Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/aP5Mvqb2gbDo1btmgPpJxg53nCo.roa
File: aP5Mvqb2gbDo1btmgPpJxg53nCo.roa (raw, json)
Hash identifier: 6Ny6V3NZqH4b8OQnvYbukNo1NMvM9OgVIkJUAAKbL4E=
Subject key identifier: 68:FE:4C:BE:A6:F6:81:B0:E8:D5:BB:66:80:FA:49:C6:0E:77:9C:2A
Certificate issuer: /CN=1A610A62A8A72CD36C1D22C7085EDF1809518994
Certificate serial: 0630
Authority key identifier: 1A:61:0A:62:A8:A7:2C:D3:6C:1D:22:C7:08:5E:DF:18:09:51:89:94
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GmEKYqinLNNsHSLHCF7fGAlRiZQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/aP5Mvqb2gbDo1btmgPpJxg53nCo.roa
Signing time: Sun 07 Feb 2021 12:47:55 +0000
ROA not before: Sun 07 Feb 2021 12:47:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131667
IP address blocks: 103.146.210.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1584 (0x630)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1A610A62A8A72CD36C1D22C7085EDF1809518994
Validity
Not Before: Feb 7 12:47:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=68FE4CBEA6F681B0E8D5BB6680FA49C60E779C2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a2:62:b7:cd:b5:34:f3:3f:c5:11:68:ac:9a:
0e:10:63:ec:7f:fa:ee:96:d3:e7:59:3d:6e:30:ac:
8d:af:21:46:09:b2:67:c0:04:79:1a:f0:b6:de:11:
6f:de:bb:b2:57:8f:9e:5c:c2:c0:81:df:bd:ee:b0:
ab:78:63:e1:02:72:09:41:80:d0:24:66:49:6e:21:
f4:82:18:2a:de:9c:20:d9:d8:7d:24:0e:48:ab:e1:
90:c6:97:d2:bc:48:3c:e9:fb:b7:d9:67:e1:18:4e:
b8:a6:65:1c:d8:75:ad:57:50:96:4c:05:c5:5d:e0:
e5:41:8c:86:2c:2b:34:f5:a3:e4:61:0f:2f:6b:a3:
3c:1a:21:6b:bd:a3:09:08:72:f4:6b:dd:a5:9a:9f:
cf:40:53:65:97:44:9d:9c:72:09:6e:ca:8e:8f:6e:
98:a2:c7:a5:85:95:20:27:49:03:60:f4:7e:66:47:
0e:f8:1e:c3:10:c5:4e:89:02:3f:7c:8c:23:e6:a6:
7e:88:18:36:c6:6f:33:43:76:14:cc:e0:b3:b2:1b:
58:94:78:1d:1b:23:22:70:9c:2b:64:a3:0c:71:c3:
fd:5b:81:67:5f:34:c6:42:71:0a:66:db:b0:6b:2d:
2e:5b:17:f2:b6:fd:df:55:3c:cc:8e:38:5b:dd:01:
a3:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:FE:4C:BE:A6:F6:81:B0:E8:D5:BB:66:80:FA:49:C6:0E:77:9C:2A
X509v3 Authority Key Identifier:
keyid:1A:61:0A:62:A8:A7:2C:D3:6C:1D:22:C7:08:5E:DF:18:09:51:89:94
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/GmEKYqinLNNsHSLHCF7fGAlRiZQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GmEKYqinLNNsHSLHCF7fGAlRiZQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/aP5Mvqb2gbDo1btmgPpJxg53nCo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.146.210.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:1e:26:81:73:ac:1f:30:fa:86:e7:3f:92:0f:df:34:f4:c2:
99:54:c8:08:ce:99:b5:5d:37:08:57:2f:8c:ec:88:56:82:fe:
30:73:f4:7d:a8:37:75:bb:70:8d:9d:1d:7b:ba:34:9a:c6:c2:
83:a3:6f:b8:8c:84:7d:21:66:0e:7a:29:46:36:98:98:1e:37:
da:c1:b6:a3:b3:3a:f0:b0:72:0d:e2:f1:cb:e0:32:fa:0a:20:
b1:77:51:ed:cc:e7:1d:3f:66:95:77:2f:e8:19:d1:0b:a7:24:
ee:21:97:8e:ff:bf:de:05:b8:9d:00:2f:ad:5f:9f:8e:a4:19:
01:ee:fa:57:95:13:36:dd:b5:f7:c3:07:ae:e4:02:72:46:ab:
2f:54:d3:52:a4:7d:95:13:20:13:98:a1:78:3a:64:46:10:66:
be:f3:8b:7e:3f:8c:70:d1:c4:e9:cb:d8:9b:67:50:96:4b:44:
05:36:11:09:5b:57:ae:83:ac:44:81:ee:9e:be:fe:b1:c3:fb:
ce:13:73:a4:22:57:50:01:dd:5a:12:af:c2:aa:37:41:fd:7f:
64:aa:d3:3a:88:67:fa:21:63:82:7c:e0:fd:1d:70:63:f9:f9:
ff:2e:c2:24:03:4d:e4:d3:c1:77:a9:5f:bc:51:ac:3f:fd:96:
af:d2:97:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org