Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/INFORICH/Xkcq3svIomB7RPHldHN4w1GTTUM.roa
File: Xkcq3svIomB7RPHldHN4w1GTTUM.roa (raw, json)
Hash identifier: b9+y5pvqQcmKJEuyuRdFXBBFPbzWSXeyHlPR36wZcLg=
Subject key identifier: 5E:47:2A:DE:CB:C8:A2:60:7B:44:F1:E5:74:73:78:C3:51:93:4D:43
Certificate issuer: /CN=9197E979AFBB1BEC2EFC2647207560561BE900B6
Certificate serial: 08
Authority key identifier: 91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/Xkcq3svIomB7RPHldHN4w1GTTUM.roa
Signing time: Fri 18 Sep 2020 09:02:40 +0000
ROA not before: Fri 18 Sep 2020 09:02:40 +0000
ROA not after: Thu 22 Jul 2021 06:24:06 +0000
asID: 131677
IP address blocks: 103.152.252.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8 (0x8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9197E979AFBB1BEC2EFC2647207560561BE900B6
Validity
Not Before: Sep 18 09:02:40 2020 GMT
Not After : Jul 22 06:24:06 2021 GMT
Subject: CN=5E472ADECBC8A2607B44F1E5747378C351934D43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a7:b7:88:9b:fc:df:a9:7a:aa:5e:c6:e7:48:
14:d5:82:8a:24:8c:a1:0e:01:ad:3b:81:15:d3:b6:
ac:f2:8f:69:be:30:ee:84:a4:74:a0:51:f1:b4:45:
f9:f8:1c:1c:14:46:b9:4f:ba:82:95:fc:b8:cc:5c:
16:e8:57:92:1a:5b:4c:d2:b2:f8:5c:48:85:0b:34:
59:b0:87:ec:47:a5:3a:de:4c:2b:09:47:d7:04:f6:
6e:07:c5:74:6d:2d:c6:79:39:61:d9:52:fc:b4:bb:
a9:8a:d0:11:b1:40:22:ae:e4:23:e8:7d:f1:e7:9f:
05:43:2b:a9:ee:e0:51:14:99:11:2c:8e:a7:da:a5:
c2:88:4e:7f:e5:cf:ab:bb:c9:85:a2:2d:98:c9:bc:
ad:6a:ba:41:13:fd:f4:d0:d2:9f:56:f7:c8:63:8e:
56:df:75:c3:40:fe:44:d6:9b:52:20:b2:66:cf:d3:
64:98:1c:59:82:75:5b:56:8b:d6:24:e2:b9:eb:3a:
dc:18:32:6b:db:fe:8f:8e:42:61:01:37:12:c5:45:
2d:27:0f:29:76:de:29:59:dc:6f:b4:cc:17:a7:e6:
ec:7e:a5:4d:24:43:cd:9d:1d:2a:9c:8b:0a:8f:00:
0b:97:18:f2:73:5a:d0:b5:7b:ca:5c:a0:1b:a4:66:
5a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:47:2A:DE:CB:C8:A2:60:7B:44:F1:E5:74:73:78:C3:51:93:4D:43
X509v3 Authority Key Identifier:
keyid:91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/Xkcq3svIomB7RPHldHN4w1GTTUM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.252.0/23
Signature Algorithm: sha256WithRSAEncryption
67:31:a9:de:fb:df:e4:cc:7f:d9:ed:57:b8:28:bb:29:62:cc:
bf:8b:0d:df:f6:48:20:d9:c3:bf:b9:02:5b:cb:23:bf:49:e3:
bd:99:8a:7f:6e:1b:3f:ec:1c:7f:0b:3c:e4:21:fa:9d:1e:b1:
4f:8b:5f:08:0c:7e:ca:29:d2:9c:4f:bc:2d:13:ff:9e:07:79:
9c:52:3a:82:d7:07:10:fd:aa:58:85:83:9b:2d:1f:93:60:8f:
2e:35:f2:9e:a2:41:11:ee:94:11:8e:0e:8d:11:e2:62:43:0c:
7b:8b:f9:fc:68:45:47:42:77:6b:3a:dc:ee:f0:ae:55:90:6f:
66:38:49:7b:41:9a:5b:ca:25:90:af:12:b4:6c:04:30:e7:1f:
78:a7:44:77:2c:b0:35:5c:b8:d1:49:39:ac:a9:44:d2:f6:b2:
8e:8f:00:d6:4d:d4:67:96:9a:89:1a:2a:19:bc:31:c0:ff:e0:
95:86:80:ec:dd:c9:b5:81:39:d9:ea:db:ab:b5:b9:cd:63:18:
2a:7e:45:c2:14:6a:e5:54:ee:c1:bf:d3:84:6e:18:05:30:4a:
7c:86:8d:e6:21:34:b6:58:aa:71:73:5b:19:da:3d:9c:e9:71:
e2:e2:52:c5:f2:8f:53:2f:fd:86:77:a3:f1:42:42:ea:bd:b2:
cb:ef:93:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org