Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/-AIqTfvn97c_FIqwCV1lt47WFuw.roa
File: -AIqTfvn97c_FIqwCV1lt47WFuw.roa (raw, json)
Hash identifier: xPE0HtJs19e2Mv7qz2r+/o9IDe+T83COkSuq/GMs6zs=
Subject key identifier: F8:02:2A:4D:FB:E7:F7:B7:3F:14:8A:B0:09:5D:65:B7:8E:D6:16:EC
Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Certificate serial: 08BC
Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/-AIqTfvn97c_FIqwCV1lt47WFuw.roa
Signing time: Sun 07 Feb 2021 12:47:57 +0000
ROA not before: Sun 07 Feb 2021 12:47:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7539
IP address blocks: 103.124.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2236 (0x8bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Validity
Not Before: Feb 7 12:47:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F8022A4DFBE7F7B73F148AB0095D65B78ED616EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4e:1c:7f:c2:8b:7b:5f:14:61:53:4c:d7:ba:
f2:81:34:48:aa:72:8a:21:0d:9a:41:37:ba:86:0d:
a8:ba:75:c5:66:c5:96:2e:49:3d:b8:fd:95:60:f0:
a9:75:45:ae:b2:a1:3a:23:65:5b:10:f1:79:8b:41:
8d:92:35:59:c0:af:d9:a0:25:4a:a8:f9:e3:32:5c:
6d:9d:f9:02:65:f1:78:d4:89:4b:8d:64:98:e2:bb:
0e:79:18:ee:79:58:b7:ad:2c:ef:11:a7:4f:ba:86:
62:bf:69:e2:54:0e:09:e8:92:3b:be:d3:a6:bb:cf:
3d:05:74:4f:a3:88:70:b3:7d:4d:ec:76:27:5d:a0:
0e:ec:fb:63:45:28:23:df:cd:37:54:35:89:2e:93:
07:fe:80:a3:99:dd:8c:16:88:12:46:52:6d:fc:75:
20:35:41:25:a5:24:6e:48:50:48:8b:0f:d3:9b:fb:
22:92:63:0f:fa:31:5d:b2:1e:82:1f:d2:2c:8d:c6:
32:96:87:03:f0:26:49:61:4f:aa:2b:f1:27:71:49:
5a:1e:c6:25:77:c7:28:39:79:5e:fe:62:4b:0a:7a:
8a:48:64:7a:df:fa:1e:c1:f5:da:94:90:3e:19:92:
0b:e2:fe:30:ee:28:a0:19:ad:96:f5:57:22:c4:a6:
64:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:02:2A:4D:FB:E7:F7:B7:3F:14:8A:B0:09:5D:65:B7:8E:D6:16:EC
X509v3 Authority Key Identifier:
keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/-AIqTfvn97c_FIqwCV1lt47WFuw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.72.0/22
Signature Algorithm: sha256WithRSAEncryption
65:1a:ab:c1:d5:41:11:80:c1:cc:6d:7f:44:c0:cb:4a:3f:d6:
66:1b:7b:6f:63:4b:40:9a:4a:ae:4f:19:bd:72:1a:82:47:60:
8e:ef:a5:21:7c:34:2d:8d:00:b6:1a:95:09:be:19:aa:30:88:
ac:58:fc:28:58:ad:14:1c:9e:25:04:db:b8:ea:44:fa:7c:cd:
1a:a7:6e:6d:b9:62:bd:89:c4:27:95:c5:01:f5:ed:f9:46:fd:
7a:2c:e3:f0:70:9d:16:01:db:e6:e8:9a:da:7b:f2:02:44:69:
ae:3e:ce:a6:93:92:c3:12:bc:65:57:c4:5f:85:49:cd:fc:82:
a2:ba:41:04:1e:a9:d3:cf:8b:bd:aa:22:ef:87:e9:38:64:a9:
a5:34:70:ab:27:a2:1a:b0:60:b9:b6:d4:fb:41:c9:02:9d:45:
c0:be:71:ee:ff:91:32:a4:4a:09:2a:d4:91:ef:77:50:9f:7b:
8d:6f:29:ec:2e:86:66:30:72:91:da:6c:46:28:74:af:de:d5:
03:b9:85:8d:cf:d6:28:d9:e2:5b:0d:19:19:dc:ea:01:2f:82:
4b:b3:1d:32:a3:aa:4c:e7:c1:dd:f8:4c:d3:c7:41:a1:6f:80:
49:69:c6:3a:0c:bf:35:e3:a6:d2:17:77:97:0e:79:1e:be:f4:
bd:83:cd:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org