Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/s7Ftpo-PEnlCIiAeVxiJDyELH20.roa
File: s7Ftpo-PEnlCIiAeVxiJDyELH20.roa (raw, json)
Hash identifier: b7JCeTq7eiHEdYdvKtKjTcp65eSzIxAxQDWA7H2HguM=
Subject key identifier: B3:B1:6D:A6:8F:8F:12:79:42:22:20:1E:57:18:89:0F:21:0B:1F:6D
Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Certificate serial: 06C7
Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/s7Ftpo-PEnlCIiAeVxiJDyELH20.roa
Signing time: Wed 29 Sep 2021 02:36:36 +0000
ROA not before: Wed 29 Sep 2021 02:36:36 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131677
IP address blocks: 103.147.130.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1735 (0x6c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96
Validity
Not Before: Sep 29 02:36:36 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B3B16DA68F8F12794222201E5718890F210B1F6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9e:48:28:23:ab:84:17:16:c2:c3:4a:41:c6:
ae:a6:cc:42:c3:77:9e:37:c6:3e:c9:62:b6:af:fc:
f6:e8:ef:ec:b4:0a:29:b8:dc:b0:62:7e:7a:fe:0c:
fb:cc:34:ee:e1:6d:35:b1:26:62:1a:e9:04:45:e8:
3a:ba:80:ea:dd:48:66:2d:0c:cb:da:cf:2f:8b:d6:
1f:a1:ad:3d:e9:72:ea:29:3c:5e:fd:b4:89:7d:17:
70:4e:6d:0b:df:35:eb:32:ff:bc:b4:ce:2a:f3:65:
29:70:b6:8f:f8:1d:ba:16:ee:9b:60:15:f5:ea:8a:
8d:37:44:a8:84:2b:66:7d:bd:18:81:c7:82:35:e1:
42:34:5e:1f:d8:8e:80:75:38:d1:bd:a3:a3:56:98:
9b:95:32:03:99:2b:2a:26:44:27:b9:49:39:89:b8:
5f:e6:b3:e3:39:60:ad:a5:84:b0:96:2e:61:4c:7f:
c0:5d:ba:c3:2f:64:5b:ef:04:c1:a9:5e:b6:ec:8b:
b1:a9:c5:3b:6d:a8:ca:66:7b:3f:66:fa:13:e6:32:
ad:61:bc:71:44:98:9d:64:b9:09:a5:c0:0f:b2:8a:
aa:d2:b3:2f:4a:08:75:82:55:29:95:d6:ce:28:4f:
9b:fd:9f:3f:c9:4b:fd:a9:fc:f4:60:0c:be:9a:5c:
29:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:B1:6D:A6:8F:8F:12:79:42:22:20:1E:57:18:89:0F:21:0B:1F:6D
X509v3 Authority Key Identifier:
keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/s7Ftpo-PEnlCIiAeVxiJDyELH20.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.147.130.0/23
Signature Algorithm: sha256WithRSAEncryption
af:64:e5:cb:86:75:97:dc:e6:3e:8c:74:94:49:67:27:c9:59:
0c:29:af:1b:3f:48:fa:f0:be:16:bd:66:50:91:e7:01:d6:d0:
5d:dc:55:00:df:32:bc:4f:32:c0:9b:29:ab:1b:6e:c8:7c:2b:
4a:c9:9c:74:3d:46:c4:19:76:cd:6f:10:35:82:43:5b:7f:ed:
6b:76:b4:35:ed:b8:1b:89:08:6f:05:0f:b2:b0:3c:e8:04:c1:
b6:f5:4d:b7:45:ed:40:c5:6d:6b:f2:f7:bc:55:fa:b9:c6:99:
60:f4:6f:3e:ea:9e:b0:91:c8:b8:5d:19:51:c1:45:e5:46:68:
07:f8:1d:c1:02:78:50:3a:6c:3a:14:e1:0e:df:68:75:d3:c0:
2b:28:88:13:f8:a5:3f:b1:38:73:9a:2e:8d:82:2b:51:d9:5e:
0a:78:68:6e:d9:02:3a:76:4e:18:7f:70:64:a6:b7:06:57:25:
f6:bc:38:fe:d5:41:20:6c:91:ca:ed:63:5b:99:d7:6e:38:5d:
d7:65:78:e1:8f:43:19:cc:74:0e:ec:12:09:9a:12:bf:5d:4b:
67:8c:a6:14:74:26:94:2b:55:be:f2:c0:12:d3:bb:d4:c4:21:
e8:f7:70:eb:a4:b8:11:3c:19:b0:a7:ce:f4:29:1c:9f:83:ec:
6a:fa:e8:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org