Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CPSYS/XJua_HHhPpbuIblWqNdrToE0fzo.roa
File: XJua_HHhPpbuIblWqNdrToE0fzo.roa (raw, json)
Hash identifier: 1S6mExEohVPUclZi/Sg6RnydQ+TO5qT4nBtuWABZImM=
Subject key identifier: 5C:9B:9A:FC:71:E1:3E:96:EE:21:B9:56:A8:D7:6B:4E:81:34:7F:3A
Certificate issuer: /CN=1F877983527470E200D5AE06A01588213555FEE6
Certificate serial: 09
Authority key identifier: 1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/XJua_HHhPpbuIblWqNdrToE0fzo.roa
Signing time: Wed 19 Oct 2022 09:44:42 +0000
ROA not before: Wed 19 Oct 2022 09:44:42 +0000
ROA not after: Fri 13 Oct 2023 06:47:27 +0000
asID: 134823
IP address blocks: 103.14.170.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F877983527470E200D5AE06A01588213555FEE6
Validity
Not Before: Oct 19 09:44:42 2022 GMT
Not After : Oct 13 06:47:27 2023 GMT
Subject: CN=5C9B9AFC71E13E96EE21B956A8D76B4E81347F3A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4e:54:90:38:27:94:b1:b8:0d:99:93:0d:1d:
11:88:68:64:a8:db:8a:08:a1:c8:ab:36:ba:a5:51:
cb:b0:e6:39:2d:e3:3b:d3:13:7e:64:9f:ce:7e:e7:
37:61:98:6c:0c:8e:f2:c7:81:65:4b:6f:93:31:3f:
ee:65:aa:ad:fb:e2:22:2f:cb:eb:9c:3c:f2:37:9f:
7e:e8:f1:43:93:dd:35:da:94:53:6f:8a:32:9e:0f:
dc:2f:c7:e2:f8:21:3b:74:e8:76:0e:08:74:62:e8:
51:a7:b1:ee:ca:47:0e:29:3d:c7:66:dc:a2:2b:11:
67:c6:ba:ab:b9:28:60:f6:3e:99:16:89:34:e7:7a:
49:f7:a6:6e:99:66:04:dd:fd:1e:97:7a:16:ff:ff:
fe:b2:78:73:32:de:c1:a3:f5:72:c5:a5:26:13:d4:
69:ae:73:ac:c1:72:13:ef:1e:b9:c6:5f:c4:00:ce:
69:dc:5d:6f:cf:0f:d2:1d:c8:9e:86:df:30:55:33:
97:2f:e9:e5:28:31:35:d2:1b:91:c2:ce:fc:4c:c5:
4e:a2:8b:24:04:6d:33:bd:5d:5e:15:31:0d:67:75:
79:ee:db:1d:f8:20:2f:e1:12:26:c2:0f:26:86:ee:
a3:8e:0a:d5:2b:d7:e3:f0:a7:6e:29:fa:13:22:cf:
2a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:9B:9A:FC:71:E1:3E:96:EE:21:B9:56:A8:D7:6B:4E:81:34:7F:3A
X509v3 Authority Key Identifier:
keyid:1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/XJua_HHhPpbuIblWqNdrToE0fzo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.14.170.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:fe:72:93:ac:c6:b6:95:69:c8:96:f3:99:4a:46:a9:cb:e8:
35:f9:d3:88:9d:ea:97:7f:c6:3c:b8:60:63:97:1a:75:ac:bc:
fa:87:72:8e:8d:0f:0f:7b:1b:0b:70:dc:f7:f2:fe:a7:bb:a0:
5b:99:df:45:52:29:3b:6b:a1:e8:70:87:5a:09:c5:de:53:b3:
a6:1e:87:29:17:c2:e9:89:1e:ee:c4:f5:25:10:c4:b1:91:ea:
b5:23:5a:6e:e1:9f:ab:c7:23:ee:c3:8d:7f:21:d3:05:0e:96:
ad:09:60:a4:24:7a:cf:07:63:3e:9d:5d:2e:d7:16:dc:e0:17:
65:8e:0a:49:34:cf:d5:85:15:a7:ec:64:37:88:c0:64:b5:6a:
02:b5:71:12:89:3b:b5:da:e3:a5:3e:9f:15:10:cb:58:57:b8:
bb:06:8b:79:18:29:d7:3b:20:a9:49:c2:1c:20:5f:6b:a7:f6:
61:b8:ac:68:5e:5c:d6:68:9a:fb:33:2c:12:55:9a:3f:cd:24:
e7:77:bd:ea:7d:72:4b:78:fc:7d:9d:c2:b1:ca:6b:f2:c1:ac:
7d:64:4d:90:fe:a3:eb:d8:ff:4e:37:bd:c4:d4:1a:6e:af:fc:
ad:f0:d1:c8:8d:ec:67:69:5b:54:42:d3:37:29:2c:6e:3c:2f:
9c:82:01:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org