Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COMPAL/npoIKVqeQDzJUPvQP8mbHia55kw.roa
File: npoIKVqeQDzJUPvQP8mbHia55kw.roa (raw, json)
Hash identifier: hSIVZ/RZam97s/l+SNQ8lBxYRtQFNeFXdqgyIIkehL8=
Subject key identifier: 9E:9A:08:29:5A:9E:40:3C:C9:50:FB:D0:3F:C9:9B:1E:26:B9:E6:4C
Certificate issuer: /CN=791128256BB12B79908180ABC59F2CF8629889EF
Certificate serial: 0865
Authority key identifier: 79:11:28:25:6B:B1:2B:79:90:81:80:AB:C5:9F:2C:F8:62:98:89:EF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eREoJWuxK3mQgYCrxZ8s-GKYie8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/npoIKVqeQDzJUPvQP8mbHia55kw.roa
Signing time: Sun 07 Feb 2021 12:58:56 +0000
ROA not before: Sun 07 Feb 2021 12:58:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131680
IP address blocks: 103.122.216.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2149 (0x865)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=791128256BB12B79908180ABC59F2CF8629889EF
Validity
Not Before: Feb 7 12:58:56 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9E9A08295A9E403CC950FBD03FC99B1E26B9E64C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:4f:41:3c:12:a6:14:71:92:0a:1e:d6:87:2c:
ae:1b:47:bd:7b:61:aa:07:cd:e7:a4:04:32:c2:47:
ed:f6:54:93:67:fe:f5:ae:df:3c:54:df:cc:31:0c:
46:a2:d6:49:86:9e:0b:9b:f4:e5:fa:42:fa:79:d6:
da:f2:3b:b9:a3:aa:07:ad:79:3e:7b:53:e1:35:04:
f3:4f:20:6d:6a:36:21:4a:59:22:7d:a8:78:23:e6:
7b:fc:56:60:90:0b:44:34:55:bf:82:20:57:25:b0:
70:f2:e8:a7:43:e9:b7:cc:9a:8d:1f:31:b3:3c:59:
51:e1:10:3c:86:e2:26:ad:02:09:14:f8:16:52:51:
ce:9a:a6:3d:18:11:19:2a:c9:6d:a0:10:c3:51:9f:
0c:b1:82:23:e6:bc:84:6a:ea:f5:cc:83:f6:dd:35:
90:79:e6:d5:bb:7a:13:5e:27:bb:6e:b5:26:b0:67:
57:d6:f1:26:97:6c:07:91:74:13:c4:4f:54:49:ee:
ed:af:84:16:c1:9b:02:64:1b:a4:41:b0:05:66:b0:
de:b6:8f:af:de:07:a3:34:d8:ee:3a:33:4a:f2:99:
22:9e:6e:db:3d:32:29:e5:57:e0:a0:67:45:a0:00:
fc:9a:9d:92:fe:02:32:eb:54:35:79:ce:99:56:97:
7c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:9A:08:29:5A:9E:40:3C:C9:50:FB:D0:3F:C9:9B:1E:26:B9:E6:4C
X509v3 Authority Key Identifier:
keyid:79:11:28:25:6B:B1:2B:79:90:81:80:AB:C5:9F:2C:F8:62:98:89:EF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/eREoJWuxK3mQgYCrxZ8s-GKYie8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eREoJWuxK3mQgYCrxZ8s-GKYie8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/npoIKVqeQDzJUPvQP8mbHia55kw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.216.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:46:59:71:0e:32:c9:78:1f:cc:65:07:4a:d1:a9:34:eb:ab:
45:90:ed:71:54:32:e8:a4:7e:61:7b:cb:86:f9:02:87:7d:60:
60:48:f2:ea:49:fc:c8:34:d3:1c:e8:94:df:bd:ef:26:07:b0:
73:75:90:52:a7:f9:ce:07:c2:66:84:49:70:f2:44:9c:47:b7:
04:07:19:31:f9:89:8d:c7:d6:71:3e:c5:a6:bb:bb:00:61:4a:
c6:6b:28:4c:65:47:1d:b6:43:c0:bb:fd:db:1a:12:a4:68:cd:
1f:0b:36:1e:d0:7e:d9:54:17:f1:59:d3:f0:3c:b4:78:ad:89:
99:c0:a5:df:b5:eb:24:03:b5:54:a7:07:c9:5b:18:90:99:ff:
40:bf:b3:8f:71:e2:db:60:36:0b:39:7b:99:8e:f1:85:19:52:
6b:86:c2:8c:d6:79:78:83:ac:28:61:92:50:3c:b3:5b:74:b9:
73:a3:fc:7b:fc:c8:8a:bb:0e:42:4d:b2:2b:02:c4:3b:d7:df:
67:19:74:d3:8c:01:e1:88:c8:38:8d:2f:13:18:8a:fc:05:ad:
7f:eb:cb:04:ca:37:5e:05:22:80:da:4d:37:5a:0d:5a:7e:a6:
a0:32:a6:bf:a2:f6:de:b2:99:0c:5b:18:b4:d4:28:a3:5c:a2:
71:d7:ae:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org