Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/Z4Kb6KfNf1nEq-m6i0efQgisf5E.roa
File: Z4Kb6KfNf1nEq-m6i0efQgisf5E.roa (raw, json)
Hash identifier: x5u3AGa79Is1kQXftw8tvhQW6TZg10HWx8QIYHWRvHY=
Subject key identifier: 67:82:9B:E8:A7:CD:7F:59:C4:AB:E9:BA:8B:47:9F:42:08:AC:7F:91
Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Certificate serial: 06C4
Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/Z4Kb6KfNf1nEq-m6i0efQgisf5E.roa
Signing time: Wed 29 Sep 2021 02:36:35 +0000
ROA not before: Wed 29 Sep 2021 02:36:35 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131674
IP address blocks: 103.147.130.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1732 (0x6c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Validity
Not Before: Sep 29 02:36:35 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=67829BE8A7CD7F59C4ABE9BA8B479F4208AC7F91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c8:73:97:49:84:50:d5:58:b2:2b:8a:3f:67:
57:bb:09:de:2e:d1:19:3e:cc:2c:a3:9a:a0:7f:0a:
fc:a0:92:b0:1e:7f:52:f1:9f:70:7b:b1:4c:c2:76:
72:84:79:15:ae:2e:27:15:ab:44:ef:5f:c6:67:8b:
f9:5d:7a:db:37:6b:43:4c:7d:31:3a:fe:72:75:e2:
ab:1d:37:1e:47:36:55:0f:bc:89:ae:5d:1e:5d:8b:
59:d9:07:37:0b:9b:7e:75:eb:22:83:c8:3f:7b:0f:
d0:30:dc:b2:96:37:29:36:8e:73:07:cc:4a:f6:b4:
41:9a:ca:09:0f:7e:71:c3:27:be:43:10:de:ee:36:
39:0a:14:8b:d1:16:dd:b7:99:30:55:52:eb:d6:3c:
b6:34:90:7c:28:ea:ce:2b:90:4a:1b:09:fb:86:6d:
6e:70:be:29:b7:9b:dd:b9:30:21:41:f7:65:c5:00:
92:d2:50:72:9c:91:f1:4d:0f:b0:36:7d:84:82:51:
2a:02:d6:9d:1d:27:d3:05:ad:b4:c9:72:2a:d7:67:
17:b4:de:fd:2d:cd:fb:2f:e5:39:24:9c:42:fa:b9:
1b:d1:ee:f0:7a:07:bc:2a:40:00:71:17:39:27:1a:
80:16:db:23:10:dc:b4:1d:56:71:4f:69:1e:32:3e:
74:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:82:9B:E8:A7:CD:7F:59:C4:AB:E9:BA:8B:47:9F:42:08:AC:7F:91
X509v3 Authority Key Identifier:
keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/Z4Kb6KfNf1nEq-m6i0efQgisf5E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.147.130.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:fc:7d:81:26:d8:2a:64:8e:f1:b4:1c:f9:74:5f:30:90:86:
92:52:01:2e:cf:4c:2d:99:48:ac:48:ca:da:ae:89:3f:e9:78:
e1:15:a9:d5:d3:2e:c0:a8:bc:3b:0a:a4:41:01:87:f2:60:c8:
7b:59:3a:fa:00:92:06:0e:30:2c:95:52:4c:db:77:26:b0:49:
9f:4a:ef:c8:17:9a:65:85:1d:26:12:a7:92:f1:24:e3:94:f8:
4b:ff:60:e2:91:20:61:86:1f:8f:95:cd:71:cf:a7:ed:2d:7e:
a6:64:c5:67:e5:a5:a1:87:0f:3d:db:84:1c:86:dc:3e:e6:f5:
d5:3d:68:a2:5d:ed:15:ef:fe:43:54:a4:2c:e7:ac:27:30:58:
b6:3e:5e:11:e6:1e:de:0b:ee:22:45:a6:3d:3a:d3:d1:76:79:
80:72:6c:91:68:d9:88:18:2c:f5:5a:11:2c:49:76:dc:75:d9:
d9:79:7b:16:a0:dc:08:fc:cb:2a:e5:dc:05:e4:b4:10:87:39:
d5:cb:fe:b3:f4:80:33:28:3c:8b:4c:da:c4:3e:6b:03:4d:08:
0d:55:8b:a0:64:e4:9d:44:39:c5:0f:56:60:1c:99:55:1f:ee:
fc:9a:ee:bc:e5:1c:3d:90:e5:24:b6:61:c0:41:d7:a4:b9:94:
37:30:20:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org