Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PNI/fpjKaqoKSPOswGUHEQWbK2tggJM.roa
File: fpjKaqoKSPOswGUHEQWbK2tggJM.roa (raw, json)
Hash identifier: Gg4ECL9X6z7ctszS63jVizswgt89ANZC/xCJJoPNOTE=
Subject key identifier: 7E:98:CA:6A:AA:0A:48:F3:AC:C0:65:07:11:05:9B:2B:6B:60:80:93
Certificate issuer: /CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Certificate serial: 03FF
Authority key identifier: 31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/fpjKaqoKSPOswGUHEQWbK2tggJM.roa
Signing time: Tue 20 Oct 2020 04:10:54 +0000
ROA not before: Tue 20 Oct 2020 04:10:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131642
IP address blocks: 103.148.72.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1023 (0x3ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Validity
Not Before: Oct 20 04:10:54 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7E98CA6AAA0A48F3ACC0650711059B2B6B608093
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6f:5d:d0:02:0d:7e:1d:b5:ad:ce:21:9d:a6:
9e:f4:d2:ed:c0:e0:55:70:09:97:21:55:58:67:1b:
34:59:13:36:01:b5:62:53:90:3c:9a:77:e4:f3:58:
f8:ad:77:bd:16:fd:c4:f9:8e:4e:c6:80:0c:6d:fd:
4e:f2:8d:36:bb:4a:4e:1c:13:54:8a:fb:2d:1f:f7:
a0:d3:71:a0:34:96:7f:37:d5:4b:af:33:bd:77:7a:
55:1d:25:2a:48:49:99:27:42:96:e9:4f:e4:58:4e:
7d:b6:78:c7:7d:63:22:93:54:ab:1b:88:02:69:67:
90:5f:f5:52:ad:3e:1b:fd:13:6b:5e:45:72:af:98:
2b:95:44:8a:dc:95:10:47:7e:bf:b2:af:f5:da:f2:
40:5f:dd:09:e4:af:b2:be:d0:53:80:aa:13:6c:d7:
d5:28:9c:ee:a9:36:d5:e4:1f:16:dd:0a:d4:f2:6f:
b5:e2:43:e5:06:2f:ed:5a:23:5d:e7:8b:66:a1:f2:
1b:a5:64:7e:af:ce:78:cf:bc:5a:82:46:a5:1b:48:
8f:8a:3e:4d:e6:44:5d:63:03:bb:ed:53:20:8a:43:
c5:0c:e9:8a:c3:37:2e:ef:22:bc:70:10:cb:b4:fd:
ae:45:64:8e:e4:5b:f7:40:5f:71:36:56:70:06:b2:
90:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:98:CA:6A:AA:0A:48:F3:AC:C0:65:07:11:05:9B:2B:6B:60:80:93
X509v3 Authority Key Identifier:
keyid:31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/fpjKaqoKSPOswGUHEQWbK2tggJM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.148.72.0/23
Signature Algorithm: sha256WithRSAEncryption
71:fd:e8:5d:d7:cf:42:93:e0:32:37:95:c6:dd:71:70:bb:54:
2c:83:3e:54:4b:e2:69:e6:86:c0:31:ee:ad:e2:56:8d:f2:1a:
41:7c:a8:c9:95:bf:38:56:70:ac:dd:68:52:96:39:81:27:70:
74:0d:a0:6a:14:28:0d:b9:da:a1:88:1f:17:f7:20:71:e5:67:
1d:08:b6:98:52:8f:a7:6c:59:b6:fc:ee:5a:49:72:d7:9d:60:
2d:22:e8:f7:6d:f4:b4:8b:44:c2:0c:bc:81:20:31:c7:28:da:
18:29:01:f2:ab:73:02:73:f0:7e:bb:20:55:35:94:f5:eb:ab:
30:1e:c0:64:bc:cb:fe:6f:45:54:fc:0c:38:d5:5c:59:52:ba:
0f:14:dd:f9:d3:f9:f4:3c:8f:38:0e:1a:05:2f:3d:e4:c3:26:
2e:b3:ef:69:62:cd:dc:00:dd:d3:c2:a5:5a:9b:76:a1:b5:5e:
f2:d0:a0:dd:9e:a8:dd:42:94:3f:a2:99:66:06:08:6a:f6:0b:
55:99:84:81:fa:d2:29:ea:46:e0:43:40:9f:bf:f5:80:93:c3:
45:43:75:22:18:13:04:41:08:31:f9:1d:ef:11:7a:da:66:10:
e6:2d:5a:b0:1e:dc:ed:aa:17:a7:e0:81:16:f1:9a:c1:9c:46:
7b:c1:f1:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org