Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/Jk8AzQrsBYx2VWnAoX7kfzm9Jb0.roa
File: Jk8AzQrsBYx2VWnAoX7kfzm9Jb0.roa (raw, json)
Hash identifier: Nqa+duXRvzgK8FY315ddpab82I4ZlgqcXz9IifpYGNk=
Subject key identifier: 26:4F:00:CD:0A:EC:05:8C:76:55:69:C0:A1:7E:E4:7F:39:BD:25:BD
Certificate issuer: /CN=68CAC1FA04D80CFE3E2BE97C7AB1852B6656535F
Certificate serial: 0F70
Authority key identifier: 68:CA:C1:FA:04:D8:0C:FE:3E:2B:E9:7C:7A:B1:85:2B:66:56:53:5F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/Jk8AzQrsBYx2VWnAoX7kfzm9Jb0.roa
Signing time: Wed 29 Sep 2021 02:52:11 +0000
ROA not before: Wed 29 Sep 2021 02:52:11 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131663
IP address blocks: 103.130.100.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3952 (0xf70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68CAC1FA04D80CFE3E2BE97C7AB1852B6656535F
Validity
Not Before: Sep 29 02:52:11 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=264F00CD0AEC058C765569C0A17EE47F39BD25BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:37:bc:a2:be:36:ac:32:6a:cb:5b:b0:20:12:
d4:b3:01:35:cf:b8:ba:8c:4e:26:f6:9d:d4:b2:54:
1d:e6:3f:2a:1a:7f:09:60:e8:2b:4e:65:3d:8b:5f:
40:be:48:90:09:d2:c6:b2:9f:82:6e:bd:17:f0:63:
ab:76:a9:22:81:8a:50:87:00:74:2d:aa:8e:66:48:
b2:c2:94:85:c5:90:6f:c7:1e:ad:78:dd:4c:a5:ca:
85:90:95:88:38:1f:96:13:71:11:6a:81:bc:e9:48:
67:b3:80:f6:80:f2:b2:c4:14:ff:4c:12:f9:8f:04:
2e:ab:f3:8a:09:50:d2:96:58:c5:57:b6:d6:7a:96:
a1:00:3b:dd:a7:8e:88:54:9a:c4:61:3e:6d:9b:9c:
10:13:1f:57:21:0b:5b:79:8b:e9:44:f4:9c:c8:94:
95:d2:a7:59:1e:11:56:2e:9f:7e:8d:70:63:85:4f:
30:fb:9b:be:b7:ce:f5:90:7c:d0:66:c9:87:21:89:
e5:f2:62:70:ca:db:57:c8:b2:dc:ae:88:e2:f5:59:
54:17:bd:ab:cf:65:3e:f2:ea:74:48:2a:48:37:cb:
cd:89:95:fe:43:37:4c:86:3d:ce:d5:17:92:db:e6:
49:03:cc:cf:f3:a4:ec:a5:db:72:ef:8c:57:25:59:
7d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:4F:00:CD:0A:EC:05:8C:76:55:69:C0:A1:7E:E4:7F:39:BD:25:BD
X509v3 Authority Key Identifier:
keyid:68:CA:C1:FA:04:D8:0C:FE:3E:2B:E9:7C:7A:B1:85:2B:66:56:53:5F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/Jk8AzQrsBYx2VWnAoX7kfzm9Jb0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.100.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:99:f4:b0:78:9c:ba:d6:55:b2:05:dd:5a:83:34:98:90:f3:
a3:de:bf:bf:0b:3a:df:d4:e6:05:f2:b8:50:e1:20:45:1d:2c:
2e:25:f0:8f:e4:6a:3f:2a:d6:70:74:05:ea:e7:37:6e:da:0c:
a7:22:61:24:66:b6:1f:90:7f:6b:c8:34:81:a0:8d:88:60:86:
f1:0a:f8:f5:4d:e6:b8:f7:2c:ff:4e:60:b1:c4:5b:34:1e:87:
3f:a9:80:8f:c2:a9:17:87:a8:e8:e5:14:30:c0:b9:dc:39:8a:
7b:53:83:7e:45:e8:f9:f1:c6:7e:5a:7f:cb:85:74:df:2e:f5:
e1:ff:5f:9d:dd:21:d3:87:96:99:f1:3a:00:5e:04:85:c5:fd:
26:02:63:a9:71:18:8d:46:b2:de:cd:e4:bc:84:4b:6c:9e:b4:
8c:0b:bf:a0:b4:e4:7c:f1:16:e4:b5:50:49:7c:aa:b1:a8:17:
16:3b:36:80:9d:62:f3:ff:a4:0a:34:e7:0e:69:84:6a:0e:4d:
00:30:1a:0c:29:55:60:28:ef:94:f9:8d:53:52:16:b8:d5:cb:
1d:4f:14:98:99:b0:b0:2d:c1:f5:ce:4a:70:7e:ec:e7:fb:94:
41:7a:1a:7f:6c:92:7b:24:24:39:95:ea:ce:c7:e6:56:7a:6f:
64:b6:21:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:02 2023 by rpki-client on console-fra.rpki-client.org