Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKPC/05xAgRFash_Bvgvc9dq1r4TUUVk.roa
File: 05xAgRFash_Bvgvc9dq1r4TUUVk.roa (raw, json)
Hash identifier: czpYq7+2J6FDqdsR7e7sLK9No2N+YakWz00ShwCiYoY=
Subject key identifier: D3:9C:40:81:11:5A:B2:1F:C1:BE:0B:DC:F5:DA:B5:AF:84:D4:51:59
Certificate issuer: /CN=CE37D7C99185A3D9AC611718DA78559B6E99A31B
Certificate serial: 0ADC
Authority key identifier: CE:37:D7:C9:91:85:A3:D9:AC:61:17:18:DA:78:55:9B:6E:99:A3:1B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zjfXyZGFo9msYRcY2nhVm26Zoxs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/05xAgRFash_Bvgvc9dq1r4TUUVk.roa
Signing time: Wed 29 Sep 2021 02:37:59 +0000
ROA not before: Wed 29 Sep 2021 02:37:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131645
IP address blocks: 103.141.80.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2780 (0xadc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE37D7C99185A3D9AC611718DA78559B6E99A31B
Validity
Not Before: Sep 29 02:37:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D39C4081115AB21FC1BE0BDCF5DAB5AF84D45159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8e:c3:44:38:f0:1a:01:6b:ba:d1:04:55:31:
c2:b6:0b:db:4d:25:50:45:d0:4a:71:f3:50:a1:98:
1f:26:32:a0:13:2b:28:4b:e4:3c:a8:6e:7e:33:aa:
6c:fc:69:71:9f:f7:5a:dd:29:cf:f9:c8:a1:24:73:
f3:90:59:3c:8b:13:04:0e:f1:4a:22:9a:f9:ba:22:
2b:87:fb:1a:d3:e1:c3:1e:6b:c9:19:6a:b2:8c:b3:
b2:42:b9:8b:07:72:a4:2d:09:42:18:57:d9:d8:89:
cc:fd:36:72:90:30:c2:91:da:f4:bc:08:21:f3:11:
15:44:59:a6:49:ea:5a:37:36:23:79:3e:53:cc:d9:
86:3e:ee:9b:9a:c6:03:b4:12:61:0e:e3:8d:fc:9f:
69:2d:85:6f:5c:d1:b7:b3:f7:87:f7:4c:c0:ae:f6:
9c:43:52:25:de:84:52:f5:a5:5b:e1:13:37:ca:af:
93:15:d6:56:5f:f6:bc:7d:d4:7f:74:13:30:59:db:
d2:69:c8:00:ef:45:62:56:e6:6e:4f:0b:6c:47:6f:
bc:a3:80:83:b7:c2:62:4e:91:b7:e2:e2:c1:44:70:
ce:b7:5e:0a:87:9b:c9:b0:33:ae:6e:e5:48:24:12:
e0:cc:9d:44:a6:a0:14:ce:f0:a2:dd:c5:2d:e8:b2:
ae:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:9C:40:81:11:5A:B2:1F:C1:BE:0B:DC:F5:DA:B5:AF:84:D4:51:59
X509v3 Authority Key Identifier:
keyid:CE:37:D7:C9:91:85:A3:D9:AC:61:17:18:DA:78:55:9B:6E:99:A3:1B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/zjfXyZGFo9msYRcY2nhVm26Zoxs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zjfXyZGFo9msYRcY2nhVm26Zoxs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/05xAgRFash_Bvgvc9dq1r4TUUVk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.141.80.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:86:38:0a:e2:be:3a:a8:69:3a:be:3a:99:a9:93:44:56:c3:
77:54:60:0b:62:25:47:54:54:72:00:13:23:df:0d:20:2c:43:
91:51:fb:c6:e7:2a:da:0a:77:fb:c2:b9:27:53:3f:d2:ce:34:
45:90:26:1d:1c:3e:24:69:6e:24:fd:af:c2:f4:38:94:90:d5:
3f:dd:f2:d5:eb:54:7b:74:87:4e:bc:11:f4:4e:d7:d3:51:a1:
3f:95:46:2a:d1:73:8f:24:33:7e:e8:32:39:1b:5c:36:bf:67:
21:ca:98:c6:59:88:3d:16:94:c5:65:2c:38:ee:c8:8b:3b:0f:
8c:b6:d1:3b:b4:3f:9e:53:b6:c4:10:21:2a:bf:0e:7a:e7:0d:
e0:52:69:80:ea:60:2d:bf:cd:bf:15:4d:56:f0:c3:6c:aa:bc:
09:b1:8e:7e:ae:3f:2e:79:54:de:6b:91:38:02:5e:94:5e:e2:
60:d8:d8:f7:5a:56:26:25:cd:3e:d7:c5:2f:cd:85:0b:8b:5e:
b5:fd:ca:5f:24:37:35:de:3c:e3:62:e7:cd:82:8d:78:b3:3c:
30:7a:68:1f:99:06:25:f0:92:12:50:b9:9c:80:bf:f3:5e:7b:
ca:a7:f4:cf:42:e9:23:1f:48:cb:f5:e8:69:51:03:09:fc:91:
ce:8e:54:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:08 2023 by rpki-client on console-fra.rpki-client.org