Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LUHWA/t8zqlW07Kqw3kslyWhk-bSkdZ2Q.roa
File: t8zqlW07Kqw3kslyWhk-bSkdZ2Q.roa (raw, json)
Hash identifier: z00h+o0rk+yNEh1lPeJ2IzSueZ+t32izptNM09T4yZQ=
Subject key identifier: B7:CC:EA:95:6D:3B:2A:AC:37:92:C9:72:5A:19:3E:6D:29:1D:67:64
Certificate issuer: /CN=5818978B2D089A5F3DEAE0AF01E9335F4DD5D4BC
Certificate serial: 1045
Authority key identifier: 58:18:97:8B:2D:08:9A:5F:3D:EA:E0:AF:01:E9:33:5F:4D:D5:D4:BC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WBiXiy0Iml896uCvAekzX03V1Lw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LUHWA/t8zqlW07Kqw3kslyWhk-bSkdZ2Q.roa
Signing time: Thu 15 Sep 2022 02:38:11 +0000
ROA not before: Thu 15 Sep 2022 02:38:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 103.124.176.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4165 (0x1045)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5818978B2D089A5F3DEAE0AF01E9335F4DD5D4BC
Validity
Not Before: Sep 15 02:38:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B7CCEA956D3B2AAC3792C9725A193E6D291D6764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ba:dd:b8:96:b3:9d:0c:c0:2b:9f:e5:2a:09:
79:93:f6:aa:3a:d4:08:4b:18:17:e1:1a:59:25:5f:
e9:cd:cf:ff:39:e0:a5:c9:15:ef:ca:bb:1b:1e:be:
96:b6:ca:3e:2c:fe:48:1f:98:39:03:a7:5e:35:2b:
8c:e0:8f:e7:f7:8c:d9:55:83:fd:65:50:40:ac:40:
a0:f1:86:ed:18:88:38:fa:d0:a7:dc:01:e2:d7:78:
18:45:65:95:9e:14:da:ef:5b:cd:eb:f0:bc:d2:12:
5b:23:47:5b:f1:d5:97:bc:ea:fb:59:89:28:b2:86:
d6:d0:f8:03:dd:33:de:b0:04:a8:dd:7a:4b:bb:51:
74:e7:73:73:0f:1a:0f:0d:dd:f2:6f:08:a0:8f:21:
54:dc:6d:60:8e:45:72:52:fb:1e:a4:77:6e:7f:23:
52:53:e2:7a:38:45:5c:a6:0c:9f:d1:9f:67:6e:b1:
90:cf:82:73:03:30:b4:18:61:d7:17:17:be:3c:ca:
e3:bd:a9:38:db:5f:f3:18:b0:c7:35:2a:9c:f6:70:
c8:7d:b8:76:da:4a:17:95:63:0c:2f:1b:2c:48:74:
88:86:28:b6:5f:6d:fe:dc:7b:cf:80:3b:b0:0d:70:
30:f3:5e:30:47:10:bd:01:c3:63:3f:f5:1a:fc:ca:
74:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:CC:EA:95:6D:3B:2A:AC:37:92:C9:72:5A:19:3E:6D:29:1D:67:64
X509v3 Authority Key Identifier:
keyid:58:18:97:8B:2D:08:9A:5F:3D:EA:E0:AF:01:E9:33:5F:4D:D5:D4:BC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LUHWA/WBiXiy0Iml896uCvAekzX03V1Lw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WBiXiy0Iml896uCvAekzX03V1Lw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LUHWA/t8zqlW07Kqw3kslyWhk-bSkdZ2Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.176.0/22
Signature Algorithm: sha256WithRSAEncryption
29:3f:81:06:95:11:f7:ed:40:34:c3:3f:e8:59:56:82:57:ec:
b0:5c:e2:00:e7:14:7d:28:1c:e6:cf:63:f4:9c:97:81:88:a2:
d5:0a:49:d4:2e:09:22:6a:f9:ac:83:7f:39:44:05:58:e9:79:
98:84:5c:9b:ed:ec:c0:36:d8:a2:af:eb:0c:0f:d0:1f:29:07:
f7:40:49:ac:fe:9b:8b:1a:b0:9d:bd:9d:20:1d:c4:8f:20:6a:
9d:83:16:22:60:b0:dc:78:69:ed:ad:07:7f:a7:0f:57:8d:c2:
44:94:f0:96:fb:76:a5:bd:a8:bd:4f:9a:bf:30:5b:7d:16:4b:
b3:82:d4:d6:ca:b0:eb:31:7d:b4:87:5f:bf:a1:03:62:3b:4e:
46:0f:26:59:22:35:3b:40:fe:58:92:21:7d:cc:7a:a2:3f:28:
21:1c:30:1c:5f:e9:c1:e7:95:e8:03:87:f2:b3:05:ad:9a:25:
ce:37:aa:14:80:26:2f:2c:6d:8a:c2:b4:65:28:6b:ec:db:73:
2d:47:3d:6c:09:41:46:96:41:66:6f:c1:cf:cd:54:87:34:ca:
da:96:08:61:fe:a6:4b:79:45:3b:3c:5b:0c:a6:5a:9e:f4:85:
db:32:48:9e:23:de:ed:78:25:6c:8b:e8:ae:ff:64:76:36:c5:
1d:90:4e:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org