Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ROUNDROAD/_KVbU4sAQMp9TWmK22mkxA4eMKk.roa
File: _KVbU4sAQMp9TWmK22mkxA4eMKk.roa (raw, json)
Hash identifier: kn1iD6iLfscFm+GVvbliSIRa7bkLYkvaIkUD7Yrq4Gw=
Subject key identifier: FC:A5:5B:53:8B:00:40:CA:7D:4D:69:8A:DB:69:A4:C4:0E:1E:30:A9
Certificate issuer: /CN=10F0AFEDD16DF216580B4F8ED75AFCA328694F19
Certificate serial: 0942
Authority key identifier: 10:F0:AF:ED:D1:6D:F2:16:58:0B:4F:8E:D7:5A:FC:A3:28:69:4F:19
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EPCv7dFt8hZYC0-O11r8oyhpTxk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ROUNDROAD/_KVbU4sAQMp9TWmK22mkxA4eMKk.roa
Signing time: Wed 29 Sep 2021 02:37:34 +0000
ROA not before: Wed 29 Sep 2021 02:37:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131149
IP address blocks: 103.123.192.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2370 (0x942)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10F0AFEDD16DF216580B4F8ED75AFCA328694F19
Validity
Not Before: Sep 29 02:37:34 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FCA55B538B0040CA7D4D698ADB69A4C40E1E30A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c9:12:a8:f6:27:47:e5:37:7e:f2:dc:4c:35:
ad:aa:62:37:17:cb:1a:9f:e7:80:94:df:2c:45:4e:
1b:bc:e2:03:21:f5:86:0f:98:f4:13:fe:77:50:0a:
a2:16:22:cc:22:e0:e9:99:87:a7:06:a3:c7:78:0d:
c1:c2:19:d8:66:24:82:6d:9f:dc:95:87:2e:a3:b3:
4b:67:bf:7c:5a:1c:9a:be:c8:92:de:d2:b1:99:55:
1a:2f:3f:e7:e0:58:65:c8:70:40:d9:d3:6a:aa:56:
46:ea:bd:24:63:35:40:2d:71:d3:9f:03:5e:5a:cc:
43:9c:79:e9:8f:ac:6c:e8:a1:86:51:42:e8:a1:07:
f9:af:6e:6a:14:49:84:0a:11:91:56:63:fd:39:4c:
21:3a:14:57:89:df:1a:09:50:46:43:a0:6a:66:ec:
0d:75:42:10:0f:86:a0:fd:29:1e:1b:40:a9:2d:ad:
c6:dd:88:d6:bb:b0:ad:f7:48:46:70:dc:0c:60:a2:
85:97:9f:13:25:57:85:cb:44:4b:f0:13:06:5c:8a:
0f:f4:f6:bc:9d:fa:f1:71:f9:b3:ef:c0:64:03:79:
93:1a:93:5b:d8:e6:01:36:c1:9b:f1:c3:fa:e3:50:
0b:fc:bb:53:8c:54:05:c9:ad:78:a5:1b:3a:f6:29:
f7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:A5:5B:53:8B:00:40:CA:7D:4D:69:8A:DB:69:A4:C4:0E:1E:30:A9
X509v3 Authority Key Identifier:
keyid:10:F0:AF:ED:D1:6D:F2:16:58:0B:4F:8E:D7:5A:FC:A3:28:69:4F:19
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ROUNDROAD/EPCv7dFt8hZYC0-O11r8oyhpTxk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EPCv7dFt8hZYC0-O11r8oyhpTxk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ROUNDROAD/_KVbU4sAQMp9TWmK22mkxA4eMKk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.192.0/22
Signature Algorithm: sha256WithRSAEncryption
b6:6c:e8:b2:0e:67:cf:b2:92:8b:38:f9:37:c8:75:e3:c2:ad:
8f:3f:84:d0:b2:92:ab:40:74:57:55:a3:04:67:40:44:fb:57:
05:76:d0:3a:6b:78:2b:5f:db:48:f7:82:ef:ef:a9:71:9d:30:
ea:91:a5:23:94:21:2e:66:d7:8e:91:c7:10:58:d0:41:2b:83:
f0:71:fc:61:d6:7b:6a:93:95:a2:d0:ff:24:74:90:47:01:0e:
ba:21:95:2e:85:37:97:fc:99:61:ed:00:8f:b2:da:59:64:be:
e0:66:b4:79:e1:fa:dc:ce:2a:ed:f8:7e:ff:b5:01:b7:76:9e:
8e:f8:d5:c7:09:a0:57:c8:29:8e:07:d7:86:40:3e:02:0f:30:
0d:41:ba:a3:5b:70:a9:03:e6:38:a2:ac:33:a6:2e:c7:d5:8c:
5c:e0:a8:d9:6b:ff:16:ee:a5:8e:7e:49:77:96:d1:33:99:49:
8a:b6:75:1c:af:9e:2b:d0:e9:b2:50:49:76:5b:fb:44:89:a0:
76:2a:05:a3:76:1f:35:72:19:8b:bb:1c:ec:b8:1b:df:0c:06:
66:7a:43:8a:ac:6e:fd:ac:fb:d1:b8:dc:09:81:aa:1b:50:2a:
00:0a:9a:65:e1:2e:68:94:14:80:5b:7d:97:aa:be:9e:07:37:
72:bd:c0:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org