Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/Lh_z23yPqMHuXl5ErU9FLYoN6qs.roa
File: Lh_z23yPqMHuXl5ErU9FLYoN6qs.roa (raw, json)
Hash identifier: LUVR1rgJ/73CyEwAVlRWsYqPcMyLjOpgapEZxWJHLvA=
Subject key identifier: 2E:1F:F3:DB:7C:8F:A8:C1:EE:5E:5E:44:AD:4F:45:2D:8A:0D:EA:AB
Certificate issuer: /CN=1A610A62A8A72CD36C1D22C7085EDF1809518994
Certificate serial: 0621
Authority key identifier: 1A:61:0A:62:A8:A7:2C:D3:6C:1D:22:C7:08:5E:DF:18:09:51:89:94
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GmEKYqinLNNsHSLHCF7fGAlRiZQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/Lh_z23yPqMHuXl5ErU9FLYoN6qs.roa
Signing time: Tue 19 Jan 2021 02:31:25 +0000
ROA not before: Tue 19 Jan 2021 02:31:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131667
IP address blocks: 103.146.210.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1569 (0x621)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1A610A62A8A72CD36C1D22C7085EDF1809518994
Validity
Not Before: Jan 19 02:31:25 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2E1FF3DB7C8FA8C1EE5E5E44AD4F452D8A0DEAAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:61:e8:86:e1:c8:94:95:24:d0:ff:24:ae:20:
0a:fc:05:0a:7c:2e:d5:32:cb:8c:d2:1b:57:65:4a:
0a:09:5e:7b:a9:3e:40:6e:a4:69:6b:e0:23:91:09:
46:6c:ec:ec:fb:d1:83:c1:aa:0a:89:d5:9b:fb:35:
79:ca:40:73:f8:a9:6a:1d:30:85:a0:f5:d5:4f:34:
bd:a5:03:71:0a:8b:0d:fc:1b:78:cb:33:d0:e5:06:
46:5b:40:7e:e0:58:3a:3c:63:c0:54:ec:98:14:d9:
f5:e7:18:8b:2c:92:55:48:85:46:b1:f5:0e:c6:f2:
50:a4:28:5a:98:41:7f:25:6f:d2:b0:3a:a4:d1:62:
1b:e5:2c:b8:16:9d:f6:03:21:cd:04:d9:57:4b:ff:
ef:0a:bf:88:79:17:19:bd:d8:4b:1f:7f:04:dc:2b:
8f:65:bb:06:91:86:c5:ac:15:ca:65:f4:6f:21:d1:
85:2d:ed:6c:f1:91:76:1b:c5:32:8f:3b:90:b4:fc:
36:4f:e8:a2:49:77:a9:b2:0e:8b:cf:cd:86:00:b7:
c4:24:52:21:88:c8:e5:2e:cd:09:13:b2:42:ed:7d:
43:58:21:e3:14:a9:b8:5c:8c:42:32:31:d9:3f:1a:
b0:8e:6c:47:38:09:49:b4:80:10:43:5a:ff:c1:77:
56:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:1F:F3:DB:7C:8F:A8:C1:EE:5E:5E:44:AD:4F:45:2D:8A:0D:EA:AB
X509v3 Authority Key Identifier:
keyid:1A:61:0A:62:A8:A7:2C:D3:6C:1D:22:C7:08:5E:DF:18:09:51:89:94
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/GmEKYqinLNNsHSLHCF7fGAlRiZQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GmEKYqinLNNsHSLHCF7fGAlRiZQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/Lh_z23yPqMHuXl5ErU9FLYoN6qs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.146.210.0/23
Signature Algorithm: sha256WithRSAEncryption
bb:4d:2b:0a:5f:b7:4f:86:bd:96:39:a9:55:81:eb:ef:11:24:
8d:ab:21:26:ca:40:38:aa:e5:bf:bb:55:56:7d:91:71:73:7c:
b2:3c:5e:3f:e5:c9:10:d3:55:11:45:7c:e9:cb:41:ab:65:75:
fb:bf:d3:17:0f:5c:2d:86:2a:a2:da:06:0b:29:48:2f:10:64:
14:50:2b:83:bf:96:bd:6d:81:2f:c6:fc:cd:43:45:d3:2d:91:
23:7c:32:0f:74:4b:2f:86:de:d7:64:1f:37:94:06:1c:8d:cd:
77:17:ca:1f:22:56:d5:c7:c2:92:40:9d:a0:1f:0b:e7:da:09:
f2:3b:d7:24:f4:7c:74:81:d8:b0:42:7c:4d:ca:2d:b1:50:e0:
d9:b6:42:87:c9:f0:2a:b7:91:e3:b5:7a:c7:c8:4d:a9:d6:25:
f8:15:aa:5a:80:07:f1:19:18:fa:1f:80:32:ef:90:de:58:b5:
6a:81:4d:2d:20:a6:8e:7c:35:40:12:3a:89:3c:57:de:83:8e:
38:ce:8f:aa:96:95:df:2d:32:fc:ad:03:82:b7:48:43:87:16:
92:c7:85:e0:9b:c9:3e:c5:78:f4:41:70:ca:8d:cd:6e:94:9d:
46:ab:90:a3:2e:cb:1a:44:9f:40:f1:bc:8c:0a:e9:52:7c:0e:
7e:e2:3d:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:02 2023 by rpki-client on console-fra.rpki-client.org