Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/_OYjmsZ2UGR2Y5JZENRZrDolyzg.roa
File: _OYjmsZ2UGR2Y5JZENRZrDolyzg.roa (raw, json)
Hash identifier: JM5stMZ6tEo7kguceNP+e/GFr46jnwfPr5adlpjjzFk=
Subject key identifier: FC:E6:23:9A:C6:76:50:64:76:63:92:59:10:D4:59:AC:3A:25:CB:38
Certificate issuer: /CN=52F9A727317A768DD89403B0D99CAAFA0BF7291F
Certificate serial: 03
Authority key identifier: 52:F9:A7:27:31:7A:76:8D:D8:94:03:B0:D9:9C:AA:FA:0B:F7:29:1F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UvmnJzF6do3YlAOw2Zyq-gv3KR8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/_OYjmsZ2UGR2Y5JZENRZrDolyzg.roa
Signing time: Mon 30 May 2022 10:25:41 +0000
ROA not before: Mon 30 May 2022 10:25:41 +0000
ROA not after: Tue 30 May 2023 08:32:07 +0000
asID: 131618
IP address blocks: 103.188.120.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52F9A727317A768DD89403B0D99CAAFA0BF7291F
Validity
Not Before: May 30 10:25:41 2022 GMT
Not After : May 30 08:32:07 2023 GMT
Subject: CN=FCE6239AC67650647663925910D459AC3A25CB38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:72:2a:6d:63:4f:37:36:b7:74:17:69:8e:25:
2b:4c:52:55:d3:04:11:62:7d:55:9a:f7:bd:ca:c1:
51:12:02:2a:23:10:b0:97:0e:13:7e:66:86:5d:b3:
31:02:f1:99:6c:8e:87:7e:02:96:b9:da:44:76:44:
13:2d:4c:c2:41:ad:9b:f6:b9:03:c8:0a:ca:fd:d6:
7d:8a:52:f6:68:9b:f1:03:78:3b:dc:65:52:fa:21:
8b:83:eb:ba:5a:d8:cf:67:60:98:0f:af:37:50:aa:
02:af:52:e9:65:48:97:4a:0a:e8:ed:6d:74:7c:82:
92:c8:ad:51:a7:55:8e:70:7b:f7:cd:f8:93:c7:70:
1b:13:46:30:3b:97:54:ea:6e:3b:98:ae:b2:27:d1:
fe:5b:3a:b1:7f:ee:75:18:73:c3:4c:7b:37:33:c0:
e3:34:1c:e1:35:b9:84:af:71:31:e0:c9:9e:47:f2:
6a:86:32:44:1f:92:f9:99:c5:e4:94:74:3b:9c:f8:
eb:bd:7a:81:33:74:c1:7d:cc:bf:f7:2d:ab:99:d7:
db:de:0d:2a:b2:62:1b:e4:3c:0b:5d:6e:f7:fb:08:
d4:30:23:6e:17:bf:8d:43:d6:40:51:50:83:8f:07:
f4:3f:d6:5f:83:72:e6:39:8a:d9:75:dd:3e:5c:85:
f2:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:E6:23:9A:C6:76:50:64:76:63:92:59:10:D4:59:AC:3A:25:CB:38
X509v3 Authority Key Identifier:
keyid:52:F9:A7:27:31:7A:76:8D:D8:94:03:B0:D9:9C:AA:FA:0B:F7:29:1F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/UvmnJzF6do3YlAOw2Zyq-gv3KR8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UvmnJzF6do3YlAOw2Zyq-gv3KR8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/_OYjmsZ2UGR2Y5JZENRZrDolyzg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.188.120.0/23
Signature Algorithm: sha256WithRSAEncryption
72:84:04:7e:97:80:13:72:16:81:62:99:67:54:31:97:eb:dc:
ec:fc:71:f4:21:7b:6d:74:34:9a:3b:8c:01:53:83:68:db:42:
2b:68:c4:77:12:d4:17:84:63:72:a5:d9:7b:3b:e7:a8:a2:9a:
a8:3a:e0:1a:28:a3:71:13:04:bf:79:6f:98:0a:2c:a5:df:2f:
d8:7a:b4:9e:1c:62:9c:01:c0:fc:a6:9e:69:6b:88:53:9c:ff:
27:29:62:07:ef:be:c3:84:df:6a:24:9b:f1:92:c6:06:dc:39:
9d:1b:61:cf:80:79:a9:7b:05:9c:c9:43:05:bc:92:53:6e:3c:
4c:fb:44:22:2d:e4:9e:ee:a7:78:52:a5:08:57:00:5f:1d:0b:
31:48:7b:df:92:9c:40:4a:30:1e:02:97:ef:d5:19:c0:e4:c8:
d9:44:33:13:db:f2:50:1c:d2:da:59:87:4d:55:00:49:cf:22:
8f:42:09:96:09:05:ad:07:3a:89:f8:2f:7d:42:c3:f0:ce:34:
3d:72:d9:02:a5:eb:ee:c2:7b:37:d2:71:f1:a4:aa:0d:70:98:
bb:7e:4b:1d:4c:c2:10:c5:99:43:c0:48:67:77:6e:b2:d8:67:
0b:7d:72:c3:55:b0:ce:c8:bb:3b:2a:ba:bc:84:ce:4c:f9:7d:
86:8c:7b:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org