Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKCO/jq0XD77IJILyjvYE-JYZfFe187U.roa
File: jq0XD77IJILyjvYE-JYZfFe187U.roa (raw, json)
Hash identifier: NHS1/9QFqsIvCmf0LKxTLgaCGsV+feXF5q5X8fDaHXQ=
Subject key identifier: 8E:AD:17:0F:BE:C8:24:82:F2:8E:F6:04:F8:96:19:7C:57:B5:F3:B5
Certificate issuer: /CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1
Certificate serial: 0DC6
Authority key identifier: 82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/jq0XD77IJILyjvYE-JYZfFe187U.roa
Signing time: Thu 15 Sep 2022 02:49:36 +0000
ROA not before: Thu 15 Sep 2022 02:49:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131645
IP address blocks: 103.134.120.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3526 (0xdc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1
Validity
Not Before: Sep 15 02:49:36 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8EAD170FBEC82482F28EF604F896197C57B5F3B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0c:0d:56:11:d9:e2:4a:a3:73:db:32:14:70:
64:7c:bf:cd:49:4e:31:27:07:ff:30:63:7e:cf:69:
e6:a6:0e:c3:63:13:77:51:f1:61:a0:77:5f:c8:c3:
23:df:79:d8:9b:a2:83:51:85:ff:01:db:ee:a2:2c:
0a:25:88:a6:b1:7a:b3:c1:49:7d:1e:45:65:9e:cd:
ca:2a:2e:4c:22:c7:19:ee:e9:d6:ba:ee:45:58:8f:
b8:f5:96:84:24:c6:cf:bd:0c:32:36:ac:d3:54:b7:
4e:d4:4d:7f:33:93:e8:5c:f1:2c:2c:ed:56:da:38:
67:7a:f6:0e:61:44:48:9e:20:85:0f:f0:72:3b:11:
70:2a:dc:08:62:cb:86:8f:cd:4f:a1:98:6a:e4:ff:
69:a9:c6:0a:b3:df:e3:13:ba:b9:03:60:75:7e:26:
d3:3d:54:59:1a:22:bd:1b:7d:eb:a3:6c:2d:e9:58:
4d:21:fe:34:8b:eb:93:9b:4b:7c:a5:8c:ca:c8:b4:
03:3f:d2:72:96:b8:39:f6:61:da:39:d4:44:7c:70:
59:21:fd:bd:96:48:22:fa:b3:49:a3:14:93:77:5d:
56:a8:02:90:fc:df:31:0d:53:76:0a:56:d8:ca:a4:
aa:70:7e:01:d6:b3:16:58:97:57:dc:35:35:8a:9b:
64:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:AD:17:0F:BE:C8:24:82:F2:8E:F6:04:F8:96:19:7C:57:B5:F3:B5
X509v3 Authority Key Identifier:
keyid:82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/jq0XD77IJILyjvYE-JYZfFe187U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.134.120.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:3e:88:4c:09:8b:1d:bc:be:13:bd:40:cd:0d:04:76:fb:b1:
43:c6:d7:f0:28:11:ee:4c:9e:d6:db:39:eb:dd:47:fc:d4:25:
c3:ea:fd:5c:3f:ec:b1:04:c9:78:af:07:44:61:84:43:d5:3f:
7a:fd:bf:0c:fe:b5:98:0d:bb:cf:25:15:23:7c:01:cd:7b:21:
b7:ea:cc:3e:51:bd:00:10:0a:9b:7e:ee:06:a9:90:0a:47:78:
32:30:76:98:8b:2d:2c:89:50:1c:e9:b4:99:b2:16:48:6b:11:
eb:4e:33:25:0d:50:b6:3a:85:8f:fa:de:d0:2e:07:86:44:ec:
3c:c7:4e:cd:7e:b8:c3:2e:de:94:8f:c0:5d:74:37:db:55:c6:
aa:d6:8a:5c:35:79:74:5d:54:80:24:38:a8:83:5c:e4:25:f2:
99:d6:52:75:0b:2c:8a:1d:f4:4a:1d:7d:af:dc:70:1f:cd:80:
b6:09:33:6c:f1:bf:11:32:62:65:11:f5:32:b3:e7:de:07:4e:
d4:f7:71:e3:b1:4c:a8:01:e7:bd:32:b6:b2:26:f5:4f:d5:5a:
46:e2:8e:67:10:0b:6c:9a:99:17:7c:87:b4:44:cc:a5:4f:14:
02:96:61:34:dd:23:5e:76:3d:15:a0:bb:d6:2a:c4:fc:c1:ec:
9e:6d:8d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org