Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SBNET/rnnlmj7OwOYgyygFaxFJnztChkM.roa
File: rnnlmj7OwOYgyygFaxFJnztChkM.roa (raw, json)
Hash identifier: zS1oREISm4MVhKDjrSxelmZPq/BA2zrncO8KPsu7hHk=
Subject key identifier: AE:79:E5:9A:3E:CE:C0:E6:20:CB:28:05:6B:11:49:9F:3B:42:86:43
Certificate issuer: /CN=601AF0E931CFF7483DFB6E8A33315D79F32BC248
Certificate serial: 0E40
Authority key identifier: 60:1A:F0:E9:31:CF:F7:48:3D:FB:6E:8A:33:31:5D:79:F3:2B:C2:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YBrw6THP90g9-26KMzFdefMrwkg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SBNET/rnnlmj7OwOYgyygFaxFJnztChkM.roa
Signing time: Tue 29 Sep 2020 10:05:55 +0000
ROA not before: Tue 29 Sep 2020 10:05:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18046
IP address blocks: 103.130.20.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3648 (0xe40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=601AF0E931CFF7483DFB6E8A33315D79F32BC248
Validity
Not Before: Sep 29 10:05:55 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AE79E59A3ECEC0E620CB28056B11499F3B428643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ed:d6:f6:94:2c:4f:c8:5b:e2:2f:2b:54:27:
8f:21:9b:cb:f6:1c:0d:20:e6:36:e7:1f:f4:a5:d2:
04:8a:c6:ca:1a:c7:c3:3d:6e:06:58:35:86:69:4b:
06:6d:52:7b:13:23:08:36:4a:aa:9b:bc:81:39:61:
2b:2c:dc:c5:eb:9f:ab:1d:6f:a1:f8:d4:79:74:46:
6b:0b:31:93:3d:39:e6:0f:4b:d7:e0:87:ae:ee:a1:
78:cf:8f:ee:12:1d:f6:4c:05:f7:c6:6e:e3:0c:c3:
79:b4:64:80:0f:78:b2:c5:f1:14:5b:a3:5d:10:fa:
3a:59:4c:8e:16:ac:93:ba:32:e0:6e:3b:7f:42:83:
3d:be:48:60:b4:4a:74:a9:0d:44:12:e2:3a:eb:d3:
38:c5:5f:c2:01:8a:e7:7b:3c:e6:5b:40:42:18:e4:
30:39:cf:7a:6c:29:13:d9:85:94:5f:87:de:82:f5:
e3:e2:cb:50:13:81:db:23:6d:64:18:2f:98:db:1a:
fe:69:05:67:19:01:18:41:b6:1c:5d:3e:00:02:20:
21:2d:72:1e:6b:13:63:68:8a:35:d9:98:d3:36:30:
b4:af:3d:17:64:11:a8:4a:db:34:08:f0:94:29:44:
39:98:6c:e3:a2:69:f7:34:ea:ca:7b:30:c5:dd:da:
df:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:79:E5:9A:3E:CE:C0:E6:20:CB:28:05:6B:11:49:9F:3B:42:86:43
X509v3 Authority Key Identifier:
keyid:60:1A:F0:E9:31:CF:F7:48:3D:FB:6E:8A:33:31:5D:79:F3:2B:C2:48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SBNET/YBrw6THP90g9-26KMzFdefMrwkg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YBrw6THP90g9-26KMzFdefMrwkg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SBNET/rnnlmj7OwOYgyygFaxFJnztChkM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.20.0/22
Signature Algorithm: sha256WithRSAEncryption
52:73:cb:cd:c6:d3:a2:98:7b:68:09:15:99:71:ae:4e:d0:60:
38:d6:5e:d6:73:83:50:f3:58:22:5c:90:fb:40:1e:86:a4:d2:
f1:4e:9a:63:80:bf:f5:bb:fc:1c:2d:48:f6:27:81:9c:49:a9:
af:2d:c3:0c:46:98:af:ee:81:a2:8f:11:49:0c:70:74:77:13:
d8:f8:dc:11:d9:a3:16:87:b6:02:d7:27:9c:e4:6f:16:c5:96:
d2:01:46:7a:e7:b3:b6:98:9e:81:f5:9f:c0:84:37:f5:1f:66:
83:ac:92:07:52:2f:14:e1:9a:97:34:40:55:4b:10:95:20:1a:
26:e7:30:d1:0c:93:07:23:88:ca:4a:49:ea:00:77:8f:e8:88:
83:db:90:00:8b:cf:36:1c:cb:ca:62:06:8b:63:1b:09:e2:7c:
f5:1b:08:97:cf:f1:ac:4c:fc:c3:e1:26:7d:b0:fc:c9:96:74:
3b:c9:8e:08:86:e2:48:05:7c:3c:8d:a9:eb:5e:a3:0e:77:15:
8d:14:0c:25:46:27:d2:46:ca:25:3b:a0:98:d1:b1:1c:13:d8:
50:f7:c0:87:7a:37:e0:ca:1a:6d:71:89:0f:c1:09:65:80:e6:
d1:a6:3a:9e:2a:75:e2:57:a5:d3:10:b1:03:29:82:1d:ce:51:
1f:5d:39:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org