Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKCO/Md1shg1llFvk96nNlNer37aybuY.roa
File: Md1shg1llFvk96nNlNer37aybuY.roa (raw, json)
Hash identifier: Na5sa91ag/6jjZUBAFcAuPx7HY7WPzfE7Fkzqs6Ver4=
Subject key identifier: 31:DD:6C:86:0D:65:94:5B:E4:F7:A9:CD:94:D7:AB:DF:B6:B2:6E:E6
Certificate issuer: /CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1
Certificate serial: 0CDB
Authority key identifier: 82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/Md1shg1llFvk96nNlNer37aybuY.roa
Signing time: Wed 29 Sep 2021 02:37:27 +0000
ROA not before: Wed 29 Sep 2021 02:37:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131645
IP address blocks: 103.134.120.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3291 (0xcdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1
Validity
Not Before: Sep 29 02:37:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=31DD6C860D65945BE4F7A9CD94D7ABDFB6B26EE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:94:0e:b7:8c:fc:7c:6c:1a:b7:14:6a:17:ea:
79:d7:ef:ba:13:c2:97:30:f8:c2:4a:50:b6:c1:54:
76:57:94:8b:c1:65:12:40:ec:dd:39:a1:aa:a9:18:
e9:33:46:ba:93:9c:5c:c4:21:b2:f7:e0:80:db:67:
ba:3a:d3:8b:3f:ca:55:67:59:a4:b7:f1:a0:a8:70:
6c:ed:1e:84:2f:cb:3c:18:f1:99:01:88:9e:1e:d1:
b2:15:08:44:87:3a:fc:62:69:2f:e5:0f:48:1b:d1:
8c:1f:4e:6b:b3:d5:3e:09:c3:6d:f5:90:0c:2d:0b:
f9:e3:61:04:af:ee:36:1a:3a:73:4a:0c:e8:a6:53:
59:c2:14:3a:ad:17:27:84:ef:b3:32:28:38:67:16:
8c:b4:02:bb:1a:bf:94:5c:ef:df:77:05:53:ec:31:
e6:28:47:f2:66:d0:3b:94:35:1d:ba:51:32:be:a8:
42:95:5c:d3:c4:e8:50:a2:f9:63:91:78:b9:dd:a9:
2b:b9:30:09:9f:f4:e5:c7:ac:a0:78:1a:41:81:91:
37:4f:87:84:67:5f:49:68:d0:25:46:9d:7f:5c:3e:
4b:e3:6a:d6:ce:fd:09:72:49:a2:71:f7:c5:9f:01:
5f:af:f8:94:e5:a5:08:21:23:e0:e9:78:22:fe:88:
c1:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:DD:6C:86:0D:65:94:5B:E4:F7:A9:CD:94:D7:AB:DF:B6:B2:6E:E6
X509v3 Authority Key Identifier:
keyid:82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/Md1shg1llFvk96nNlNer37aybuY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.134.120.0/22
Signature Algorithm: sha256WithRSAEncryption
13:95:be:48:77:82:7d:7a:bc:cb:07:1e:75:d4:75:5d:33:e4:
dd:c8:e8:f1:aa:79:f1:ab:a7:1e:e5:f6:c1:34:ca:35:25:2c:
39:8c:35:51:ae:3f:81:27:73:ba:f5:0e:db:14:78:f1:76:72:
fc:8c:18:ba:9a:ea:bf:3b:7b:9d:04:07:6d:ea:2e:79:57:95:
e8:2d:cc:62:41:1d:f2:a5:33:70:03:3d:9f:b7:f1:ca:98:c4:
a8:68:b3:c7:21:e5:0e:b5:71:e5:c3:43:0d:9e:08:33:bb:e8:
34:1c:3b:f5:c9:5d:54:1a:c8:47:f1:e3:cc:e6:b2:2e:69:9a:
ba:33:c6:8b:43:1d:41:c5:21:39:91:8d:07:7b:59:a4:73:af:
21:a2:98:4f:ac:6b:ea:af:48:40:c2:09:20:6e:c4:26:90:c7:
e2:fd:62:56:93:31:c1:3d:d5:73:b1:b7:e4:39:d2:d4:a1:00:
05:a3:2b:d3:c9:a3:51:3e:ff:6a:0f:9f:6f:6f:65:db:a7:cb:
cb:bd:c0:7b:78:ff:06:9c:48:ad:92:3f:80:40:93:df:d0:5d:
eb:a7:45:1c:cf:7b:30:3a:e6:a3:6f:59:6a:df:63:d2:0e:b7:
ae:d1:43:c6:a8:d6:d1:a6:f1:cf:bf:89:7e:13:58:0e:60:9b:
dc:5b:59:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org