Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GOEASY/nPozg1uhGVJKuEJby5fM9ZDNqZ4.roa
File: nPozg1uhGVJKuEJby5fM9ZDNqZ4.roa (raw, json)
Hash identifier: 5plaA9k6kwAlPiIg983xkpFpPkR0vhPHrzNMVOO7o+o=
Subject key identifier: 9C:FA:33:83:5B:A1:19:52:4A:B8:42:5B:CB:97:CC:F5:90:CD:A9:9E
Certificate issuer: /CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762
Certificate serial: A8
Authority key identifier: 66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/nPozg1uhGVJKuEJby5fM9ZDNqZ4.roa
Signing time: Tue 15 Mar 2022 09:53:23 +0000
ROA not before: Tue 15 Mar 2022 09:53:23 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7483
IP address blocks: 103.170.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168 (0xa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762
Validity
Not Before: Mar 15 09:53:23 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9CFA33835BA119524AB8425BCB97CCF590CDA99E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:79:ed:ab:cd:56:6d:89:f9:0e:dd:cf:df:48:
0e:03:7b:a0:f4:99:a2:b7:02:c1:9a:22:11:6d:7c:
69:70:07:bf:6f:df:c6:db:2c:d0:9e:04:31:9e:7a:
ad:2a:4b:43:f4:8d:8b:3d:e2:de:43:2d:fd:12:f0:
9e:39:b9:e3:bf:2f:00:c7:fb:05:de:01:7b:a5:67:
6e:d3:b9:45:01:57:68:0f:9a:d0:6a:f1:21:a8:03:
5c:8c:5f:22:43:ca:93:75:54:d6:f2:7d:68:db:5d:
55:97:ac:d8:19:f8:ad:df:43:9c:66:4b:37:68:c4:
90:51:9a:cc:20:b0:b4:01:49:a6:12:82:5c:f4:0a:
e7:70:4f:c4:1c:c1:00:2c:09:1d:57:59:eb:71:e7:
2b:aa:a8:ed:44:95:c7:d1:4d:cb:c2:5a:67:58:50:
c4:86:3f:64:20:d0:17:36:e1:6d:a6:98:9e:d4:05:
08:8f:b9:d2:77:2b:d5:ac:0c:b2:34:08:07:df:1a:
20:1e:23:75:a1:6e:46:a1:4e:e1:a8:db:84:8a:05:
44:71:c2:3e:cf:e6:b3:fe:c1:27:9c:f0:4b:76:6c:
85:89:43:7f:00:6b:3a:45:dd:3f:da:2f:fb:71:87:
d4:91:17:8b:4d:62:c1:8e:29:c0:aa:a0:5a:f6:b9:
7d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:FA:33:83:5B:A1:19:52:4A:B8:42:5B:CB:97:CC:F5:90:CD:A9:9E
X509v3 Authority Key Identifier:
keyid:66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/nPozg1uhGVJKuEJby5fM9ZDNqZ4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.170.14.0/24
Signature Algorithm: sha256WithRSAEncryption
21:9a:1e:b1:2a:2c:34:5f:12:2f:f8:0d:0c:75:57:39:de:8b:
04:e7:aa:4b:33:ae:9d:f0:8c:75:9d:42:19:5d:91:cf:c8:fd:
61:83:31:f0:37:94:2d:0c:bc:17:66:b7:5f:6f:a8:4c:df:5a:
4d:7f:7f:6a:1d:57:1e:68:06:10:39:ed:be:6b:e4:90:aa:02:
c6:66:53:a8:2f:1d:91:e6:ba:b2:be:63:d7:38:0b:5c:db:93:
0e:1c:81:dc:fb:69:c2:a7:e5:fe:0f:1c:e6:ca:6a:b4:cf:da:
f7:02:9b:15:91:58:ba:c0:95:90:ac:e8:0f:57:80:5c:a5:eb:
50:1e:fb:d8:64:1f:70:e9:b8:85:98:63:b6:bd:d8:ac:be:a9:
f5:9f:61:a3:84:de:5e:8c:3e:98:bc:ac:b6:f2:ae:23:4c:2f:
51:66:d4:ec:a9:6a:0e:dc:30:dc:bf:38:91:ef:7f:52:e8:9a:
bf:4d:d0:f3:19:d9:1a:24:a1:04:f7:c5:ec:f1:7a:f0:e2:f7:
0b:2a:d3:72:29:45:7d:da:d6:33:c3:45:53:d1:d7:60:13:de:
33:4e:58:c2:ef:06:a7:dd:8e:91:44:e1:8f:5f:e8:1d:30:0f:
e1:60:0a:c2:3f:77:1f:d1:aa:47:e9:27:42:89:0d:76:70:d3:
a9:26:08:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org