Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/apydqcyonLIQYK5yB2rvWv1Hfpg.roa
File: apydqcyonLIQYK5yB2rvWv1Hfpg.roa (raw, json)
Hash identifier: lg5HEUduJMFj63taOsUoOFZSL3j/nPaMSO8hUU+aeLU=
Subject key identifier: 6A:9C:9D:A9:CC:A8:9C:B2:10:60:AE:72:07:6A:EF:5A:FD:47:7E:98
Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Certificate serial: 0498
Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/apydqcyonLIQYK5yB2rvWv1Hfpg.roa
Signing time: Fri 18 Sep 2020 09:06:00 +0000
ROA not before: Fri 18 Sep 2020 09:06:00 +0000
ROA not after: Tue 02 Feb 2021 02:24:15 +0000
asID: 131677
IP address blocks: 103.147.130.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1176 (0x498)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Validity
Not Before: Sep 18 09:06:00 2020 GMT
Not After : Feb 2 02:24:15 2021 GMT
Subject: CN=6A9C9DA9CCA89CB21060AE72076AEF5AFD477E98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:16:cf:96:dc:0d:3a:fb:87:51:8f:c0:2a:e3:
17:a9:b9:2e:33:ad:9a:f6:bc:3a:3c:53:49:5b:13:
17:bd:59:d7:72:c4:07:0f:9d:d2:d3:62:d4:20:b3:
34:08:ee:30:7a:ef:c8:73:79:db:52:6f:a5:e8:f2:
49:04:cb:07:4f:83:51:07:5d:41:58:5c:e8:cd:f7:
a6:9e:cd:42:f3:cf:fe:5c:1e:f6:c3:07:60:2e:0c:
d5:b1:9f:b7:f0:27:9b:3c:0c:f9:cd:2a:e4:b2:a5:
2c:30:5c:bf:7d:cb:32:eb:75:2b:a4:fa:08:73:bf:
51:44:67:d4:7a:85:59:1f:44:96:da:66:5b:b0:36:
83:87:7d:65:9e:c7:9c:c8:66:14:d7:7a:39:1f:db:
bf:f4:f0:45:1b:2a:36:4c:e6:8b:7f:5f:59:e3:ac:
60:a7:79:0e:c6:7d:be:78:8e:0e:c0:dd:80:bb:8a:
fa:15:0d:f3:e3:f5:b3:be:67:b7:39:c9:49:e0:ef:
2e:27:68:71:16:ec:65:62:9a:82:d3:89:45:df:01:
6f:eb:d5:a3:d5:8d:25:40:7c:b2:6c:19:e9:1d:8a:
38:36:f1:87:ce:22:b6:01:a9:7c:54:1a:ba:a1:47:
0e:7e:f7:97:ca:85:63:4b:a6:ea:d1:58:d8:fa:ef:
e1:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:9C:9D:A9:CC:A8:9C:B2:10:60:AE:72:07:6A:EF:5A:FD:47:7E:98
X509v3 Authority Key Identifier:
keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/apydqcyonLIQYK5yB2rvWv1Hfpg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.147.130.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:63:ec:99:d2:c8:be:26:c5:cd:9a:7f:1b:fc:d7:29:96:c0:
e5:4b:89:4c:88:dc:19:dc:88:73:fc:55:fa:24:34:72:ba:47:
69:90:c7:a2:46:e7:a6:82:58:ed:3d:84:21:97:bd:9b:d8:ce:
79:82:5c:b7:b4:53:e1:c6:44:bb:27:2e:58:de:d6:07:d4:41:
f7:69:cc:f8:d7:af:d2:ba:2b:ca:d8:a4:2a:8e:14:bd:56:6d:
94:67:8f:35:d8:a1:8c:27:34:49:b0:35:6c:30:16:d1:ea:d9:
2e:16:93:ac:65:df:71:e2:23:a3:45:42:a8:cd:fc:e5:57:04:
77:be:99:9a:1c:f8:a9:d8:4a:36:37:22:02:5c:25:a9:01:bb:
c8:01:64:fd:76:39:15:78:2c:55:da:86:84:ab:26:d4:dd:86:
4e:9d:a2:2f:82:38:a7:6a:e8:e0:6d:63:cb:da:d0:82:81:21:
ee:37:42:2c:06:34:cd:d0:db:b3:10:47:05:68:67:bf:df:4c:
3c:cb:41:2d:01:c4:49:3c:74:73:c7:6c:dd:f8:c9:35:07:65:
a5:88:3d:3f:42:9e:86:5a:a6:84:88:9c:8c:34:fd:c7:a0:df:
24:31:f2:e9:ab:16:4f:cb:8c:d7:01:1d:ad:52:39:f1:98:8a:
03:4b:00:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org