Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/KjLw2vN85gjrs8tROeSM8AbAjT8.roa
File: KjLw2vN85gjrs8tROeSM8AbAjT8.roa (raw, json)
Hash identifier: xwkRbTp4HeDb9bDrEvZmr2027jqxQld39OjrJrPgL5w=
Subject key identifier: 2A:32:F0:DA:F3:7C:E6:08:EB:B3:CB:51:39:E4:8C:F0:06:C0:8D:3F
Certificate issuer: /CN=98A5C390143149481DE79BC17BB62DBA2271F61F
Certificate serial: 01A6
Authority key identifier: 98:A5:C3:90:14:31:49:48:1D:E7:9B:C1:7B:B6:2D:BA:22:71:F6:1F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mKXDkBQxSUgd55vBe7YtuiJx9h8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/KjLw2vN85gjrs8tROeSM8AbAjT8.roa
Signing time: Thu 15 Sep 2022 02:48:58 +0000
ROA not before: Thu 15 Sep 2022 02:48:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131618
IP address blocks: 103.159.120.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 422 (0x1a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98A5C390143149481DE79BC17BB62DBA2271F61F
Validity
Not Before: Sep 15 02:48:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2A32F0DAF37CE608EBB3CB5139E48CF006C08D3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:24:be:f5:1b:68:c4:f4:61:a4:64:35:00:3a:
ff:7e:86:4d:84:fa:83:35:8a:b3:e6:1e:80:2c:d5:
2a:05:cc:ce:a8:d6:f5:d6:1b:2c:e4:47:e8:64:fa:
92:a4:c8:4f:a7:db:1b:9a:d0:42:34:d3:fc:80:e7:
c0:bc:96:a1:01:ef:9d:c1:9c:93:d8:7e:d9:44:dd:
4f:cb:2b:2c:98:11:f6:fb:59:27:0c:e0:38:f1:16:
81:34:0d:6c:ad:9b:02:a0:7c:20:6f:98:36:0f:0a:
cc:f4:71:5e:93:85:da:28:30:73:1d:f2:4b:24:3d:
b5:b8:4b:c2:9f:54:d2:37:d5:b2:f9:33:de:54:27:
bc:3e:6b:36:a0:f2:a5:7d:c5:6c:4b:6e:38:10:64:
95:5e:e9:7e:37:06:50:c0:b4:3a:f5:32:6d:87:78:
88:9c:f4:3e:fc:b5:33:63:13:35:8c:17:16:f9:8b:
fe:ae:e0:54:ab:6b:4e:00:10:a7:05:fe:ff:9f:d5:
ca:37:40:29:ef:15:e2:f6:39:09:45:62:0d:08:fb:
5b:0c:88:4c:1f:72:b7:81:0d:63:dd:a9:2b:3a:75:
23:56:55:cc:66:7d:84:c8:50:c1:48:50:92:e1:5b:
52:bc:46:84:58:bc:af:40:71:34:97:b1:c0:54:0c:
14:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:32:F0:DA:F3:7C:E6:08:EB:B3:CB:51:39:E4:8C:F0:06:C0:8D:3F
X509v3 Authority Key Identifier:
keyid:98:A5:C3:90:14:31:49:48:1D:E7:9B:C1:7B:B6:2D:BA:22:71:F6:1F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/mKXDkBQxSUgd55vBe7YtuiJx9h8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mKXDkBQxSUgd55vBe7YtuiJx9h8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/KjLw2vN85gjrs8tROeSM8AbAjT8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.159.120.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:3a:e0:99:18:5d:f6:60:84:d9:8a:d6:41:29:33:29:1c:62:
10:be:9e:32:ff:de:6f:44:8b:4b:c3:51:bd:0e:22:05:70:08:
d4:16:1b:6a:73:5a:bf:b7:4c:99:12:f5:53:b5:64:6b:17:a8:
e6:08:36:e4:16:e1:db:c3:87:83:01:47:23:09:0e:3a:0d:0d:
c7:ce:c9:4c:b6:1a:3e:c5:bc:81:cd:11:f8:69:04:2e:c7:35:
9c:2f:3b:b7:46:19:74:de:a2:1e:2c:d8:8e:ad:45:c3:b2:3c:
c2:ce:cf:54:c5:ec:da:ff:1d:a1:1f:08:59:b4:14:f7:e2:ae:
0b:53:4d:d0:9a:ae:3e:b4:49:11:dd:9d:4f:52:79:a9:03:27:
63:65:93:72:84:99:b1:bc:8f:57:69:48:0a:63:b4:cc:ab:59:
fa:8f:cc:92:8e:1e:92:85:0a:c8:2a:f6:a9:e6:84:9a:d7:12:
74:55:b4:a4:13:7e:71:0f:95:7b:f0:c8:34:f9:6a:ba:0f:d0:
5d:c7:db:36:ab:c5:6a:89:c1:c5:6e:71:ea:a1:7f:75:6e:a0:
12:15:3a:8b:05:ba:fb:66:fd:56:49:04:a1:45:37:af:44:38:
c6:b2:6b:fe:c9:d9:2c:50:43:26:cf:35:99:3e:d6:a4:ff:56:
ad:62:fc:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org