Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAIFOOD/-ES0XQcNF244CH3NijM0CStW750.roa
File: -ES0XQcNF244CH3NijM0CStW750.roa (raw, json)
Hash identifier: HOAx7hv8GUpUDPn9Spvy8Sfh+XGFGOPhheYWwf6m1+M=
Subject key identifier: F8:44:B4:5D:07:0D:17:6E:38:08:7D:CD:8A:33:34:09:2B:56:EF:9D
Certificate issuer: /CN=C760A0EC769BF57E048E5FC2BA95A5A023AC8CC9
Certificate serial: 13
Authority key identifier: C7:60:A0:EC:76:9B:F5:7E:04:8E:5F:C2:BA:95:A5:A0:23:AC:8C:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/x2Cg7Hab9X4Ejl_CupWloCOsjMk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFOOD/-ES0XQcNF244CH3NijM0CStW750.roa
Signing time: Wed 31 Aug 2022 16:17:11 +0000
ROA not before: Wed 31 Aug 2022 16:17:11 +0000
ROA not after: Tue 08 Aug 2023 02:29:10 +0000
asID: 7483
IP address blocks: 103.190.168.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19 (0x13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C760A0EC769BF57E048E5FC2BA95A5A023AC8CC9
Validity
Not Before: Aug 31 16:17:11 2022 GMT
Not After : Aug 8 02:29:10 2023 GMT
Subject: CN=F844B45D070D176E38087DCD8A3334092B56EF9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5d:04:4c:ba:37:55:54:71:d0:f5:8d:dd:1f:
ae:fa:fc:ac:f3:2e:f3:87:4d:4a:76:cf:5c:47:7f:
1a:44:cf:eb:be:2e:38:6b:06:06:4f:8f:b8:99:9e:
e9:b3:bd:dd:4e:fc:54:3a:80:d8:a3:00:cd:14:74:
9d:4b:e0:f7:1c:00:64:28:4a:5d:9e:9e:2d:d8:1b:
85:6a:af:72:7c:62:f2:ae:b0:86:e0:65:e3:47:19:
cd:8c:57:74:3e:50:d2:d9:06:c1:ce:1c:8c:d4:f8:
c2:35:36:52:56:cf:ac:e5:4a:38:19:a9:0e:d1:77:
62:1d:99:a0:24:95:82:1f:c3:82:ab:60:90:99:a3:
c2:e6:09:dd:5a:72:94:f3:89:49:53:ed:6d:8d:6a:
47:4e:af:91:15:22:0a:d6:99:89:7e:cf:9e:63:2a:
cf:44:00:a1:a6:88:2e:08:4a:43:7b:f5:ba:13:02:
fc:40:48:88:4d:b9:25:b8:1b:4f:ed:d4:68:5d:aa:
2a:84:99:11:45:9f:ac:af:89:5c:e7:03:5d:e9:e8:
0e:8a:09:dc:f6:bf:05:a9:75:a6:2a:ca:c0:3f:1c:
62:70:53:1b:fd:28:8f:8b:70:79:c5:6b:3d:a2:ea:
c0:0c:12:14:87:c4:67:bc:28:c6:b5:de:ea:bc:30:
66:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:44:B4:5D:07:0D:17:6E:38:08:7D:CD:8A:33:34:09:2B:56:EF:9D
X509v3 Authority Key Identifier:
keyid:C7:60:A0:EC:76:9B:F5:7E:04:8E:5F:C2:BA:95:A5:A0:23:AC:8C:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFOOD/x2Cg7Hab9X4Ejl_CupWloCOsjMk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/x2Cg7Hab9X4Ejl_CupWloCOsjMk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFOOD/-ES0XQcNF244CH3NijM0CStW750.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.190.168.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:a5:7b:00:1f:b4:fd:af:bf:1e:0e:b5:9e:ae:08:a4:74:f0:
59:2f:74:fe:25:59:cb:42:6e:d7:5f:86:83:b2:91:ab:81:db:
6c:94:55:47:ba:a2:8f:0e:13:d6:45:66:bd:3f:f8:df:ac:9e:
35:91:72:91:2a:0d:3f:22:8d:d0:5c:0d:71:8f:96:9a:a7:a3:
71:06:0e:68:e3:57:bf:3e:78:f9:a3:7e:94:a4:cc:4c:83:46:
15:61:79:de:e1:58:b3:51:6c:dd:0d:7d:62:30:0b:4f:5a:f9:
91:b4:7b:e2:a1:8a:e4:ec:08:2a:7b:3b:d7:1a:5b:64:31:a6:
36:2e:c6:de:3e:c3:0c:92:b8:59:09:e2:f0:2a:13:b8:7e:3f:
16:0b:96:1e:ac:31:48:99:cb:af:67:8b:82:03:6d:b7:92:04:
ed:6a:b5:02:03:d2:2b:98:19:cd:bf:99:aa:a9:d4:85:42:2a:
1a:8d:59:8d:73:37:b7:85:b0:d9:64:e5:3e:41:0f:95:10:1d:
49:ab:d1:8e:1f:5e:1f:92:00:cb:37:14:6b:5a:17:2c:ee:dd:
2f:3d:0c:c0:e4:ab:08:51:5f:e7:97:03:c0:7f:b6:9c:7a:b9:
fb:9c:7b:5b:b2:75:f1:d6:7a:dc:4e:80:a5:f9:51:dc:ed:d3:
eb:4f:5e:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org