Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKTSL/aA-NOg7IOAbmdweI1TRqL6NAZ_Y.roa
File: aA-NOg7IOAbmdweI1TRqL6NAZ_Y.roa (raw, json)
Hash identifier: Uj2h1+izs+NAYPkGPosX820pw1TH3bUiuOlHGsbjACo=
Subject key identifier: 68:0F:8D:3A:0E:C8:38:06:E6:77:07:88:D5:34:6A:2F:A3:40:67:F6
Certificate issuer: /CN=90EE69984840D1E0325E8C013DFFB7B2841047E4
Certificate serial: 0A5A
Authority key identifier: 90:EE:69:98:48:40:D1:E0:32:5E:8C:01:3D:FF:B7:B2:84:10:47:E4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kO5pmEhA0eAyXowBPf-3soQQR-Q.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKTSL/aA-NOg7IOAbmdweI1TRqL6NAZ_Y.roa
Signing time: Wed 29 Sep 2021 02:37:38 +0000
ROA not before: Wed 29 Sep 2021 02:37:38 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131645
IP address blocks: 103.142.44.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2650 (0xa5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90EE69984840D1E0325E8C013DFFB7B2841047E4
Validity
Not Before: Sep 29 02:37:38 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=680F8D3A0EC83806E6770788D5346A2FA34067F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ad:b5:fd:e3:6a:88:86:6d:99:99:c8:ef:44:
04:80:56:92:41:18:35:65:8c:e1:ce:61:85:36:b6:
e7:39:5e:d5:f6:5b:3f:ab:22:53:9c:60:ca:65:c0:
44:6e:0e:9e:84:41:82:1f:80:5c:95:d4:e0:0a:88:
09:f6:bc:ed:3e:da:81:65:3d:34:9b:a7:7f:35:e2:
0e:e5:32:3c:d9:04:60:4a:5a:bf:08:11:c5:23:a4:
19:0a:f0:d5:e6:25:ce:3b:0f:de:1a:55:9f:34:88:
d9:5b:66:bd:ca:5e:37:be:64:5c:1a:1c:3d:4a:f2:
45:3f:b3:ac:f7:14:7a:2e:b3:65:d6:ee:26:c9:ce:
21:06:51:fe:07:87:59:48:d7:ca:34:39:cd:e3:54:
1b:9b:a9:1e:14:cf:5b:13:bd:a6:b1:63:ff:e1:3b:
c2:8f:7e:55:e7:ab:de:ab:b8:e5:17:8b:7c:cc:f1:
2f:31:da:cd:3a:8a:0c:45:3f:e7:b8:0c:97:f3:e3:
47:ac:f2:61:19:80:cd:08:99:fc:5b:bf:d9:6a:dd:
c7:a9:d0:c2:32:ba:fc:54:3e:36:0e:83:f8:3c:96:
4d:97:4f:5a:f3:3a:1b:f5:2a:d4:2e:49:e8:62:f2:
0c:5a:3f:8f:1e:b8:3c:bb:5e:36:4f:b2:ed:5b:64:
fe:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:0F:8D:3A:0E:C8:38:06:E6:77:07:88:D5:34:6A:2F:A3:40:67:F6
X509v3 Authority Key Identifier:
keyid:90:EE:69:98:48:40:D1:E0:32:5E:8C:01:3D:FF:B7:B2:84:10:47:E4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKTSL/kO5pmEhA0eAyXowBPf-3soQQR-Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kO5pmEhA0eAyXowBPf-3soQQR-Q.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKTSL/aA-NOg7IOAbmdweI1TRqL6NAZ_Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.142.44.0/23
Signature Algorithm: sha256WithRSAEncryption
b7:8e:8f:ee:17:4d:c8:29:bf:d4:de:0e:cf:2f:b6:0f:d5:0b:
fc:e4:91:f0:de:ed:7e:1b:57:af:ac:dd:4c:43:c4:40:ff:e2:
92:19:df:67:8a:df:0d:5c:40:a2:d4:f7:b2:31:2b:e8:b4:86:
6b:f1:98:aa:51:21:59:a9:04:a9:41:52:77:01:ae:f2:2a:7e:
a5:b4:80:09:11:56:4e:11:e8:e0:20:56:09:d0:b6:66:5e:da:
57:50:f0:cc:3f:e6:30:7a:5a:27:01:7d:bb:ac:8a:1c:8b:aa:
61:dd:b5:a1:1e:66:12:48:ac:e5:dc:65:1a:c5:9b:f4:7b:58:
9b:3b:8a:18:82:78:98:16:c3:ce:96:13:5b:ea:07:6c:42:6e:
de:43:95:ff:d5:3c:aa:b0:33:31:a7:c1:54:c6:2d:cf:8a:8d:
4e:12:9e:c3:8a:94:ce:9a:26:a8:39:b3:79:1e:cb:95:bd:de:
64:d6:90:08:31:6a:b4:a2:c0:e9:dc:14:5a:fd:74:79:d4:c7:
a8:0f:70:a1:92:df:cc:5d:35:3c:5f:80:30:2a:70:a7:b2:12:
b8:e5:43:11:82:c9:0f:b5:11:bc:e5:e6:bd:53:06:97:6b:fe:
ed:a1:82:29:83:78:4c:38:a4:55:9a:f6:cc:a8:cb:06:96:f0:
ee:55:5a:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org