Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/2WixEZoxAbzpcEUqUKkQiH-FIgo.roa
File: 2WixEZoxAbzpcEUqUKkQiH-FIgo.roa (raw, json)
Hash identifier: NMkILAVw9okbEteKiqP1SN9NIKbdUupZspEZZ5a5dSs=
Subject key identifier: D9:68:B1:11:9A:31:01:BC:E9:70:45:2A:50:A9:10:88:7F:85:22:0A
Certificate issuer: /CN=52F9A727317A768DD89403B0D99CAAFA0BF7291F
Certificate serial: F4
Authority key identifier: 52:F9:A7:27:31:7A:76:8D:D8:94:03:B0:D9:9C:AA:FA:0B:F7:29:1F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UvmnJzF6do3YlAOw2Zyq-gv3KR8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/2WixEZoxAbzpcEUqUKkQiH-FIgo.roa
Signing time: Tue 16 May 2023 08:30:17 +0000
ROA not before: Tue 16 May 2023 08:30:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7483
IP address blocks: 103.188.120.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 244 (0xf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52F9A727317A768DD89403B0D99CAAFA0BF7291F
Validity
Not Before: May 16 08:30:17 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D968B1119A3101BCE970452A50A910887F85220A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:a6:bf:02:21:ac:4e:12:ae:93:c7:d2:00:2d:
a1:7d:76:18:70:e1:e3:2e:0b:a9:fd:69:27:ab:5c:
91:de:1d:c4:0c:25:d2:dd:8e:39:ab:9d:cf:4a:52:
e4:2b:00:f5:c1:22:b9:d3:c3:85:bd:25:dd:2a:49:
60:20:30:35:67:9b:5e:b8:03:ca:bb:99:28:5b:67:
af:36:06:44:39:a6:6c:4c:54:b3:da:b6:df:12:f6:
52:87:b9:5d:a6:fe:53:e9:3c:4e:3f:af:1c:b0:42:
e8:fd:31:bc:c6:50:16:8d:be:e6:0e:25:f8:a7:dd:
30:bc:22:04:04:8c:b3:37:ae:3b:47:89:5c:ac:cc:
25:62:bf:e1:c1:73:61:9e:c9:7e:6b:9a:9b:71:87:
aa:27:d0:25:9b:88:5d:89:d0:4a:fd:9e:b6:f8:52:
a3:bb:47:77:74:07:ad:8d:ae:96:e7:ac:63:22:37:
e7:c1:2a:89:9f:c0:03:7e:fd:2f:22:1b:51:52:4b:
3b:75:ed:16:81:e4:72:0c:27:9b:73:ed:c5:32:4a:
4b:c8:02:81:89:6f:ae:8a:59:45:cb:80:8a:b5:d5:
02:ae:09:bb:8c:ed:77:2b:5f:69:c4:f2:2f:7a:01:
7c:09:81:74:d7:59:25:af:38:0c:37:28:cd:5e:ab:
db:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:68:B1:11:9A:31:01:BC:E9:70:45:2A:50:A9:10:88:7F:85:22:0A
X509v3 Authority Key Identifier:
keyid:52:F9:A7:27:31:7A:76:8D:D8:94:03:B0:D9:9C:AA:FA:0B:F7:29:1F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/UvmnJzF6do3YlAOw2Zyq-gv3KR8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UvmnJzF6do3YlAOw2Zyq-gv3KR8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/2WixEZoxAbzpcEUqUKkQiH-FIgo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.188.120.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:d3:95:31:83:9c:3e:2f:23:e6:59:24:ab:20:4d:42:1c:bd:
93:40:f0:56:de:2d:6b:22:c8:37:de:a7:e8:c2:11:68:b3:02:
9d:04:0f:fb:db:eb:b5:39:02:d3:f5:60:9c:d1:f1:81:10:ae:
d5:98:a2:7a:4e:a5:01:1c:95:e2:d4:e7:fc:d0:a3:83:47:2d:
9d:f0:9c:fe:d6:51:51:2e:da:e1:4f:9a:2d:32:9b:a1:e6:58:
b7:3f:84:cf:54:1a:65:5b:d2:16:53:f8:30:fb:76:f9:58:79:
1a:4c:fb:58:f9:63:2c:a4:f5:bd:b4:5d:c2:d0:ab:7a:0d:27:
f9:77:34:1f:ab:b8:93:15:e1:6c:28:32:5f:f7:2b:70:f9:4e:
db:93:e0:eb:30:50:5e:37:83:5c:83:7f:51:cf:f6:92:10:21:
cc:be:05:b5:32:7d:68:5c:f5:72:73:9f:64:2c:b2:b4:0a:78:
f6:f3:6a:d9:32:f8:56:6c:49:34:21:d5:69:38:30:c9:14:43:
57:b0:db:cb:67:48:df:ca:f4:44:5c:af:d3:67:74:cf:9d:99:
6c:95:c4:08:95:3e:8c:c6:65:3a:7d:15:04:64:2d:10:59:ad:
39:3e:d0:b2:ac:c2:e7:73:04:b6:f1:95:c6:16:5b:60:da:cd:
e4:47:f1:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org