Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEICITY260/XDUxRIY8PXky4kyQiMFnLcFDV-o.roa
File: XDUxRIY8PXky4kyQiMFnLcFDV-o.roa (raw, json)
Hash identifier: rsHNh7ybago0XVO0YFoWjFA4jTHu3t4qHiDxT2aOg80=
Subject key identifier: 5C:35:31:44:86:3C:3D:79:32:E2:4C:90:88:C1:67:2D:C1:43:57:EA
Certificate issuer: /CN=8477B4B9FE729925D912C66D00B681DDA10A2A01
Certificate serial: 08B5
Authority key identifier: 84:77:B4:B9:FE:72:99:25:D9:12:C6:6D:00:B6:81:DD:A1:0A:2A:01
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/hHe0uf5ymSXZEsZtALaB3aEKKgE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICITY260/XDUxRIY8PXky4kyQiMFnLcFDV-o.roa
Signing time: Sun 07 Feb 2021 11:52:55 +0000
ROA not before: Sun 07 Feb 2021 11:52:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131627
IP address blocks: 103.117.224.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2229 (0x8b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8477B4B9FE729925D912C66D00B681DDA10A2A01
Validity
Not Before: Feb 7 11:52:55 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5C353144863C3D7932E24C9088C1672DC14357EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f2:65:47:e0:63:93:02:ef:19:d6:83:62:f1:
0a:49:62:93:1a:66:f5:de:f6:42:31:e2:b4:17:b5:
4f:7f:a1:f4:20:6f:e1:14:45:b4:07:31:b7:b4:e3:
cf:90:3d:50:b1:7e:96:74:65:db:57:e4:fa:e4:18:
89:8c:77:8e:1e:9d:25:c5:b1:fd:1f:05:e3:36:6f:
f8:22:13:bd:22:f1:d6:af:43:36:22:a8:bb:74:42:
a7:a7:59:64:a8:41:4f:94:e2:fa:af:db:19:4c:8d:
2b:4f:58:bd:cc:54:4a:b2:b4:cb:75:a4:9c:0b:3b:
0b:9c:d1:79:80:04:dd:dd:a5:33:36:02:65:69:c5:
f0:97:ee:8f:f5:64:b8:28:4f:88:fb:32:fe:02:a0:
c5:65:64:c6:7a:04:2a:f4:bb:f0:c5:34:5d:ec:d2:
a7:62:0f:91:59:e5:c1:e0:e5:fd:b3:94:17:99:1d:
00:b1:e9:7e:82:41:2b:dd:da:9d:18:20:10:4b:70:
02:04:dd:d8:55:02:b4:63:d5:dd:dc:f8:77:d8:cd:
a1:38:49:cd:9f:22:11:e6:75:2b:24:60:7f:c5:e4:
1c:dd:c4:98:88:02:9c:fa:a8:8d:97:f4:ce:00:af:
06:9a:98:57:fc:93:c3:0f:3a:af:50:4f:6d:e4:17:
a8:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:35:31:44:86:3C:3D:79:32:E2:4C:90:88:C1:67:2D:C1:43:57:EA
X509v3 Authority Key Identifier:
keyid:84:77:B4:B9:FE:72:99:25:D9:12:C6:6D:00:B6:81:DD:A1:0A:2A:01
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICITY260/hHe0uf5ymSXZEsZtALaB3aEKKgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/hHe0uf5ymSXZEsZtALaB3aEKKgE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICITY260/XDUxRIY8PXky4kyQiMFnLcFDV-o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.117.224.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:0e:c5:7d:a9:5f:7f:78:97:85:44:dc:60:b5:3e:d8:fa:bc:
65:ff:8b:e2:83:95:4b:40:e3:75:7f:92:24:03:3b:04:88:10:
5d:7f:a4:0a:1a:05:cc:43:37:f9:1f:fa:b4:99:16:33:cc:dd:
2d:39:dc:43:14:e0:19:9c:fb:8f:6c:91:2d:ca:c5:54:01:50:
6e:af:14:12:6a:83:26:51:3b:ee:bd:2a:f7:25:e1:ed:72:50:
81:1e:8d:1c:b4:f0:a8:04:db:e2:32:4b:fd:f7:91:75:96:a0:
dd:06:b6:40:1f:23:d7:c8:91:a8:9b:dd:9a:11:08:eb:47:58:
ef:0c:e7:60:f4:43:0c:3d:2a:60:c6:04:8e:0a:21:5b:2b:eb:
a3:58:43:ba:bd:19:95:0c:75:5c:ad:60:12:47:0e:98:b2:44:
08:a0:0a:44:fe:60:8b:6b:a4:fa:4e:ae:a2:68:e7:a8:5c:4d:
3e:c3:74:e2:63:a3:cf:60:16:80:4c:84:fa:43:83:13:96:d1:
d7:1c:82:a3:29:84:44:4c:a4:71:a7:82:be:e3:23:93:3d:cc:
f5:25:52:b1:94:bb:7a:b5:32:4a:4e:2b:54:1b:f3:d7:ce:35:
5f:78:f6:86:3a:7f:49:d3:07:43:ad:d4:c7:89:c3:2d:53:d0:
01:55:23:c8
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:02 2023 by rpki-client on console-ams.rpki-client.org