Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NORDATW/RzN2OpwiRmw4n8gS8plXpY8TQI4.roa
File: RzN2OpwiRmw4n8gS8plXpY8TQI4.roa (raw, json)
Hash identifier: LwVn+aJ/3JVaYURyT7RGoTMVLOmcwSFuxYFe+cqAt90=
Subject key identifier: 47:33:76:3A:9C:22:46:6C:38:9F:C8:12:F2:99:57:A5:8F:13:40:8E
Certificate issuer: /CN=159D5F897276F0DEC857E7E2DEDD649876E8A482
Certificate serial: 0BE2
Authority key identifier: 15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/RzN2OpwiRmw4n8gS8plXpY8TQI4.roa
Signing time: Mon 19 Sep 2022 04:39:18 +0000
ROA not before: Mon 19 Sep 2022 04:39:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7483
IP address blocks: 103.138.194.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3042 (0xbe2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=159D5F897276F0DEC857E7E2DEDD649876E8A482
Validity
Not Before: Sep 19 04:39:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4733763A9C22466C389FC812F29957A58F13408E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:bd:9e:b0:7e:56:dd:33:d9:e6:e7:08:0a:b1:
7a:1c:3f:87:54:21:7e:6c:04:86:d7:33:dd:a1:79:
89:b4:de:7a:eb:94:b8:62:f5:21:49:5c:95:ce:05:
6b:c0:9b:e7:3f:b4:b9:fc:5a:80:85:a0:04:c4:3a:
e6:7d:1b:00:99:82:d8:e4:f3:5b:16:7d:b2:d6:99:
8b:c8:59:d1:34:71:8c:9f:4d:86:fd:27:9b:64:d3:
32:7f:61:46:23:e5:d1:e3:0d:e8:d2:55:22:c7:9b:
f6:91:c4:6d:93:ce:5a:61:ba:63:8e:39:95:df:5c:
26:8a:13:71:e9:46:82:6e:54:16:9a:b1:66:11:74:
60:ab:84:06:8e:54:f7:64:e7:d7:ea:0e:94:e4:d2:
27:d8:ff:03:43:a8:62:dc:fa:57:75:02:1a:b3:49:
84:fb:b2:fb:5a:05:22:63:1f:3b:af:88:58:e2:74:
9c:51:dd:94:65:7e:a4:3c:d0:05:b8:47:5c:55:9f:
34:71:df:86:e7:cf:32:85:61:fe:ff:47:df:03:fd:
3c:a9:52:f5:89:c6:2f:1d:01:f4:3e:39:63:00:c0:
16:d6:92:78:20:28:14:6e:fa:0e:d6:89:1d:e3:bb:
12:ec:10:e5:b7:b2:f7:d2:c9:e7:0e:c1:49:a3:f2:
af:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:33:76:3A:9C:22:46:6C:38:9F:C8:12:F2:99:57:A5:8F:13:40:8E
X509v3 Authority Key Identifier:
keyid:15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/RzN2OpwiRmw4n8gS8plXpY8TQI4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.194.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:da:3d:af:a8:6a:cc:96:3f:5d:25:c6:00:a3:82:1b:74:84:
3c:d9:55:4f:25:d5:5a:46:90:f9:81:64:bd:9c:6a:36:07:72:
5a:3c:89:99:96:8a:6b:79:b2:db:24:47:e2:b0:91:9c:76:f7:
f7:d2:42:11:2c:17:92:e5:d6:ad:25:73:f6:35:09:02:1b:d3:
68:d2:16:e8:56:b8:6b:75:38:40:e8:f3:42:1d:a8:fa:21:1a:
94:63:b0:ea:e2:eb:57:0c:f8:9a:fc:25:f9:82:66:32:bd:a4:
45:67:a2:de:42:52:da:6c:7c:7c:61:61:55:af:8c:fc:db:ba:
80:32:9a:e4:e8:ad:83:e6:e8:3e:a9:a6:59:b1:c7:f2:cc:73:
c5:4b:3d:ea:9a:ac:75:9f:fa:e4:a0:94:98:b4:c7:ea:aa:0e:
b1:03:d6:f1:e4:a1:16:e3:93:13:71:ac:49:12:cd:ee:a2:0a:
79:20:68:f8:a8:b2:75:6f:84:7b:4a:18:47:d7:01:72:7b:61:
79:13:40:cd:84:b6:84:ff:ee:fa:06:92:53:b9:66:7e:49:02:
7b:3a:ae:9d:06:ef:01:cf:26:ef:5a:ed:bb:2f:e1:4c:c3:4c:
0e:c7:63:9e:29:31:4d:81:ec:f5:34:cc:54:f9:6d:c4:74:b8:
1f:10:63:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:16 2024 by rpki-client on console-ams.rpki-client.org