Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/QwBc1FJOIDt7cJnmGP1auv8EmXA.roa
File: QwBc1FJOIDt7cJnmGP1auv8EmXA.roa (raw, json)
Hash identifier: iFpM/4dD1s7mVTfN0i8K/72VNJlvajhAt7EbSfP+G/A=
Subject key identifier: 43:00:5C:D4:52:4E:20:3B:7B:70:99:E6:18:FD:5A:BA:FF:04:99:70
Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Certificate serial: 07B1
Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/QwBc1FJOIDt7cJnmGP1auv8EmXA.roa
Signing time: Thu 15 Sep 2022 02:37:39 +0000
ROA not before: Thu 15 Sep 2022 02:37:39 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131674
IP address blocks: 103.147.130.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1969 (0x7b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Validity
Not Before: Sep 15 02:37:39 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=43005CD4524E203B7B7099E618FD5ABAFF049970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0d:61:75:c9:1a:9b:4d:30:36:2a:6b:e7:b6:
98:ef:cb:38:e4:77:4c:c3:19:4c:d9:ce:40:9d:b3:
8b:ba:ab:4f:7a:35:c3:27:bc:fc:1d:68:c9:77:ec:
84:ab:fc:f5:5d:73:84:cb:b8:13:94:91:c7:8c:34:
ea:bc:4c:32:44:cd:a4:e2:f8:1a:c9:66:f2:52:0c:
5e:54:e3:8c:56:cf:70:9c:98:70:09:9d:b8:8a:ef:
dd:01:32:f0:f9:32:a2:5c:83:1c:aa:67:1f:b4:ea:
69:0f:58:cd:47:ff:c5:2a:c6:57:e0:65:7a:e8:9e:
0a:e0:21:3d:31:d7:92:c8:5f:e7:c7:d8:c8:79:36:
fb:22:49:49:89:c2:51:87:51:f4:36:8e:5e:e1:63:
40:d1:27:67:76:42:c6:82:97:76:2b:df:a4:42:20:
79:22:7d:5b:05:6b:b9:d9:a7:e1:e1:17:e3:c8:85:
ad:c1:f6:6d:3a:56:85:17:88:11:9b:33:b3:d2:ee:
a8:1c:bb:5e:42:8a:60:79:c2:14:97:25:db:f1:13:
09:24:f5:cb:19:56:67:8c:1d:73:36:e0:32:f4:7b:
0b:58:41:09:05:71:87:ed:56:38:43:6c:f3:96:07:
33:bb:68:9a:0d:8a:5b:1c:62:d2:87:e9:f2:d7:f4:
86:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:00:5C:D4:52:4E:20:3B:7B:70:99:E6:18:FD:5A:BA:FF:04:99:70
X509v3 Authority Key Identifier:
keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/QwBc1FJOIDt7cJnmGP1auv8EmXA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.147.130.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:43:de:dc:59:45:92:f6:5b:8f:28:b5:dd:95:08:9e:11:a8:
f4:a6:cb:2d:f7:c2:e9:46:3c:c8:da:43:88:ca:bc:74:4a:41:
07:5c:0f:07:40:d0:a7:7b:8d:fd:df:a1:51:2e:b8:fb:a2:d2:
12:c9:8c:5a:88:dc:67:cf:18:02:9b:47:01:05:43:ee:f2:8f:
e1:78:69:f0:f0:0c:08:81:aa:ff:4a:98:58:20:00:f6:0f:c2:
3a:25:59:f6:02:6a:06:99:be:61:10:6b:0b:e2:e4:66:80:f9:
bc:8e:6c:77:2c:59:ba:75:26:44:bc:f9:11:eb:85:b3:dc:2e:
1a:13:cd:a0:19:1b:b6:8a:1b:ce:05:f9:06:04:00:18:32:f2:
5b:00:c2:12:89:26:fa:4f:d5:bb:e6:ae:a2:51:d9:90:d7:ca:
0b:5c:d5:3c:b6:0f:30:31:dc:50:4d:04:1d:b8:05:c3:e0:37:
71:1a:ca:cd:07:5e:20:a4:61:a1:7d:28:0e:51:1f:67:f7:95:
f7:b2:0c:37:77:0f:e5:c6:a1:ad:4b:09:64:78:d7:ca:e7:4b:
5f:74:e8:1e:e4:12:7b:55:61:50:8c:5c:c9:00:7c:a8:f2:e6:
81:61:31:fb:72:37:89:ab:66:05:ed:5e:f3:1d:ec:14:7b:e1:
25:6a:c9:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org