Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PARADISE/CZlGCfUI6ziLQG2U08BcThUnlN8.roa
File: CZlGCfUI6ziLQG2U08BcThUnlN8.roa (raw, json)
Hash identifier: LBVUBJ44gO4xhZe04oGs8FH5ay//7hKQjEhjttjW+Kk=
Subject key identifier: 09:99:46:09:F5:08:EB:38:8B:40:6D:94:D3:C0:5C:4E:15:27:94:DF
Certificate issuer: /CN=E27749EAA557BCA5645A275E3DE0A3AF5347F7C3
Certificate serial: 94
Authority key identifier: E2:77:49:EA:A5:57:BC:A5:64:5A:27:5E:3D:E0:A3:AF:53:47:F7:C3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4ndJ6qVXvKVkWidePeCjr1NH98M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARADISE/CZlGCfUI6ziLQG2U08BcThUnlN8.roa
Signing time: Tue 07 Jun 2022 03:59:19 +0000
ROA not before: Tue 07 Jun 2022 03:59:19 +0000
ROA not after: Thu 03 Nov 2022 05:41:53 +0000
asID: 20473
IP address blocks: 103.175.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148 (0x94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E27749EAA557BCA5645A275E3DE0A3AF5347F7C3
Validity
Not Before: Jun 7 03:59:19 2022 GMT
Not After : Nov 3 05:41:53 2022 GMT
Subject: CN=09994609F508EB388B406D94D3C05C4E152794DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:fb:6c:79:ad:04:c6:47:04:be:1a:ae:ec:8f:
41:4d:f3:ba:31:86:fa:c9:af:30:1d:af:c8:51:d1:
c4:47:06:17:3d:89:70:6c:f0:60:c6:48:72:c1:4c:
58:4d:38:18:8f:26:b3:4c:94:a9:e3:87:31:c0:b9:
a2:0d:41:da:62:fa:18:1a:da:e1:4f:d6:d8:d9:0f:
65:e7:7e:15:2a:18:f4:9a:92:97:59:dc:80:28:9f:
d7:4b:6e:94:7c:a5:e9:c8:81:50:c6:8d:77:6f:e1:
08:f9:58:0d:42:94:b3:b8:82:6c:9d:08:2b:26:d1:
30:c9:70:4c:6b:32:07:85:26:84:5b:47:0a:59:0b:
82:59:a2:2c:c5:ee:0e:ba:cb:74:1e:f5:0a:72:96:
b8:2d:ae:d8:f0:da:05:fb:22:d8:56:2e:af:7f:cc:
e7:23:c5:bc:ab:60:26:d5:0d:71:1f:df:26:5b:8e:
26:73:cd:b9:c8:9a:5e:38:19:ae:84:b7:65:12:f6:
05:3b:6e:4e:d1:b0:9d:44:59:b6:52:8d:8d:29:b9:
73:dc:9b:c0:c8:9d:ff:6a:2d:75:7d:81:6f:41:48:
5c:1b:99:06:76:64:6b:ea:cb:46:d3:91:79:bc:67:
e8:52:98:ec:db:77:82:3a:a9:37:fd:c3:f1:56:c8:
19:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:99:46:09:F5:08:EB:38:8B:40:6D:94:D3:C0:5C:4E:15:27:94:DF
X509v3 Authority Key Identifier:
keyid:E2:77:49:EA:A5:57:BC:A5:64:5A:27:5E:3D:E0:A3:AF:53:47:F7:C3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARADISE/4ndJ6qVXvKVkWidePeCjr1NH98M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4ndJ6qVXvKVkWidePeCjr1NH98M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARADISE/CZlGCfUI6ziLQG2U08BcThUnlN8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.175.152.0/24
Signature Algorithm: sha256WithRSAEncryption
31:3c:54:f2:b1:2f:75:15:69:c7:6a:7d:40:20:0e:82:63:8d:
d4:bb:43:78:ad:e5:a0:83:ab:1e:a8:c5:95:1c:77:05:12:5f:
2d:50:ac:78:fb:56:59:ea:58:98:61:0e:1e:1b:34:b9:86:cb:
4b:3e:08:0b:5d:f5:6d:51:3d:8a:73:12:7d:db:bb:ee:c3:fa:
7c:c8:de:05:e3:f2:12:53:40:9e:b3:9c:87:29:15:95:76:0d:
f6:26:97:cb:d1:c3:aa:b9:eb:1a:e5:37:f1:8e:19:00:8e:ad:
f8:27:87:ae:c2:9c:80:32:eb:53:3e:71:81:23:a7:70:92:2e:
7f:32:4c:1c:fd:81:55:35:09:17:03:3d:46:c9:64:09:60:4d:
74:fc:92:3f:d0:2b:33:9b:50:85:de:4c:06:96:97:a0:81:81:
6a:a1:f4:c1:50:26:b6:d2:35:e3:d5:9b:7b:bb:5a:44:0f:b1:
2b:26:bd:06:85:d5:ac:ad:66:5c:e6:08:ab:74:10:46:a1:d3:
b3:bf:89:dc:d5:ef:81:85:04:e7:e5:57:82:ed:e9:9c:32:d1:
72:cd:f6:8a:c9:7e:8b:1e:12:c0:ba:ba:59:d4:6f:78:79:da:
07:a8:7d:6d:0d:06:6c:a0:ae:ae:da:95:24:cb:13:d1:a1:e6:
ba:dc:5a:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:02 2023 by rpki-client on console-ams.rpki-client.org