Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAIFOOD/K9rCTui3nOdzuWsFQ1SUw4OwIy8.roa
File: K9rCTui3nOdzuWsFQ1SUw4OwIy8.roa (raw, json)
Hash identifier: sZnzdYWNlQnJDGHcd1QopJAoplgOaFD/OvHQlKmn2F0=
Subject key identifier: 2B:DA:C2:4E:E8:B7:9C:E7:73:B9:6B:05:43:54:94:C3:83:B0:23:2F
Certificate issuer: /CN=C760A0EC769BF57E048E5FC2BA95A5A023AC8CC9
Certificate serial: EF
Authority key identifier: C7:60:A0:EC:76:9B:F5:7E:04:8E:5F:C2:BA:95:A5:A0:23:AC:8C:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/x2Cg7Hab9X4Ejl_CupWloCOsjMk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFOOD/K9rCTui3nOdzuWsFQ1SUw4OwIy8.roa
Signing time: Tue 25 Jul 2023 02:31:54 +0000
ROA not before: Tue 25 Jul 2023 02:31:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7483
IP address blocks: 103.190.168.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 239 (0xef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C760A0EC769BF57E048E5FC2BA95A5A023AC8CC9
Validity
Not Before: Jul 25 02:31:54 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2BDAC24EE8B79CE773B96B05435494C383B0232F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4e:5f:3c:6a:8e:e5:8c:0b:6c:6a:e0:14:1f:
09:61:56:5e:9a:20:5a:68:ee:a2:ae:ab:f6:12:b1:
2d:f0:37:54:59:57:4a:1c:56:1b:6c:89:38:17:6c:
52:f1:aa:21:3b:07:c0:93:ba:61:27:19:2a:dd:2d:
e9:ec:a3:4d:bd:e3:08:ed:c2:4c:f0:ce:6b:bd:16:
9a:22:08:db:cb:aa:a6:75:6f:24:2b:bf:97:05:a6:
27:95:5a:e5:ef:83:9c:87:81:1f:36:92:65:e1:9a:
c1:f4:28:6b:7d:b3:9a:22:9c:fe:80:f7:a2:98:3c:
9e:bc:db:87:c0:77:7d:d6:59:0a:29:3f:b5:3b:05:
17:c9:cc:6b:34:76:62:8d:0e:07:3a:82:5e:c0:84:
91:a0:5c:d1:87:73:8e:49:4b:f9:c7:85:e8:0e:7f:
46:60:9a:b1:d3:ca:66:43:b9:7f:1b:e8:cc:93:7d:
cc:cf:dd:46:43:26:82:00:94:d9:9b:50:3f:fa:97:
70:85:7d:13:a2:89:ce:6d:9c:ed:3e:cf:3e:ba:a1:
94:7d:a0:df:19:c9:ad:84:c0:27:4f:64:5c:f7:83:
eb:91:9b:c3:b0:11:78:1a:0f:e5:01:f5:db:00:0c:
fc:57:5e:83:7b:41:ff:c6:34:b6:4b:f5:79:64:78:
10:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:DA:C2:4E:E8:B7:9C:E7:73:B9:6B:05:43:54:94:C3:83:B0:23:2F
X509v3 Authority Key Identifier:
keyid:C7:60:A0:EC:76:9B:F5:7E:04:8E:5F:C2:BA:95:A5:A0:23:AC:8C:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFOOD/x2Cg7Hab9X4Ejl_CupWloCOsjMk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/x2Cg7Hab9X4Ejl_CupWloCOsjMk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAIFOOD/K9rCTui3nOdzuWsFQ1SUw4OwIy8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.190.168.0/23
Signature Algorithm: sha256WithRSAEncryption
10:b2:d5:fb:6c:77:51:b1:79:ff:0e:43:9f:79:cc:9a:0d:bf:
7d:07:a2:23:6b:12:5d:3a:b2:b9:6c:8b:d8:0c:94:b0:4f:71:
04:28:d2:34:77:0b:a5:45:7b:cf:4b:b4:1d:06:ad:c0:f6:2d:
97:f4:30:f0:63:46:75:c8:e5:27:6b:54:87:37:34:2b:78:54:
ed:13:b6:1c:cf:a6:d1:e1:c5:bb:ad:79:8d:3b:a6:2a:20:6d:
92:3e:7c:0f:2f:d0:f2:25:19:0a:73:56:c4:5e:0f:04:d5:ee:
44:be:27:da:cf:39:82:ed:13:63:81:ed:c0:3b:8e:67:8f:49:
1f:3d:92:13:32:1b:95:c1:be:d4:eb:a8:c2:64:ce:70:1d:12:
f9:a3:ca:13:63:cf:9b:60:63:23:0d:79:fc:36:77:99:62:c9:
28:8b:24:82:fd:3f:96:4e:73:c0:a8:26:2d:c0:2f:5e:60:79:
d9:af:08:1a:7f:c2:52:b9:d3:59:c0:4e:a1:ca:cc:6c:83:43:
e8:a6:20:e7:38:bc:90:b7:fa:a5:b8:7e:bd:9a:a4:e3:cf:54:
b9:c0:f9:28:73:2c:d1:ff:70:fb:7d:e5:10:e2:62:8b:65:38:
c5:6d:9e:37:be:f3:96:25:b6:0b:e2:c8:02:5f:55:65:eb:49:
df:82:be:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org