:9e:73:01:49:e3:5c:bc:ae:
55:91:71:84:99:64:41:e4:44:b8:f6:33:dc:31:71:
fb:34:b6:83:a5:5b:d0:62:4d:62:be:0c:c0:bc:bb:
d4:9d:be:87:72:9e:b7:8d:79:ae:91:e9:fe:60:77:
23:c9:a5:99:7f:df:7e:78:96:c0:bc:17:6f:81:b7:
e2:78:f5:d7:cf:3a:b5:52:9f:79:d6:e5:c7:85:5c:
2f:95:6c:20:ad:d8:21:1b:ee:9a:b0:74:cb:ca:ae:
33:9e:c5:89:c1:87:12:d0:95:b2:07:2b:03:12:4a:
b2:75:64:93:ed:68:60:db:f3:04:1d:e5:07:fd:21:
ee:26:04:a9:e8:9f:09:44:a9:07:ca:db:60:3c:e5:
ed:e1:94:92:2e:d9:00:d7:fe:97:41:f4:35:8d:64:
e7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:CE:30:E8:8E:91:34:18:20:79:99:03:8F:42:8D:DE:69:EA:CF:C6
X509v3 Authority Key Identifier:
keyid:79:11:28:25:6B:B1:2B:79:90:81:80:AB:C5:9F:2C:F8:62:98:89:EF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/eREoJWuxK3mQgYCrxZ8s-GKYie8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eREoJWuxK3mQgYCrxZ8s-GKYie8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/hM4w6I6RNBggeZkDj0KN3mnqz8Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.216.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:c3:aa:de:73:d7:43:5c:f8:b1:b0:6a:83:44:46:c4:50:be:
05:df:da:11:05:9f:32:09:db:82:9e:88:36:dc:61:25:d4:95:
88:32:5c:e2:81:e8:cd:c5:3a:ac:31:08:ef:ca:8c:a2:60:7b:
1e:d3:e2:be:6e:d6:c0:1d:23:87:f6:20:b8:b9:a1:f4:78:8c:
a2:eb:3d:a8:aa:a2:31:bc:58:34:80:39:9a:85:f6:5f:63:30:
10:10:8d:97:f1:9f:d9:98:bd:d0:ff:a9:19:f8:47:5f:81:16:
3c:e6:ea:83:a7:e1:d5:a4:a2:36:76:ac:51:7e:50:53:78:18:
22:fe:27:8b:e1:91:62:2b:7f:e6:96:24:7b:e2:66:a6:b8:a3:
69:7c:cd:43:00:12:58:a2:09:4d:e0:f7:68:2f:42:2d:b4:a9:
40:c5:be:f4:76:40:74:a0:21:60:4e:86:70:9d:c4:7b:83:9e:
e6:a3:43:cd:cb:46:28:d4:67:8d:f2:ac:69:99:c8:29:a1:40:
aa:2f:26:75:64:f1:e5:e3:cf:ff:2a:8d:c7:3f:70:ce:ad:0e:
06:8c:17:88:cc:e8:9e:07:93:28:1a:13:fc:15:4a:c3:87:5a:
c6:30:16:fe:07:5f:51:b2:68:fb:65:19:e3:2c:3a:3f:50:99:
79:4a:85:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org