Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/i-DOX7dKeDVhAI-0UmcORdLzKw8.roa
File: i-DOX7dKeDVhAI-0UmcORdLzKw8.roa (raw, json)
Hash identifier: /wlF3HdvXRVHzxFoA65q8O018/crPziG19qS9HD+rgo=
Subject key identifier: 8B:E0:CE:5F:B7:4A:78:35:61:00:8F:B4:52:67:0E:45:D2:F3:2B:0F
Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Certificate serial: 060C
Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/i-DOX7dKeDVhAI-0UmcORdLzKw8.roa
Signing time: Tue 19 Jan 2021 02:30:43 +0000
ROA not before: Tue 19 Jan 2021 02:30:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131677
IP address blocks: 103.147.130.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1548 (0x60c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Validity
Not Before: Jan 19 02:30:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8BE0CE5FB74A783561008FB452670E45D2F32B0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:23:6b:40:dc:38:32:d2:cc:a5:3e:ce:78:4c:
18:f0:49:50:37:b9:4e:8c:a1:db:60:02:02:67:1e:
3a:bc:8e:0c:f1:5a:80:28:44:c1:43:1a:f0:a9:2e:
ab:79:82:d4:d1:3b:96:72:c2:c4:f8:86:f3:7d:0f:
83:54:85:2b:b6:a0:2a:c5:3d:c3:e8:89:cc:c7:f3:
4e:c4:d2:25:10:08:ff:0f:df:d8:63:34:af:47:3f:
11:d0:05:93:1f:bc:95:6e:07:05:93:7a:93:a7:1b:
ac:08:23:d8:e7:c1:3d:a9:19:9b:a4:ba:eb:b8:1d:
18:60:4f:d6:98:ab:cd:3f:0a:86:90:68:75:aa:11:
74:66:6d:3d:95:d8:94:2d:f6:90:a7:a0:6a:98:88:
20:a3:f0:19:68:b6:9b:4e:af:af:fd:ed:ac:7e:c4:
06:d5:ac:bc:41:ce:c7:ca:48:c6:1f:1a:04:a7:1a:
07:95:00:75:dd:7f:90:59:32:77:00:5b:8b:0f:2f:
be:7c:df:e9:cc:6b:20:5d:e4:97:05:2d:df:14:7e:
40:fc:1a:12:72:39:c0:fa:c8:b5:de:c3:61:24:b2:
a4:95:66:42:2f:c6:20:33:af:68:69:34:ae:25:6d:
ec:8a:f2:ad:3d:44:61:a8:20:69:84:ef:c5:0d:c1:
c4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:E0:CE:5F:B7:4A:78:35:61:00:8F:B4:52:67:0E:45:D2:F3:2B:0F
X509v3 Authority Key Identifier:
keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/i-DOX7dKeDVhAI-0UmcORdLzKw8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.147.130.0/23
Signature Algorithm: sha256WithRSAEncryption
49:ea:df:71:a2:1a:12:b5:cd:cb:bb:3e:9c:f4:cf:b9:1c:b4:
26:e4:7d:de:47:b7:d9:10:61:f8:88:59:bc:e9:be:f9:e4:cc:
fe:66:0b:09:dc:68:cd:76:57:ed:40:59:30:c1:55:a1:6c:0a:
04:b8:e6:f5:ef:4f:1a:6f:8c:64:6e:5f:38:70:4e:08:b1:04:
fe:b6:95:3d:87:ef:6a:f7:f7:1b:aa:52:f2:c5:64:40:48:a5:
d6:f2:69:cd:ce:51:d7:11:88:f6:56:f8:88:39:37:66:70:71:
6d:53:8e:34:2d:f5:48:f8:a9:64:d3:18:b2:1e:0c:8e:dc:41:
16:96:9c:53:fa:d2:4e:9c:45:93:74:cb:d9:ed:01:bd:45:9f:
89:59:76:dc:53:61:f7:cf:b4:c7:0b:47:f2:a6:26:7c:1e:a2:
f6:04:38:ff:8e:de:ac:02:15:b2:f8:77:b8:c4:32:be:d2:5d:
26:2f:4f:b4:7b:8d:36:eb:ce:4b:c9:44:3c:02:3f:3f:1e:ee:
f3:87:f9:d7:97:64:68:c8:e3:1b:bd:f9:6a:0a:f3:7a:c7:25:
a2:4c:e2:5a:d5:95:28:45:07:c8:dd:5d:48:b4:3d:04:22:ba:
2e:1c:76:f4:83:2e:73:a5:b6:ad:90:c8:13:b5:90:1e:5d:4f:
e0:0f:b1:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org