Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GH/-5poZOqSt1_7ImAiU0cktWJpsVU.roa
File: -5poZOqSt1_7ImAiU0cktWJpsVU.roa (raw, json)
Hash identifier: 0zUQkScxQ5tKzbh59NNsQi1w1DW3rJtMSLYEqBWguLU=
Subject key identifier: FB:9A:68:64:EA:92:B7:5F:FB:22:60:22:53:47:24:B5:62:69:B1:55
Certificate issuer: /CN=E63C5A15B7CE90030108F4AD38E541E6CDB5BEFE
Certificate serial: 0F77
Authority key identifier: E6:3C:5A:15:B7:CE:90:03:01:08:F4:AD:38:E5:41:E6:CD:B5:BE:FE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/5jxaFbfOkAMBCPStOOVB5s21vv4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GH/-5poZOqSt1_7ImAiU0cktWJpsVU.roa
Signing time: Sun 07 Feb 2021 11:46:54 +0000
ROA not before: Sun 07 Feb 2021 11:46:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 103.130.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3959 (0xf77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E63C5A15B7CE90030108F4AD38E541E6CDB5BEFE
Validity
Not Before: Feb 7 11:46:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FB9A6864EA92B75FFB226022534724B56269B155
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2e:b2:b2:4d:f8:88:12:16:09:d9:6c:d6:a0:
49:dd:1a:f8:1d:05:90:d7:fa:b5:7a:ff:e4:bd:2a:
e3:67:06:26:9f:59:39:8e:2f:27:8e:11:71:d5:65:
dd:7a:13:22:45:15:a6:1f:0a:08:cb:9b:af:15:87:
d6:33:91:b7:0c:94:bd:e0:22:98:2e:2e:a9:50:8e:
d6:3d:eb:aa:89:cf:61:a4:da:d4:46:16:d5:9c:81:
5b:1e:72:94:f0:98:2b:13:08:26:f4:45:8e:81:3a:
e6:7a:47:8b:d7:c4:11:45:77:63:fb:c6:49:a5:23:
7a:30:4e:25:7d:40:a2:07:be:29:19:d0:08:36:7e:
5b:86:41:c2:56:d8:4c:a9:95:a6:38:bf:74:a4:dc:
81:06:5a:ed:ae:78:95:e6:2d:ff:93:a0:4b:28:bf:
3a:17:d5:bd:d0:2c:0f:9e:5a:2b:ad:c0:e8:b7:5e:
78:97:56:2a:fd:af:92:8b:41:53:df:f5:52:0d:c7:
1d:be:8d:8a:c7:a0:8a:95:f6:3d:05:1a:6a:40:ad:
8e:75:7a:75:1c:1d:26:98:fa:25:7d:cf:29:de:64:
a0:1d:69:1a:12:a4:86:93:d0:2e:ec:28:61:25:7d:
fc:98:c2:b0:f0:25:94:a2:de:99:54:bd:58:5c:04:
3c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:9A:68:64:EA:92:B7:5F:FB:22:60:22:53:47:24:B5:62:69:B1:55
X509v3 Authority Key Identifier:
keyid:E6:3C:5A:15:B7:CE:90:03:01:08:F4:AD:38:E5:41:E6:CD:B5:BE:FE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GH/5jxaFbfOkAMBCPStOOVB5s21vv4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/5jxaFbfOkAMBCPStOOVB5s21vv4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GH/-5poZOqSt1_7ImAiU0cktWJpsVU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.44.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:2a:81:80:b3:6c:f3:7c:ce:61:01:ab:a2:be:ee:be:4c:4a:
51:c9:3d:c1:b0:1e:80:5b:fc:dc:bf:6b:15:89:fe:f0:cf:7e:
1b:4e:9e:3b:26:b6:7e:16:cc:45:c0:d8:8b:e3:27:c3:db:bf:
c4:0f:0a:aa:4c:82:f5:7c:46:91:ac:b4:ef:19:36:28:e4:52:
66:ac:f8:68:e6:2d:3a:41:7b:51:2c:69:f4:d7:18:60:6e:8f:
1a:2a:b4:e2:51:02:ae:de:18:96:0b:98:d1:84:bb:cf:ab:dc:
8f:38:ff:8b:a6:f8:89:36:b5:93:e7:0a:bc:1a:5e:21:0e:58:
82:dc:57:01:b1:d2:41:79:bc:38:56:48:29:be:87:33:fb:d2:
1d:4a:25:e2:f4:0d:c0:c5:dc:0c:16:13:ff:95:ea:10:9d:d1:
0e:b9:5e:81:be:19:1f:3d:93:c4:99:bb:32:d5:e5:27:84:65:
14:2c:d5:06:33:7b:3f:ef:01:83:e4:59:2a:a1:61:7c:cf:ee:
5d:8f:a3:69:23:76:c1:d1:bf:c3:77:bd:9b:1b:1a:d5:e7:04:
44:7c:cd:d5:2d:27:40:c8:6e:c2:0b:58:03:10:7c:95:31:d2:
e8:09:0c:48:0b:45:e3:26:35:e0:d5:36:6b:05:fd:eb:4d:60:
a5:25:ef:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:54 2023 by rpki-client on console-ams.rpki-client.org