Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/9HxyAdEWd50bP92CjtAkJSUkj-U.roa
File: 9HxyAdEWd50bP92CjtAkJSUkj-U.roa (raw, json)
Hash identifier: 1ZhQR8lcCGiwvc7NIZ5W4DlMbBTGRNA1Z5kWNQlm6cw=
Subject key identifier: F4:7C:72:01:D1:16:77:9D:1B:3F:DD:82:8E:D0:24:25:25:24:8F:E5
Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Certificate serial: 0A49
Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/9HxyAdEWd50bP92CjtAkJSUkj-U.roa
Signing time: Thu 15 Sep 2022 02:50:24 +0000
ROA not before: Thu 15 Sep 2022 02:50:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7539
IP address blocks: 103.124.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2633 (0xa49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Validity
Not Before: Sep 15 02:50:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F47C7201D116779D1B3FDD828ED0242525248FE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:45:d2:02:c6:ac:86:37:74:23:99:1b:b1:85:
5c:53:21:8f:a0:62:f9:c9:f3:7c:73:1f:95:91:82:
cc:24:19:c9:1c:50:b2:a4:d7:b7:43:5e:f2:07:99:
75:f2:b4:1d:1f:54:83:3a:e6:c3:36:01:64:95:a3:
c9:06:e1:9a:5a:ae:5c:17:f8:63:ef:d4:26:f7:bd:
0f:cd:25:c2:43:58:ae:5e:5b:9b:e0:b2:4b:36:83:
8c:2b:81:29:a3:f0:aa:80:58:91:92:5d:fc:d0:f0:
6e:e4:7b:6c:7d:0b:97:8e:da:9e:ac:02:16:19:5e:
93:8c:68:2a:aa:cb:32:14:bc:eb:b0:f9:9d:5a:d5:
51:b3:18:c7:26:1e:1a:a6:0e:80:14:66:af:7f:84:
f7:37:06:12:16:48:12:ce:b4:0b:15:df:45:1b:df:
e2:82:ef:4a:1f:d9:6b:1b:3d:38:b7:27:d1:84:3d:
4b:68:67:5c:9a:20:37:df:27:2a:42:14:fa:8f:9a:
cd:9a:cc:fa:ab:7f:95:1e:bc:2c:65:34:b9:d7:32:
14:81:7b:f6:58:a8:25:6e:9c:af:e2:17:12:f1:a7:
54:91:73:1a:ce:0b:80:51:c8:a6:a3:5c:0a:52:a2:
eb:ac:71:dd:f4:e1:18:33:57:bc:7f:4a:3e:66:d1:
7e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:7C:72:01:D1:16:77:9D:1B:3F:DD:82:8E:D0:24:25:25:24:8F:E5
X509v3 Authority Key Identifier:
keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/9HxyAdEWd50bP92CjtAkJSUkj-U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.72.0/22
Signature Algorithm: sha256WithRSAEncryption
84:c6:8a:9e:59:e3:c4:52:82:3d:69:d9:f0:e1:15:fe:cf:db:
0c:26:7c:56:3c:69:40:8e:95:04:d5:35:06:47:7a:6d:51:f5:
43:e2:f1:39:2f:69:fd:c1:5b:4b:7c:b3:57:97:30:e6:a1:5a:
be:49:79:db:03:cd:d3:9a:0f:2d:02:f3:65:34:fd:04:5f:76:
c0:94:8e:be:92:c1:b4:a2:e7:a5:39:a9:a4:8a:0a:b3:3c:ca:
60:7d:86:50:9c:ba:fb:36:de:e7:e4:42:8a:ea:78:90:cc:9c:
93:7d:67:47:a8:bb:54:aa:1f:12:70:4e:7c:17:35:c1:2c:0a:
3c:f1:44:0f:4f:a9:a3:3c:fe:0e:ab:3b:9c:20:52:e0:41:dd:
43:b3:ab:49:3f:4d:40:98:4e:4e:a2:99:c1:cc:fd:72:a6:42:
8d:12:db:c1:01:ab:76:9b:7c:20:9a:20:ed:d2:de:43:14:6b:
1e:42:61:b7:25:7e:46:c2:b7:14:84:58:b5:00:ef:6b:57:cf:
fd:09:8b:18:a0:68:30:91:4a:70:ab:d4:06:90:0c:e9:1d:d4:
f3:77:3a:c9:99:bf:5a:8b:51:9a:bf:97:e7:59:0d:ba:54:a5:
22:75:13:67:6f:5e:0a:1c:c4:16:a9:3b:f1:3e:a2:76:bf:a8:
23:10:2a:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org