Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/F_Vd8MFCIPEj7w1tVPfUmbdkVX0.roa
File: F_Vd8MFCIPEj7w1tVPfUmbdkVX0.roa (raw, json)
Hash identifier: KvODved8r9O9N1RKsceg4Q/KqCuhy8XcrCtKeGEyM30=
Subject key identifier: 17:F5:5D:F0:C1:42:20:F1:23:EF:0D:6D:54:F7:D4:99:B7:64:55:7D
Certificate issuer: /CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE
Certificate serial: 0FC6
Authority key identifier: F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/F_Vd8MFCIPEj7w1tVPfUmbdkVX0.roa
Signing time: Wed 29 Sep 2021 02:55:55 +0000
ROA not before: Wed 29 Sep 2021 02:55:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131606
IP address blocks: 103.124.40.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4038 (0xfc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE
Validity
Not Before: Sep 29 02:55:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=17F55DF0C14220F123EF0D6D54F7D499B764557D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:fa:85:0d:5c:79:45:db:a8:c5:f7:67:87:e0:
7a:ad:4b:f2:90:f2:7a:59:88:b2:7a:d0:c1:8c:92:
0c:0e:8b:b4:e7:ec:9d:67:15:6e:7d:d9:76:d1:e4:
bb:f1:75:c9:27:f1:84:5c:e4:a1:f6:39:da:8f:40:
cb:b3:13:50:90:c3:a1:9c:e1:a0:58:74:38:74:54:
54:1d:dd:41:78:60:08:37:b6:9f:34:ad:1f:2d:68:
8f:10:76:8b:ca:16:12:37:44:e3:16:bc:eb:b2:d4:
37:c4:ba:d2:2e:1e:57:63:1a:75:21:9f:84:76:1f:
70:c1:a2:d2:e2:eb:80:b8:1b:fb:f2:29:65:5f:7f:
92:3c:a3:4d:12:90:47:d9:73:77:e6:e9:fb:b3:a0:
f9:12:2a:fc:3b:53:0b:9b:e7:c0:69:8f:a1:52:8d:
8c:57:0a:b9:70:07:41:12:83:d4:af:71:03:01:b0:
77:66:52:17:e2:db:bf:b0:39:60:a1:18:cd:fa:e2:
63:f7:b2:dd:01:33:fd:ea:d7:a7:e2:e7:06:9d:b6:
96:f0:34:15:ec:b4:b0:d4:fc:74:d3:66:93:6c:fd:
a4:fd:d8:89:8c:b9:15:1f:f5:4c:9a:49:d6:19:83:
fd:9b:ad:5c:05:57:e0:6e:c0:57:e3:ac:23:36:33:
18:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:F5:5D:F0:C1:42:20:F1:23:EF:0D:6D:54:F7:D4:99:B7:64:55:7D
X509v3 Authority Key Identifier:
keyid:F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/F_Vd8MFCIPEj7w1tVPfUmbdkVX0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.40.0/23
Signature Algorithm: sha256WithRSAEncryption
88:44:c4:53:20:84:6c:d7:33:03:71:bf:78:82:b4:4e:89:6c:
32:27:d2:df:cc:6a:57:70:ee:dc:a2:f0:26:02:47:5e:5d:c8:
83:d2:e2:e0:bc:d6:69:12:27:b6:14:75:2a:9b:32:ae:03:a5:
3c:e0:ca:20:ca:14:e3:8d:a9:a7:89:1f:71:b2:33:b3:e5:49:
e5:3d:13:aa:61:aa:65:ee:07:84:01:e1:96:d1:05:e2:08:f6:
56:b2:d8:e1:50:d2:98:94:df:6f:03:27:13:b7:33:2e:5d:50:
88:c9:5c:6f:94:8f:58:ca:11:c6:dc:48:94:64:c3:53:4a:b4:
ed:18:9f:7c:c3:da:f3:94:84:21:54:cd:c2:c5:1e:2b:e1:bf:
79:96:a3:a6:d7:4d:0b:0f:6c:d0:b9:5a:0f:0b:b5:a5:37:3f:
8e:cb:aa:10:c4:c8:b3:c2:2b:59:73:ed:dd:40:ff:3e:53:1b:
0d:ff:df:61:88:1a:fe:3a:70:d2:5a:eb:0b:e4:d2:73:1f:c2:
c4:68:63:fc:d2:6b:ec:e4:ba:08:2a:ef:f8:ef:a9:d6:f8:5c:
9a:d8:64:ad:be:c8:d5:75:b5:f4:45:71:93:2e:5d:19:4b:1a:
ed:3e:f6:b3:a7:1e:f1:f3:b9:87:17:e4:d2:c2:91:59:c0:9e:
98:5c:bf:cb
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:53 2023 by rpki-client on console-ams.rpki-client.org