Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HST/6aToy0uF0tdpuCpf-MNOn_aJj_4.roa
File: 6aToy0uF0tdpuCpf-MNOn_aJj_4.roa (raw, json)
Hash identifier: oIAJhcYFctppjyqC2AFwvF2LXoZfEKLKmRamqrA47OE=
Subject key identifier: E9:A4:E8:CB:4B:85:D2:D7:69:B8:2A:5F:F8:C3:4E:9F:F6:89:8F:FE
Certificate issuer: /CN=833D5BF79B45C730ED141CB539A508D01AA30908
Certificate serial: 081F
Authority key identifier: 83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/6aToy0uF0tdpuCpf-MNOn_aJj_4.roa
Signing time: Mon 10 Apr 2023 04:34:32 +0000
ROA not before: Mon 10 Apr 2023 04:34:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131666
IP address blocks: 103.144.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2079 (0x81f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833D5BF79B45C730ED141CB539A508D01AA30908
Validity
Not Before: Apr 10 04:34:32 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E9A4E8CB4B85D2D769B82A5FF8C34E9FF6898FFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:72:e4:05:86:7e:e9:71:35:d2:75:58:5a:f0:
dc:17:d1:de:52:89:b2:92:90:0a:bf:e5:72:0a:24:
32:94:04:11:9a:a9:1f:5a:71:a8:9e:22:0d:5b:99:
80:a5:6b:7f:6b:db:81:17:88:24:32:24:32:52:40:
50:8a:77:7b:0a:cc:b4:27:98:bd:c7:4a:52:1a:0a:
b8:78:0c:0f:cb:2b:84:6b:3b:37:38:be:7d:04:79:
02:de:db:a1:cb:15:4c:da:cb:8c:8a:9a:cb:b5:a5:
29:fd:2d:88:5c:38:d7:f7:35:80:93:5e:c7:fd:dd:
0b:cb:26:25:43:c9:1e:84:47:de:5e:38:7c:01:1f:
6b:3d:75:a1:aa:cc:03:4e:d1:68:96:c0:d2:f2:fc:
7f:f0:a5:66:3a:1f:7c:a5:64:04:81:4a:78:1c:5f:
ae:42:dc:16:a7:53:20:e6:7e:2d:19:a5:8e:fc:48:
8e:f3:97:5d:11:7f:6a:b9:ec:0c:83:66:1a:5f:6f:
72:c6:66:7f:9e:42:40:26:e6:70:77:7c:a0:fd:2e:
7a:83:5e:cd:d3:4c:65:cd:7c:82:c7:54:66:c5:f7:
c5:91:b6:a6:b9:9b:10:3f:88:a0:ab:8b:9a:49:18:
9e:36:a2:03:46:86:26:86:18:4d:e0:d8:cd:94:b5:
84:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:A4:E8:CB:4B:85:D2:D7:69:B8:2A:5F:F8:C3:4E:9F:F6:89:8F:FE
X509v3 Authority Key Identifier:
keyid:83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/6aToy0uF0tdpuCpf-MNOn_aJj_4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.144.34.0/24
Signature Algorithm: sha256WithRSAEncryption
66:71:fa:a6:21:30:78:f2:b1:8c:0d:32:1a:61:2f:f6:48:ba:
82:d6:77:04:05:9c:aa:ab:91:75:d4:52:af:43:44:62:18:64:
1c:75:d5:5b:cc:ff:79:e5:64:6b:84:43:81:8f:25:2b:6c:87:
b9:cd:e5:87:f0:ef:03:ae:46:b8:18:d1:12:fa:2d:9d:31:87:
c8:66:73:fa:7e:10:22:96:74:51:d4:86:ec:2a:0e:4f:72:35:
c1:3b:4a:d1:8a:0e:93:ad:d0:4b:3f:74:4d:4a:49:c1:96:e8:
92:94:1b:e0:3c:b0:8c:22:0f:33:ed:7a:53:c6:b6:c5:97:03:
e8:5d:2b:48:a8:1c:c9:2e:44:4d:cd:11:f8:51:36:66:ba:aa:
fe:1a:ec:a0:55:96:51:b8:0b:77:ea:ef:de:db:f5:6c:0f:8c:
37:f8:3c:7a:df:4d:d8:d0:2f:b3:ea:dc:d5:5d:8f:45:37:3d:
a6:1a:be:d0:8e:bf:65:c1:2d:ea:9c:e1:43:27:52:8b:b0:68:
a7:1a:ed:7a:92:f5:a1:7b:44:a2:da:f0:c6:69:ce:7d:9f:4c:
c3:61:60:b8:92:c8:e9:03:5c:71:e0:1e:02:8e:5c:ac:58:86:
79:c1:e9:22:1c:16:31:88:58:3e:ec:c0:fa:ee:45:cd:24:ff:
0a:23:01:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org