Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PNI/dFKV_-74YIfQl1p6u5bgoDm3Xi0.roa
File: dFKV_-74YIfQl1p6u5bgoDm3Xi0.roa (raw, json)
Hash identifier: MFE5AAIs6ovwB8lMJoMjzDCjY3rQU8x1rs9ct7VjF9A=
Subject key identifier: 74:52:95:FF:EE:F8:60:87:D0:97:5A:7A:BB:96:E0:A0:39:B7:5E:2D
Certificate issuer: /CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Certificate serial: 0670
Authority key identifier: 31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/dFKV_-74YIfQl1p6u5bgoDm3Xi0.roa
Signing time: Thu 15 Sep 2022 02:49:34 +0000
ROA not before: Thu 15 Sep 2022 02:49:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 64271
IP address blocks: 103.148.72.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1648 (0x670)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Validity
Not Before: Sep 15 02:49:34 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=745295FFEEF86087D0975A7ABB96E0A039B75E2D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:20:41:d1:88:f4:aa:f8:18:3f:05:42:73:39:
5a:f9:f4:27:35:45:f3:ba:3d:a5:bd:42:07:6c:41:
81:53:e9:c9:2e:f8:c5:36:ba:8b:38:31:a7:ea:f3:
d0:42:37:e3:d3:31:3a:2f:73:8a:69:31:b5:3b:cf:
61:7b:62:4d:90:d0:ef:ca:af:c2:17:08:56:82:d7:
0a:0f:b4:93:34:72:13:04:ed:84:19:94:78:b1:c6:
5a:d8:18:0e:d3:f9:a7:16:c6:de:7b:c8:d6:69:62:
50:6e:8d:da:af:45:c7:9b:a6:4b:f9:27:65:6e:f3:
77:9b:14:cc:6d:08:25:1f:1b:7d:cd:54:25:d6:2f:
83:48:0e:d1:11:76:d8:42:6e:d4:fd:cb:7e:84:22:
41:b4:71:09:1a:e7:aa:30:b7:10:a1:ef:b7:65:6f:
07:06:ab:7b:a4:c2:3d:24:94:1d:a3:62:e6:41:17:
63:10:75:f9:11:6a:8e:04:3f:16:3e:99:6a:2b:b8:
cc:65:6e:0f:94:50:ae:55:f3:53:e7:98:44:a0:47:
73:f7:66:c9:d8:c7:ae:1c:f0:8b:a2:99:96:5f:69:
45:f2:91:6a:0a:da:f5:1d:9e:ee:2d:95:f7:07:72:
97:aa:30:a5:31:b4:3b:b8:b3:85:90:a5:fa:1c:cd:
fe:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:52:95:FF:EE:F8:60:87:D0:97:5A:7A:BB:96:E0:A0:39:B7:5E:2D
X509v3 Authority Key Identifier:
keyid:31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/dFKV_-74YIfQl1p6u5bgoDm3Xi0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.148.72.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:ab:12:f6:bf:91:e8:b5:31:27:08:42:95:a8:7d:ad:fe:e6:
4c:8a:bb:a3:50:27:21:94:26:6a:27:57:bd:25:aa:80:6c:70:
f4:f6:d0:53:52:3a:43:85:8b:84:95:27:b4:14:44:2f:dd:bb:
09:c5:77:4a:f2:a7:1f:54:40:ad:fd:72:8e:66:7e:8d:f5:3f:
e3:78:70:65:e0:1b:21:47:fc:33:47:6c:72:b4:cf:da:be:c8:
8e:a5:ad:0a:14:27:ca:6c:af:10:be:ab:5f:14:44:ae:e7:57:
42:17:06:cd:25:8d:65:4b:08:4e:2c:9c:bf:90:0e:e2:5d:9e:
84:0b:37:11:80:b6:ab:93:34:1f:cf:3c:73:f2:6e:f8:67:8f:
11:6a:0e:6c:87:37:53:a6:c0:a3:41:65:b7:b2:4b:3c:fe:d3:
d3:84:57:0f:0a:f6:3a:d7:8a:74:3b:d5:d4:37:5d:fc:df:e7:
80:fd:97:83:db:ec:f4:25:73:56:53:1d:28:a9:54:ae:bd:c9:
86:48:9b:de:21:18:f1:0f:91:27:ef:cb:d1:62:92:1a:40:1a:
15:3b:1e:a9:f2:b5:7d:e8:6f:cb:0c:5e:70:59:64:6b:d4:5c:
cd:b1:7c:b1:85:b5:10:5b:2b:98:d0:4a:af:e6:be:f7:32:17:
04:37:06:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org