Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/_5wcX-Z_FUuH2A1c1kpzf-R1vnc.roa
File: _5wcX-Z_FUuH2A1c1kpzf-R1vnc.roa (raw, json)
Hash identifier: MTSU8tRBk4r8LZRRvvvRYvMMDVBJ4P5JukG15k9GnJc=
Subject key identifier: FF:9C:1C:5F:E6:7F:15:4B:87:D8:0D:5C:D6:4A:73:7F:E4:75:BE:77
Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Certificate serial: 095A
Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/_5wcX-Z_FUuH2A1c1kpzf-R1vnc.roa
Signing time: Wed 29 Sep 2021 02:52:44 +0000
ROA not before: Wed 29 Sep 2021 02:52:44 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7539
IP address blocks: 103.124.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2394 (0x95a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0
Validity
Not Before: Sep 29 02:52:44 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FF9C1C5FE67F154B87D80D5CD64A737FE475BE77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0f:83:92:28:fb:f4:dc:63:05:62:c1:f8:37:
ee:41:63:45:88:29:d3:97:cc:38:11:10:3b:3b:ff:
ef:9c:48:ff:84:46:6c:c4:e1:5f:22:27:c4:b3:5a:
0f:cf:61:b6:af:48:00:30:d1:38:43:ea:05:7b:e6:
3d:de:aa:18:5a:f4:5e:e7:7a:b3:52:67:83:68:b8:
95:be:af:d7:28:b9:ed:94:74:6e:32:84:0d:f9:1b:
16:22:f9:1f:b0:cf:b4:f5:26:22:b4:73:a8:10:d7:
03:03:16:20:b7:0b:79:ac:3f:f6:da:50:5e:89:e1:
6d:49:08:90:9c:7c:96:36:78:3d:6c:6f:88:0a:17:
3f:26:98:a5:5c:62:95:1f:fc:42:53:43:a5:1b:46:
45:f3:f0:a4:94:f0:67:3c:a8:7a:59:bd:eb:0e:2f:
36:00:d4:ed:27:fb:10:99:c9:81:10:27:d8:12:b3:
3b:92:21:f0:4f:0c:0c:18:38:e5:8a:82:7c:f0:fe:
f3:8a:3d:4b:b6:7c:c4:bc:05:dd:db:e0:ae:a7:85:
38:55:a7:7f:18:50:83:90:8d:42:01:6c:43:a4:dd:
ea:eb:e9:0a:57:f6:38:92:7f:2b:f5:e7:d3:7b:73:
c1:fc:9e:62:3d:19:20:d1:37:f1:57:85:6b:7e:58:
d4:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:9C:1C:5F:E6:7F:15:4B:87:D8:0D:5C:D6:4A:73:7F:E4:75:BE:77
X509v3 Authority Key Identifier:
keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/_5wcX-Z_FUuH2A1c1kpzf-R1vnc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.72.0/22
Signature Algorithm: sha256WithRSAEncryption
62:aa:6e:08:1c:39:6d:c0:61:a6:c2:0c:af:aa:a9:ec:71:85:
44:77:16:87:d0:96:cd:66:1c:07:e2:10:62:f9:bb:37:ae:f1:
0f:ab:d8:54:1f:e4:2d:ff:82:5a:b9:a5:30:51:d6:5f:6c:fc:
69:ab:bf:ca:59:b9:57:5f:61:e6:c6:a8:23:5f:34:8a:be:fc:
28:76:35:e7:95:c5:7d:49:b1:19:7a:f3:59:67:5c:9a:5b:8d:
7d:71:29:8d:07:bf:9c:fb:24:11:7e:98:be:d2:16:fd:f2:89:
27:b8:1e:6e:d9:d2:85:61:5c:61:a8:7c:66:3b:a8:a3:f2:7d:
74:00:c5:ea:98:1f:30:1a:96:f4:77:64:87:dc:92:b6:cb:79:
a1:25:97:63:b0:b4:2e:bd:f0:40:d0:93:8d:71:98:58:ff:e6:
5f:ea:0c:3d:4f:82:87:52:b2:64:4c:19:0d:fc:67:d1:1c:32:
4c:2b:02:b4:46:3f:27:a7:01:a5:7a:b0:35:a0:f6:62:7f:44:
b2:ec:f5:c7:41:f6:7e:d8:f7:a4:e1:7a:80:1d:11:20:cc:a3:
2a:15:73:20:ca:46:82:73:69:2b:30:49:b5:66:2c:07:ba:78:
44:41:23:09:69:b6:98:7c:1d:7f:de:4e:88:79:ab:73:3b:f8:
0b:9f:c9:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org