Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/J94zkoSazQO0zp4OzoSzOhPgEQs.roa
File: J94zkoSazQO0zp4OzoSzOhPgEQs.roa (raw, json)
Hash identifier: y/MlD3vZWETciCv4ZtFdhgOHTWK+2NdEAuFw4x0+dkc=
Subject key identifier: 27:DE:33:92:84:9A:CD:03:B4:CE:9E:0E:CE:84:B3:3A:13:E0:11:0B
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 0E01
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/J94zkoSazQO0zp4OzoSzOhPgEQs.roa
Signing time: Wed 29 Sep 2021 02:43:05 +0000
ROA not before: Wed 29 Sep 2021 02:43:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9919
IP address blocks: 103.234.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3585 (0xe01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 29 02:43:05 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=27DE3392849ACD03B4CE9E0ECE84B33A13E0110B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:39:e4:de:f5:b0:ec:6a:05:18:33:94:b7:48:
55:26:0d:c6:a8:67:9f:3b:8c:ab:e2:45:d7:fb:41:
ce:29:73:b0:d1:1a:ae:17:36:6d:29:01:cc:11:95:
e1:4f:d4:3c:a8:33:d6:eb:7f:65:bc:fd:33:ea:e1:
bf:28:0a:57:89:d1:04:76:06:3a:ff:f2:4d:12:06:
5f:a0:31:8c:92:b5:3d:76:91:42:f9:e1:51:02:85:
d5:45:b0:51:6a:70:78:cd:16:1d:a9:87:23:18:8b:
84:30:49:06:3c:13:5c:f3:d4:43:70:0d:a9:c3:63:
44:f5:dd:f8:d2:32:74:04:3a:26:3b:01:68:32:82:
2b:0b:5c:62:95:af:28:a8:0a:c0:9d:3e:44:45:c6:
81:7c:f3:8e:bf:fb:b5:13:f0:d9:4f:54:d2:38:16:
e7:90:d7:e9:2c:c1:af:c3:93:06:d0:79:bc:8c:5f:
be:43:db:70:bc:0f:5a:5c:5f:62:a1:84:56:eb:d8:
b1:97:e5:ea:b1:ea:ce:f9:dc:86:ba:9c:fa:06:74:
c1:d1:0d:68:fe:ff:6d:2f:ff:53:a7:46:13:97:7b:
92:f6:f3:a6:0b:ff:80:d4:23:72:0c:d8:40:0b:87:
d4:14:dc:14:00:15:bc:d4:15:6c:07:c5:cf:63:8b:
7a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:DE:33:92:84:9A:CD:03:B4:CE:9E:0E:CE:84:B3:3A:13:E0:11:0B
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/J94zkoSazQO0zp4OzoSzOhPgEQs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.40.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:35:f3:45:46:55:cd:e6:52:b3:b0:b2:8b:7a:90:34:b0:71:
f0:a7:f2:66:a4:ba:b1:0a:40:43:9d:e5:d5:7b:e0:b3:13:33:
68:8a:59:19:89:93:4a:f7:ad:1d:71:f0:ac:45:a6:aa:6e:27:
b7:f6:12:7f:fd:03:24:83:38:12:60:12:25:b7:e6:5a:38:6b:
5d:db:4f:cd:a1:7b:8b:cc:58:ab:2d:21:8c:1b:28:6b:dd:53:
5c:4a:9c:7d:57:88:5a:31:2d:c3:64:ce:a2:b3:87:1a:d5:78:
66:3e:14:13:06:20:27:75:e7:02:ab:29:c6:ff:4e:62:f8:ee:
12:ea:0a:1d:fd:af:8e:d3:b8:a2:7d:59:fc:4d:65:9a:3a:4a:
1a:07:e1:be:00:8a:72:a8:a4:7d:2c:b6:b9:ba:51:ea:b5:8d:
d0:01:97:c6:09:15:3c:9a:3d:e4:95:1a:34:2c:06:52:1d:82:
ff:87:e1:eb:11:82:33:29:e6:5c:dd:3d:b0:3a:d1:70:f8:04:
5e:99:0d:16:00:a4:42:5b:04:9e:71:ef:bb:13:9c:e6:a2:7a:
d5:c2:2a:f2:14:1c:ce:f0:c0:90:dc:02:bd:b2:50:fd:f3:40:
6d:50:46:f7:c3:a0:0d:cd:cc:16:7b:02:e3:c3:ca:4d:2d:ed:
e4:eb:d9:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-fra.rpki-client.org