Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISTVC/afIBogXK9zmnYmfxvntm96WcnjM.roa
File: afIBogXK9zmnYmfxvntm96WcnjM.roa (raw, json)
Hash identifier: SLjqL/2RPyKb6+lnEOt0G0x3p7EYRUKz9eyKrE/+lx4=
Subject key identifier: 69:F2:01:A2:05:CA:F7:39:A7:62:67:F1:BE:7B:66:F7:A5:9C:9E:33
Certificate issuer: /CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02
Certificate serial: 6A
Authority key identifier: 68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/afIBogXK9zmnYmfxvntm96WcnjM.roa
Signing time: Thu 07 Apr 2022 03:15:00 +0000
ROA not before: Thu 07 Apr 2022 03:15:00 +0000
ROA not after: Wed 02 Nov 2022 01:30:09 +0000
asID: 9920
IP address blocks: 103.173.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106 (0x6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02
Validity
Not Before: Apr 7 03:15:00 2022 GMT
Not After : Nov 2 01:30:09 2022 GMT
Subject: CN=69F201A205CAF739A76267F1BE7B66F7A59C9E33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d6:c9:10:43:19:ad:61:b8:33:e1:dc:ca:69:
16:82:b9:6d:1a:94:9d:88:96:56:43:41:f6:8b:a3:
d3:f2:13:b1:d8:42:a2:59:db:d6:db:2b:1e:9f:85:
ec:25:d0:c9:51:94:86:4b:80:85:5b:d9:67:fc:ef:
6a:69:84:f7:dd:10:6b:fc:02:64:4e:c4:cc:17:92:
21:ad:bc:a0:10:a6:93:53:c1:cb:fe:3f:e3:f2:11:
6c:87:df:4d:4f:bb:9b:c9:08:71:38:ce:c1:47:8b:
61:18:4c:24:c4:78:dc:7c:21:6d:92:23:59:ce:85:
7d:56:b0:7b:a5:7d:4a:20:2f:3b:1d:43:06:6c:ba:
74:fc:17:1a:e5:94:99:57:1f:de:08:f1:24:87:7d:
15:96:4e:30:37:3b:e1:2b:af:ee:18:2b:89:84:03:
e4:28:c7:f0:9f:47:17:50:9e:ce:f5:1f:f6:ba:98:
a7:83:ad:21:0e:00:43:ce:99:9b:e0:a1:80:35:93:
d8:15:49:fe:2c:a7:d6:07:97:e6:2b:38:36:75:f9:
10:75:11:17:6b:d4:e4:0b:99:ff:ec:03:b1:1c:cf:
14:dc:ef:e6:9f:7d:f6:5e:ef:ec:0b:73:3c:26:f6:
2f:57:21:30:ff:ed:60:ee:ab:10:ee:41:e6:1d:01:
59:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:F2:01:A2:05:CA:F7:39:A7:62:67:F1:BE:7B:66:F7:A5:9C:9E:33
X509v3 Authority Key Identifier:
keyid:68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/afIBogXK9zmnYmfxvntm96WcnjM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.173.94.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:a9:25:4b:ef:0c:b0:6d:af:9d:a0:a0:3f:f2:c8:7d:6f:4c:
a8:b2:ac:2d:38:60:74:aa:65:29:59:60:21:4e:84:72:3c:8b:
07:5b:0c:da:0a:ae:5f:a1:d3:02:63:33:a2:83:90:e1:b3:39:
78:a8:2b:7c:c4:53:fe:94:20:20:33:72:13:99:ba:ce:bd:7a:
54:51:de:4b:d8:77:2a:66:2b:14:cb:8f:70:99:e9:78:b0:87:
36:29:74:44:1b:a1:9d:b0:f5:55:6f:7c:0a:58:70:ee:0d:26:
45:eb:90:2c:f1:30:c4:94:5d:48:c7:fb:e7:f8:f9:01:5f:2b:
21:38:54:b8:3e:25:f5:28:d1:44:43:29:5b:9f:ee:fa:e9:17:
2a:a1:1f:16:60:e0:62:d8:6e:58:36:31:94:7b:74:57:69:c6:
3c:d0:3a:95:63:22:1e:f9:57:72:61:7a:c8:32:50:a2:b8:00:
a9:d9:ea:b3:8b:45:2b:da:d3:3c:01:77:d0:61:3f:c2:29:35:
ad:d6:ca:04:56:3d:a7:ee:b2:51:18:ae:1d:37:cb:19:85:80:
78:cc:f0:75:9d:fc:16:e8:09:1a:ee:f2:0d:00:72:35:ca:5b:
38:42:0b:92:fa:cd:e1:63:ed:02:03:d4:1e:00:36:fb:d4:c7:
ad:12:46:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org