Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MOBATW/Lh8vPMXAaCUuF7peXG5qUqJuyNo.roa
File: Lh8vPMXAaCUuF7peXG5qUqJuyNo.roa (raw, json)
Hash identifier: ZgEk2adAJuSIkZiHczme6vAk4A6z6GHCrVGXVxsIwqA=
Subject key identifier: 2E:1F:2F:3C:C5:C0:68:25:2E:17:BA:5E:5C:6E:6A:52:A2:6E:C8:DA
Certificate issuer: /CN=A05E66CFA6F8C0DAABFB1AF6FA3218426044F158
Certificate serial: 0C97
Authority key identifier: A0:5E:66:CF:A6:F8:C0:DA:AB:FB:1A:F6:FA:32:18:42:60:44:F1:58
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MOBATW/Lh8vPMXAaCUuF7peXG5qUqJuyNo.roa
Signing time: Tue 29 Sep 2020 10:05:02 +0000
ROA not before: Tue 29 Sep 2020 10:05:02 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131634
IP address blocks: 103.127.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3223 (0xc97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A05E66CFA6F8C0DAABFB1AF6FA3218426044F158
Validity
Not Before: Sep 29 10:05:02 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2E1F2F3CC5C068252E17BA5E5C6E6A52A26EC8DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cd:12:00:7c:9b:64:df:ae:19:c0:d4:4e:cf:
65:71:20:15:97:d0:31:51:86:83:fc:08:9d:a3:a7:
5d:54:87:94:67:ee:d8:c7:00:61:0c:3d:fd:6f:8e:
dc:78:6e:b7:a3:9e:ca:6b:80:8f:54:7b:b2:2a:ee:
c2:43:01:28:6d:4a:48:b1:ab:86:73:77:b8:cf:5e:
f1:e4:0f:83:4c:63:16:58:ac:d9:f9:46:6a:49:f8:
be:28:82:4d:01:82:dc:be:53:3f:32:37:68:60:dd:
81:1f:99:a6:ce:bc:d2:13:95:34:e9:77:2b:1b:72:
cc:46:8b:88:30:22:6e:67:b7:fe:3a:84:b1:24:cd:
6e:4a:43:dd:52:88:9c:2c:af:71:99:76:6b:20:91:
91:ad:f2:ef:55:17:bd:a6:fc:18:6c:e4:49:1e:95:
d1:f8:06:76:32:ab:6e:2c:ee:92:6a:3e:dd:24:16:
8c:c1:80:4b:07:20:f4:23:6c:51:c0:a4:7d:bd:a6:
2c:c5:44:ab:37:1d:e3:99:73:0b:0a:44:70:dc:41:
13:77:e8:bb:05:f1:f3:1a:34:b9:ab:bb:16:be:52:
de:99:da:b7:b5:bf:0c:81:cb:b9:21:c7:98:5d:45:
22:c4:11:c3:c0:30:4e:ae:0f:9b:1c:fd:4e:16:26:
41:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:1F:2F:3C:C5:C0:68:25:2E:17:BA:5E:5C:6E:6A:52:A2:6E:C8:DA
X509v3 Authority Key Identifier:
keyid:A0:5E:66:CF:A6:F8:C0:DA:AB:FB:1A:F6:FA:32:18:42:60:44:F1:58
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MOBATW/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MOBATW/Lh8vPMXAaCUuF7peXG5qUqJuyNo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.228.0/22
Signature Algorithm: sha256WithRSAEncryption
c8:e4:a1:ca:c7:6d:2d:8f:e4:ff:1e:cf:64:57:cb:d5:eb:56:
55:72:b2:a9:59:c4:60:f9:37:14:e2:81:a8:b0:62:d2:8e:4a:
5a:49:c8:e5:5b:0d:69:17:2f:11:dc:35:f1:ff:eb:71:21:29:
94:10:0d:58:26:bd:9c:5f:fa:5e:b6:c1:03:84:da:e7:60:75:
2d:50:48:f5:b6:0a:4d:ac:1d:82:07:c1:3f:ed:a6:d3:43:78:
9b:b5:b3:c0:fc:88:ad:60:8c:1a:79:4f:a5:cc:30:d4:ad:b8:
d3:8f:79:ed:8a:da:62:6f:98:20:fd:bd:3f:31:a6:5d:46:e2:
5c:bf:c1:91:43:a3:29:df:7e:94:08:13:0d:6d:5f:0c:67:98:
12:e5:f5:f1:de:9b:bb:55:7d:9c:15:35:f7:fa:74:ae:2a:cb:
9f:85:63:c1:80:4e:81:f2:2f:e5:3f:e2:82:62:66:d8:bf:b0:
7f:bc:32:73:7c:c8:3e:07:8d:0f:bf:a0:ea:63:64:b5:69:41:
ec:5d:53:d2:fb:c2:0b:cc:f4:09:c1:f3:f4:cc:30:d0:7e:13:
31:c8:52:b4:c5:cb:41:08:0f:cb:d4:06:f1:22:b6:2c:ad:2d:
07:e7:43:c2:4e:b9:2a:85:df:55:e5:7d:03:56:b5:f1:a3:11:
b3:21:76:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:11 2024 by rpki-client on console-ams.rpki-client.org