Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKSMF/y0nlfF0umuatmNjyyp-DTRiAg8c.roa
File: y0nlfF0umuatmNjyyp-DTRiAg8c.roa (raw, json)
Hash identifier: lnhlPgcCaD9ork+KVn/2pKuoAc/tJnvDya9RqeU/740=
Subject key identifier: CB:49:E5:7C:5D:2E:9A:E6:AD:98:D8:F2:CA:9F:83:4D:18:80:83:C7
Certificate issuer: /CN=FBCFA1880AC86CE4FB99F974E9953F3597DCDE0A
Certificate serial: 0B48
Authority key identifier: FB:CF:A1:88:0A:C8:6C:E4:FB:99:F9:74:E9:95:3F:35:97:DC:DE:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-8-hiArIbOT7mfl06ZU_NZfc3go.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKSMF/y0nlfF0umuatmNjyyp-DTRiAg8c.roa
Signing time: Thu 15 Sep 2022 02:37:53 +0000
ROA not before: Thu 15 Sep 2022 02:37:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131645
IP address blocks: 103.142.42.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2888 (0xb48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FBCFA1880AC86CE4FB99F974E9953F3597DCDE0A
Validity
Not Before: Sep 15 02:37:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CB49E57C5D2E9AE6AD98D8F2CA9F834D188083C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9d:3a:df:c8:2c:91:8a:b4:43:c9:f4:e0:2b:
b1:03:a0:d1:e4:50:db:80:11:37:00:ce:d0:d1:ef:
f3:03:c9:64:88:c3:74:71:d6:b0:8f:bf:1e:d6:86:
81:f1:6a:78:5d:11:58:b3:7c:45:f2:e3:b6:65:4a:
f4:3d:df:21:37:12:43:6a:29:c7:ca:27:12:b5:6c:
67:1a:ea:9b:d3:e9:46:ec:08:25:66:07:70:62:0e:
b2:3a:5c:6d:60:1b:01:d9:8d:82:b3:a3:6b:81:19:
4d:1b:f7:6b:7f:a6:70:cf:24:b5:8f:9e:36:e7:90:
b2:01:3d:58:7a:3d:07:b4:1b:3b:50:dd:5c:e2:3a:
9f:b0:76:ec:80:ca:2f:2f:b4:b0:d4:ae:40:8e:06:
34:a0:c9:46:17:48:a7:a2:f8:d6:4b:b9:31:f9:df:
d0:7b:1b:fa:0e:93:4e:24:18:d1:94:5d:f5:09:10:
6a:7d:66:92:9a:54:2f:f5:55:8a:95:f1:11:26:0c:
ca:86:b4:8c:90:9f:1c:52:49:52:98:93:81:2c:3b:
56:9e:47:c1:85:0e:f8:f7:a9:c4:01:06:6c:cc:a9:
be:35:10:40:21:d5:41:28:7e:23:42:e5:a1:d7:61:
f5:00:46:d0:ad:f3:a0:99:1b:37:44:1f:e3:bb:1c:
d8:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:49:E5:7C:5D:2E:9A:E6:AD:98:D8:F2:CA:9F:83:4D:18:80:83:C7
X509v3 Authority Key Identifier:
keyid:FB:CF:A1:88:0A:C8:6C:E4:FB:99:F9:74:E9:95:3F:35:97:DC:DE:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKSMF/-8-hiArIbOT7mfl06ZU_NZfc3go.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-8-hiArIbOT7mfl06ZU_NZfc3go.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKSMF/y0nlfF0umuatmNjyyp-DTRiAg8c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.142.42.0/23
Signature Algorithm: sha256WithRSAEncryption
c8:bd:c7:01:78:f1:bc:12:a2:52:34:68:6a:a4:f2:4f:be:25:
00:a4:55:88:9b:7b:ab:bd:b4:60:f6:f2:fb:98:95:e2:7a:b1:
3d:8a:e7:5d:19:e0:19:e3:a3:7e:b7:c5:12:20:39:51:2e:76:
44:48:7d:52:29:b3:c7:3d:70:f5:91:00:29:48:5b:94:58:b8:
13:54:38:b3:45:a1:ef:b6:66:28:8f:79:9a:70:b8:79:34:55:
eb:ef:83:c1:2a:ca:71:13:7f:71:05:36:e4:8a:54:1a:a3:20:
cf:73:75:44:16:26:8d:14:db:c0:4d:57:95:c4:e0:9b:76:57:
dd:b0:2d:6c:da:3b:6f:8e:ab:9c:17:1c:f0:f5:dc:26:ba:71:
4d:9a:26:80:c7:0e:a9:a2:ce:40:64:c6:b5:05:f8:5d:1e:ad:
e2:3a:2b:3b:fa:7b:6b:e2:cf:81:38:4c:de:44:79:57:82:d6:
0c:a4:1c:33:9f:80:2a:c7:ed:03:2b:72:a9:df:b7:46:fd:c4:
9d:5f:bc:49:3c:ef:d7:64:b6:33:53:92:03:ed:67:2c:5f:48:
f3:5c:20:55:48:ac:8c:60:64:4a:ab:8b:a2:5f:e8:c4:91:47:
6f:f6:64:fe:f1:7d:bc:0a:c2:d7:78:c0:6b:55:53:70:d5:77:
c8:52:b2:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org