Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKTSL/jJ1I6gZzHum_zWGTrdBlRwtVbkg.roa
File: jJ1I6gZzHum_zWGTrdBlRwtVbkg.roa (raw, json)
Hash identifier: W7IzwhmZVzbL/6bcDNuJ9ixR/jsFYKoKWVBxYd9z+Ow=
Subject key identifier: 8C:9D:48:EA:06:73:1E:E9:BF:CD:61:93:AD:D0:65:47:0B:55:6E:48
Certificate issuer: /CN=90EE69984840D1E0325E8C013DFFB7B2841047E4
Certificate serial: 09BC
Authority key identifier: 90:EE:69:98:48:40:D1:E0:32:5E:8C:01:3D:FF:B7:B2:84:10:47:E4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kO5pmEhA0eAyXowBPf-3soQQR-Q.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKTSL/jJ1I6gZzHum_zWGTrdBlRwtVbkg.roa
Signing time: Sun 07 Feb 2021 12:38:13 +0000
ROA not before: Sun 07 Feb 2021 12:38:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131645
IP address blocks: 103.142.44.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2492 (0x9bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90EE69984840D1E0325E8C013DFFB7B2841047E4
Validity
Not Before: Feb 7 12:38:13 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8C9D48EA06731EE9BFCD6193ADD065470B556E48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fa:64:4a:6e:4e:38:9a:eb:25:e4:68:9d:61:
d4:16:84:97:70:dc:bb:f0:06:20:84:f0:a0:d9:4a:
96:11:0e:cc:7c:56:dd:94:b6:49:85:09:80:50:fd:
f6:e0:f8:b0:7f:a2:98:ac:db:67:7e:83:91:14:64:
ec:7a:22:0f:6f:f2:6d:68:fd:fd:27:65:f8:99:e9:
9b:29:3b:5c:9b:59:85:65:58:c8:bd:85:43:61:40:
0e:68:7e:b0:00:23:fb:84:7d:00:74:6f:d7:fc:3e:
75:1a:cd:7d:97:db:85:4b:b7:11:8e:04:ee:a7:36:
47:a7:1f:d3:e7:21:04:29:a9:a0:87:e8:9a:37:01:
b5:9f:34:98:6c:83:a1:e1:f2:0f:6a:f9:1e:45:76:
c9:59:cf:89:e6:2b:5c:ad:a3:7a:54:d1:f2:c7:10:
01:7e:81:13:d5:d1:f5:78:49:8e:18:b8:ae:75:de:
86:1d:28:8a:8c:11:fe:1c:70:67:c6:2a:e3:33:c0:
ce:ad:ce:b9:19:06:8b:65:d7:60:0c:83:5a:fc:7b:
4c:2f:bd:a5:96:0a:fa:1d:74:a0:ff:8d:a5:2d:21:
32:4a:57:30:3c:44:7e:bc:0a:2c:ea:10:2d:a3:d4:
01:d3:ec:ef:35:9b:71:34:ba:2e:6a:8d:4d:47:ac:
5d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:9D:48:EA:06:73:1E:E9:BF:CD:61:93:AD:D0:65:47:0B:55:6E:48
X509v3 Authority Key Identifier:
keyid:90:EE:69:98:48:40:D1:E0:32:5E:8C:01:3D:FF:B7:B2:84:10:47:E4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKTSL/kO5pmEhA0eAyXowBPf-3soQQR-Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kO5pmEhA0eAyXowBPf-3soQQR-Q.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKTSL/jJ1I6gZzHum_zWGTrdBlRwtVbkg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.142.44.0/23
Signature Algorithm: sha256WithRSAEncryption
60:bf:e8:5f:02:b1:09:8d:a9:38:50:45:14:7a:11:bd:3c:ef:
23:48:22:24:8f:4a:94:4e:f0:7e:66:aa:36:c0:23:cd:a0:79:
ce:bd:1a:6f:1f:8e:44:c5:21:1b:60:0c:83:7c:e3:a4:c9:e3:
8b:19:d7:db:b3:1a:3c:62:a1:75:2b:aa:3c:70:70:5e:ae:4b:
80:fe:00:3d:da:cb:ba:0d:55:0e:74:56:53:b2:01:51:fe:0b:
0a:4e:1e:1a:be:60:7d:be:15:64:6d:1d:29:e3:1a:37:e4:52:
54:d7:ac:ec:99:83:e4:5f:ee:c6:01:59:cc:61:1d:31:8c:1f:
e0:40:bb:17:d1:1d:f1:33:b6:99:61:a4:d7:3a:7d:ab:6a:0e:
7c:c6:ec:59:80:44:9b:d9:9a:df:3b:cf:b5:6f:ee:1a:d9:b8:
81:f6:3a:2a:f6:3d:bc:83:d2:dd:62:9b:55:9d:d5:21:08:c2:
a7:bf:35:20:c6:41:c6:7b:24:75:6a:6b:c3:58:41:be:e4:f1:
e0:d5:b6:96:75:11:70:e9:f1:2d:06:83:51:c7:9a:90:ed:28:
14:1c:a8:b6:81:dc:66:aa:bb:27:25:58:6e:b0:eb:f7:1b:d8:
5b:7b:cc:c5:e3:ea:25:43:4d:7d:cf:ef:11:a6:4b:8b:fb:ec:
51:e6:ec:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:08 2023 by rpki-client on console-fra.rpki-client.org