Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKBNET/iybiT59T1GIARnBR2VIic_6u6BE.roa
File: iybiT59T1GIARnBR2VIic_6u6BE.roa (raw, json)
Hash identifier: gz4yh8HdPNUgTIPzJk9uRa/VBYzXho0dTVZeZ67Vxmk=
Subject key identifier: 8B:26:E2:4F:9F:53:D4:62:00:46:70:51:D9:52:22:73:FE:AE:E8:11
Certificate issuer: /CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB
Certificate serial: 0F82
Authority key identifier: 80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/iybiT59T1GIARnBR2VIic_6u6BE.roa
Signing time: Sun 07 Feb 2021 11:52:53 +0000
ROA not before: Sun 07 Feb 2021 11:52:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7482
IP address blocks: 103.130.48.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3970 (0xf82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB
Validity
Not Before: Feb 7 11:52:53 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8B26E24F9F53D46200467051D9522273FEAEE811
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:66:01:72:31:9d:f7:63:02:a4:9b:07:1b:77:
80:4b:6d:6e:65:92:15:ed:13:30:b6:51:37:8d:f0:
c1:3a:12:4a:4a:97:80:cd:50:33:cb:68:1a:74:6b:
b1:32:f2:70:32:0e:6e:9d:d3:df:58:6f:a6:20:09:
2b:c0:12:4c:43:58:10:f4:d8:39:7a:76:a8:96:46:
01:f5:c0:c9:35:0a:7b:a6:37:67:1b:37:5c:6d:22:
6a:f5:8f:4e:ff:1a:f2:e9:94:1c:da:ac:bb:e6:cf:
74:d6:a3:fa:ad:f0:20:da:73:b1:46:80:82:1d:6b:
a8:66:01:0b:d3:b0:e9:04:5a:27:b3:b4:30:32:7b:
c2:f8:37:48:37:6c:3b:fb:9a:a9:93:58:7c:ba:19:
56:36:f2:cf:9a:71:23:17:f8:2a:bb:c0:79:c5:d2:
02:73:ca:ba:bf:2c:fb:40:f1:33:ab:8b:a0:f8:0c:
41:0c:02:46:fd:27:72:e1:24:59:dc:d3:36:8a:12:
f0:f2:48:3e:2a:00:0d:0b:b2:16:85:d7:0b:9a:c5:
8a:9c:8f:85:7b:49:07:b8:a7:76:33:e6:dc:b2:31:
91:34:80:83:b7:1f:12:12:77:ec:ec:b9:b9:df:15:
ad:4a:bd:5f:41:db:aa:62:e7:29:48:64:45:42:a7:
a5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:26:E2:4F:9F:53:D4:62:00:46:70:51:D9:52:22:73:FE:AE:E8:11
X509v3 Authority Key Identifier:
keyid:80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/iybiT59T1GIARnBR2VIic_6u6BE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.48.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:16:8f:46:85:44:85:e3:ac:75:e4:14:8a:e1:7b:16:f2:fe:
2d:bb:76:e6:65:9a:b8:26:0b:cb:6e:5e:50:bb:17:f6:26:0f:
3d:09:ef:9a:b5:fc:c3:4f:e4:83:eb:aa:bd:b6:40:80:7a:a7:
38:ef:5d:e3:8b:90:7f:10:d2:72:e9:df:78:97:68:18:fe:a7:
a8:10:b1:15:d3:84:ae:13:2d:c6:2a:cb:0a:86:4d:f4:c5:5e:
82:7d:44:07:5d:88:da:0f:cb:ab:6e:5e:b4:28:ba:f9:9d:63:
75:86:a9:fb:3d:1b:ca:d6:1d:ff:45:39:f7:ba:59:be:8e:e2:
7b:fc:f8:3c:e9:8d:a2:c4:ff:90:0e:4d:66:28:2f:31:fb:1d:
bf:c7:e2:db:78:80:83:f8:09:b6:78:af:fb:45:83:38:66:12:
aa:67:1f:04:ca:27:d7:95:7b:6b:5d:2f:92:cb:ad:d8:04:78:
fa:cf:91:b1:97:e5:b3:69:0e:59:7b:e5:1c:f7:36:9b:ab:9c:
a5:dd:43:9c:49:14:fb:47:b8:0b:ab:11:dc:e9:80:6e:59:d9:
b4:f7:1a:72:dc:16:00:02:e1:2f:ef:d2:5d:f9:dc:ec:f5:2b:
94:ae:73:1c:a4:f8:60:ba:e9:32:93:80:17:d5:82:58:53:17:
15:de:0f:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org