Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/y9JYWH2Ez-lJaMUVRKaQOg6mtJ0.roa
File: y9JYWH2Ez-lJaMUVRKaQOg6mtJ0.roa (raw, json)
Hash identifier: XsiLzO7Q3nZ0V9aeDqwKS8/QDeEVd8oL1BMowQwBPLc=
Subject key identifier: CB:D2:58:58:7D:84:CF:E9:49:68:C5:15:44:A6:90:3A:0E:A6:B4:9D
Certificate issuer: /CN=8C508B7DDA024FB2C9EF7FBBF4FBD02B9F43191D
Certificate serial: F2
Authority key identifier: 8C:50:8B:7D:DA:02:4F:B2:C9:EF:7F:BB:F4:FB:D0:2B:9F:43:19:1D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/jFCLfdoCT7LJ73-79PvQK59DGR0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/y9JYWH2Ez-lJaMUVRKaQOg6mtJ0.roa
Signing time: Tue 07 Jun 2022 07:42:20 +0000
ROA not before: Tue 07 Jun 2022 07:42:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 16509
IP address blocks: 103.168.156.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 242 (0xf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8C508B7DDA024FB2C9EF7FBBF4FBD02B9F43191D
Validity
Not Before: Jun 7 07:42:20 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CBD258587D84CFE94968C51544A6903A0EA6B49D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:10:78:88:2b:7e:d1:bd:03:8c:5b:0b:f5:51:
0a:bb:32:9b:ab:ec:ba:dc:bb:72:89:d4:16:c3:61:
fe:ca:b3:28:49:cb:61:a7:94:22:eb:dc:26:93:c1:
b8:eb:18:c1:70:fd:b8:b2:e3:18:a1:ef:8c:d6:e4:
58:cd:35:31:d1:69:59:46:20:2d:7a:82:36:04:9d:
51:3d:22:cb:9c:64:54:91:f5:30:ed:2b:7e:70:ec:
c0:ad:2e:24:bd:6f:79:f1:21:c4:c6:5c:13:7b:80:
f1:00:00:ff:9a:3d:a6:b3:8d:de:e2:0b:c6:b8:86:
90:bb:81:f1:74:2c:59:f0:15:e6:a5:46:2b:24:34:
b4:94:d1:82:de:f7:49:82:7e:aa:df:4b:0b:67:5f:
f8:9e:63:63:32:3c:1e:c7:35:a4:1b:77:2d:9c:f3:
c7:b8:73:c1:c0:d5:58:24:df:ae:d0:13:cf:5c:ae:
cb:f5:1b:a1:69:79:e7:60:01:76:6f:f2:30:fe:39:
b8:62:c7:4a:ba:b0:87:61:9c:23:3a:6d:29:14:55:
ae:36:7d:2b:b6:e6:a2:d3:bb:3b:bf:e7:29:39:b6:
c4:08:97:10:fc:fc:bc:d6:e7:61:c2:2f:ea:a4:b8:
6e:8b:24:91:47:02:1a:a2:59:bf:74:fa:6c:f4:59:
03:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:D2:58:58:7D:84:CF:E9:49:68:C5:15:44:A6:90:3A:0E:A6:B4:9D
X509v3 Authority Key Identifier:
keyid:8C:50:8B:7D:DA:02:4F:B2:C9:EF:7F:BB:F4:FB:D0:2B:9F:43:19:1D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/jFCLfdoCT7LJ73-79PvQK59DGR0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/jFCLfdoCT7LJ73-79PvQK59DGR0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/y9JYWH2Ez-lJaMUVRKaQOg6mtJ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.168.156.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:6a:80:c4:e0:f0:57:95:0d:45:5c:e1:68:87:9f:03:a0:b3:
97:da:12:3e:da:49:c4:b1:54:36:8a:6d:dc:05:fa:00:c5:7d:
8c:fe:d6:7f:82:b9:d7:b4:58:45:13:72:26:50:f1:76:04:2c:
77:d5:eb:01:5f:bf:32:86:39:63:7f:88:57:c7:a9:20:cb:13:
8d:31:72:16:9d:f7:a6:db:3a:90:f0:3f:58:3c:06:b3:71:fd:
8f:da:6e:7b:ea:8d:88:95:61:f0:58:67:8b:47:d1:ab:ca:12:
1f:2e:76:dd:76:fd:2b:4b:c3:fe:7b:55:3c:66:34:86:51:ab:
86:96:dd:32:75:f7:fa:c2:de:90:8e:0a:ac:82:71:5c:a3:21:
a4:22:88:b6:88:73:a7:06:b5:5a:6e:75:95:88:02:c4:d8:42:
a6:85:bc:bf:38:e1:38:f7:34:f5:70:20:0c:09:a2:b9:d7:15:
5d:58:22:d8:e1:6e:13:bd:df:65:75:02:12:a4:2c:a8:e1:3f:
f7:e7:68:89:58:25:9f:12:47:f0:69:07:60:d9:22:38:4a:dc:
32:87:97:26:fe:50:99:f7:99:59:c6:1d:96:59:fa:55:6c:e1:
bc:e6:8c:fe:59:7c:9c:47:50:bd:66:0c:00:7d:e8:89:d5:cb:
54:51:7b:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org