Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EHHKY/geKYUK2203qyw8rkDLJ19aZ5XqY.roa
File: geKYUK2203qyw8rkDLJ19aZ5XqY.roa (raw, json)
Hash identifier: qhUNZqzHv69iAQTpUK1GMH7x7U5oKiiob6MqDAV++uk=
Subject key identifier: 81:E2:98:50:AD:B6:D3:7A:B2:C3:CA:E4:0C:B2:75:F5:A6:79:5E:A6
Certificate issuer: /CN=8302DE193598EDC36222D929FAD6678367D62E21
Certificate serial: 1058
Authority key identifier: 83:02:DE:19:35:98:ED:C3:62:22:D9:29:FA:D6:67:83:67:D6:2E:21
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gwLeGTWY7cNiItkp-tZng2fWLiE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EHHKY/geKYUK2203qyw8rkDLJ19aZ5XqY.roa
Signing time: Thu 15 Sep 2022 02:49:44 +0000
ROA not before: Thu 15 Sep 2022 02:49:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131607
IP address blocks: 103.130.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4184 (0x1058)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8302DE193598EDC36222D929FAD6678367D62E21
Validity
Not Before: Sep 15 02:49:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=81E29850ADB6D37AB2C3CAE40CB275F5A6795EA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:e8:41:06:ec:76:46:27:46:f8:48:57:4a:da:
9d:ba:43:65:eb:7a:7f:e6:0a:4c:47:86:bd:18:fa:
cc:f7:91:bc:89:32:0f:f4:f7:10:b4:26:6a:d5:7d:
2d:09:d9:02:0e:b5:9c:ef:1e:28:f9:0a:63:42:fd:
02:11:a7:10:89:8e:32:b9:84:5b:da:4d:cb:51:32:
02:5c:55:6a:40:c5:57:1a:33:6b:6c:69:80:9d:4c:
2d:58:26:ca:88:4d:5e:d5:40:0f:b7:d8:97:d7:ab:
62:ba:e8:b6:0d:c6:c0:48:12:d2:03:49:d5:a2:cd:
1f:ed:1f:16:6a:ab:f7:2b:c1:20:9a:da:47:9a:97:
14:06:f3:aa:94:d5:66:e9:59:76:d9:0d:9a:ae:fe:
73:84:f2:b2:d5:30:54:c8:dc:e0:4c:11:20:29:66:
52:1d:a8:07:36:ff:1c:d8:d3:0b:68:22:3f:2e:89:
22:b0:be:6c:ce:0a:8b:d8:6f:1d:b6:04:2c:ce:c7:
93:72:e3:3d:fd:a3:7f:20:70:dd:6d:33:19:ad:93:
8f:7d:9d:49:74:3b:75:9f:ed:db:07:3e:09:5f:b1:
85:9c:ac:3a:28:09:d3:c0:5c:c5:d3:d3:af:5e:05:
7d:cd:ff:c8:d2:98:86:a8:5d:11:24:7e:99:a4:28:
0e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E2:98:50:AD:B6:D3:7A:B2:C3:CA:E4:0C:B2:75:F5:A6:79:5E:A6
X509v3 Authority Key Identifier:
keyid:83:02:DE:19:35:98:ED:C3:62:22:D9:29:FA:D6:67:83:67:D6:2E:21
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EHHKY/gwLeGTWY7cNiItkp-tZng2fWLiE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gwLeGTWY7cNiItkp-tZng2fWLiE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EHHKY/geKYUK2203qyw8rkDLJ19aZ5XqY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.84.0/22
Signature Algorithm: sha256WithRSAEncryption
62:79:bf:af:6d:c9:4f:04:19:a7:93:b7:3a:40:5b:13:01:67:
a5:53:02:b6:04:1e:97:39:10:70:00:73:9b:31:0b:30:fa:e6:
8d:04:0a:b1:52:ba:12:1a:bf:df:16:e2:1d:cb:ef:dc:79:18:
76:78:f2:f3:b4:56:7d:03:9c:14:d6:20:d2:35:11:ee:bc:fd:
70:ed:ce:4c:05:ef:9e:58:78:b0:ee:1d:76:c1:ba:24:fe:55:
3d:94:01:73:20:42:70:75:9f:cd:08:3d:84:43:42:40:82:eb:
c9:85:45:31:a7:ff:8a:b7:fa:14:62:a6:0c:9e:b4:6c:c3:82:
c0:ae:4b:2b:72:8b:24:de:5d:fc:50:16:bb:24:02:fc:41:35:
21:1e:1b:e8:ad:ea:e2:49:18:c0:da:83:33:d6:51:9b:76:9c:
53:15:33:ae:84:bd:37:bb:81:4a:cd:a9:91:25:77:f8:6d:20:
46:9e:a3:68:ee:97:d1:40:d1:93:12:08:2c:60:1e:9a:bf:f8:
24:84:4f:7c:7a:86:8d:08:b1:bb:25:1a:a7:2b:81:32:78:d3:
a5:67:9e:67:46:1e:28:f4:cd:07:53:68:df:2f:8f:dd:66:74:
17:01:f9:c7:49:bf:a2:f3:0c:f8:01:0d:a9:7b:24:71:fb:0c:
7f:c2:9e:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org