Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/aBWF13XxuA9l-_aBCk4cU_Xmkj8.roa
File: aBWF13XxuA9l-_aBCk4cU_Xmkj8.roa (raw, json)
Hash identifier: KrB9oo7zWgFM3Np5OFV4ljqvMu4eUYHYGI8G4oum0eI=
Subject key identifier: 68:15:85:D7:75:F1:B8:0F:65:FB:F6:81:0A:4E:1C:53:F5:E6:92:3F
Certificate issuer: /CN=52F9A727317A768DD89403B0D99CAAFA0BF7291F
Certificate serial: 2F
Authority key identifier: 52:F9:A7:27:31:7A:76:8D:D8:94:03:B0:D9:9C:AA:FA:0B:F7:29:1F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UvmnJzF6do3YlAOw2Zyq-gv3KR8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/aBWF13XxuA9l-_aBCk4cU_Xmkj8.roa
Signing time: Thu 28 Jul 2022 08:01:03 +0000
ROA not before: Thu 28 Jul 2022 08:01:03 +0000
ROA not after: Tue 30 May 2023 08:32:07 +0000
asID: 7483
IP address blocks: 103.188.120.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47 (0x2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52F9A727317A768DD89403B0D99CAAFA0BF7291F
Validity
Not Before: Jul 28 08:01:03 2022 GMT
Not After : May 30 08:32:07 2023 GMT
Subject: CN=681585D775F1B80F65FBF6810A4E1C53F5E6923F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:6e:52:64:6d:0b:a7:9d:3e:31:e3:10:26:c9:
21:12:cc:1e:dc:f1:a3:b4:9f:3e:9b:ea:a8:d5:a0:
aa:5d:21:73:70:61:b1:76:c3:18:46:a0:10:51:05:
7d:c2:f7:52:04:54:81:21:f1:22:c7:8b:38:14:fb:
a8:00:3b:c8:e8:02:5e:7e:5d:37:42:ec:b7:c4:c8:
d4:67:4c:a9:b2:d3:91:b6:e0:10:6f:11:ed:8d:03:
5a:d3:71:04:88:f5:89:cb:b7:00:fe:77:42:85:73:
06:59:9a:d6:0c:7e:48:dd:7a:c4:a3:83:f5:a3:38:
14:b3:22:9d:da:cb:a5:f4:eb:79:dc:6b:69:a2:0d:
94:1d:10:69:9f:a3:be:0e:3f:13:83:f1:38:04:ee:
7e:94:61:64:50:1b:51:23:bb:63:45:84:b9:aa:ce:
2d:23:31:3c:6c:b9:48:e6:5d:fd:77:40:78:f3:f8:
c0:a1:a2:82:ff:6b:b8:ae:ff:c0:07:90:f3:de:f8:
e1:99:97:b7:f5:79:f0:82:b5:e8:b4:aa:76:c9:21:
2d:40:43:1c:6d:cc:cc:6a:d7:fd:44:b1:3d:c5:0c:
c3:4d:ee:9a:e4:80:65:3e:7c:da:6d:77:09:c4:de:
62:14:d8:da:af:7e:41:43:19:0a:5b:13:91:05:75:
60:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:15:85:D7:75:F1:B8:0F:65:FB:F6:81:0A:4E:1C:53:F5:E6:92:3F
X509v3 Authority Key Identifier:
keyid:52:F9:A7:27:31:7A:76:8D:D8:94:03:B0:D9:9C:AA:FA:0B:F7:29:1F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/UvmnJzF6do3YlAOw2Zyq-gv3KR8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UvmnJzF6do3YlAOw2Zyq-gv3KR8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFENG/aBWF13XxuA9l-_aBCk4cU_Xmkj8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.188.120.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:28:c1:b1:00:3a:da:a2:09:7f:06:55:2f:d6:e6:71:1a:1b:
e8:63:c2:21:bf:08:ef:07:6b:17:9d:d7:f8:ae:d7:c1:dd:1c:
81:8e:29:a9:1a:32:03:61:84:79:2f:72:35:ac:e7:4a:e3:67:
99:63:69:55:75:d2:19:52:93:13:6f:65:4d:86:83:79:dc:b6:
84:c5:31:47:8d:cc:6e:aa:1d:16:dd:de:e0:a8:8c:5d:bd:db:
90:bf:42:64:7a:9b:71:d1:7c:03:82:1e:56:c3:18:68:a2:14:
d0:76:74:d8:48:c2:8c:cc:42:0d:dd:8b:8a:a5:9e:5b:12:71:
87:69:7a:36:98:1a:bb:99:15:36:74:0e:86:27:7c:11:79:5e:
4e:48:8f:35:3d:fd:ac:12:00:3c:5b:77:91:87:9f:89:7a:8a:
31:ab:19:f5:18:d0:5a:6f:06:bb:e5:6d:a1:5a:eb:7b:a2:dc:
6d:01:87:18:17:24:c2:e7:b8:68:a0:91:b0:02:a7:00:c7:92:
0a:9a:bb:28:30:a7:b2:13:78:4b:a8:83:f8:4e:98:86:1d:87:
b0:ca:6a:4d:f9:0c:7d:85:7d:cc:4b:1f:7c:2d:2b:d5:8f:b4:
c5:48:dd:c2:47:2b:85:53:fb:a4:77:81:37:39:a6:95:58:15:
04:26:73:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org