Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDTV/xwsNCtBGb-J6A-31fKLU9kxJ5r4.roa
File: xwsNCtBGb-J6A-31fKLU9kxJ5r4.roa (raw, json)
Hash identifier: zABYxorG+yuNc3UsUcvsYmdTN+LChOU31C5Jp4QAM8o=
Subject key identifier: C7:0B:0D:0A:D0:46:6F:E2:7A:03:ED:F5:7C:A2:D4:F6:4C:49:E6:BE
Certificate issuer: /CN=7F5D8D54ECB7CEEB46FD8DF5467C41C002443526
Certificate serial: 076A
Authority key identifier: 7F:5D:8D:54:EC:B7:CE:EB:46:FD:8D:F5:46:7C:41:C0:02:44:35:26
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/f12NVOy3zutG_Y31RnxBwAJENSY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/xwsNCtBGb-J6A-31fKLU9kxJ5r4.roa
Signing time: Tue 29 Sep 2020 10:05:57 +0000
ROA not before: Tue 29 Sep 2020 10:05:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131611
IP address blocks: 103.100.164.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1898 (0x76a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7F5D8D54ECB7CEEB46FD8DF5467C41C002443526
Validity
Not Before: Sep 29 10:05:57 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C70B0D0AD0466FE27A03EDF57CA2D4F64C49E6BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:47:84:09:cf:8c:fb:cd:eb:76:ee:12:95:b8:
df:c5:c0:a6:ed:f1:50:41:5c:9e:4c:14:a0:f1:f5:
83:ab:91:63:23:85:d5:72:f3:ea:15:45:55:c1:82:
b2:66:5b:ba:d0:63:ef:b2:f4:07:11:f2:f0:e3:96:
83:d6:98:89:db:b1:2f:e0:77:92:f6:ef:26:19:2f:
3b:fc:cd:fd:8a:1d:84:c1:a2:d9:2e:07:8e:0f:33:
63:3a:ce:43:55:ce:16:60:8c:3e:61:2c:aa:78:f1:
43:2b:a3:fd:96:76:30:5c:c4:51:e1:41:48:73:07:
b6:06:df:43:6c:4a:64:29:5c:39:a2:a9:9e:3e:c6:
28:41:c6:65:c4:27:58:92:df:59:53:63:18:b0:be:
db:48:9d:a5:ef:48:3d:c1:3d:64:72:d8:ba:2c:df:
70:81:99:70:ed:23:35:ff:23:ec:cb:30:1e:21:a3:
19:ef:64:61:da:1d:10:ce:c0:ed:c4:0f:08:4f:ae:
fb:71:78:44:57:02:5f:0d:f4:0b:27:4f:8d:28:f2:
aa:92:72:be:96:fd:20:25:68:ab:42:f6:7a:f5:df:
31:ba:2f:1b:5d:be:02:6b:f2:db:73:ec:c2:13:bd:
e1:ae:89:75:35:2c:24:90:d7:bc:d7:91:b6:50:37:
84:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:0B:0D:0A:D0:46:6F:E2:7A:03:ED:F5:7C:A2:D4:F6:4C:49:E6:BE
X509v3 Authority Key Identifier:
keyid:7F:5D:8D:54:EC:B7:CE:EB:46:FD:8D:F5:46:7C:41:C0:02:44:35:26
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/f12NVOy3zutG_Y31RnxBwAJENSY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/f12NVOy3zutG_Y31RnxBwAJENSY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDTV/xwsNCtBGb-J6A-31fKLU9kxJ5r4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.164.0/22
Signature Algorithm: sha256WithRSAEncryption
be:18:03:ac:46:24:da:2f:34:01:69:23:0b:dd:6d:5c:61:0b:
c2:e1:61:39:ff:15:35:cc:f5:fc:c5:c2:58:36:88:10:98:a3:
f4:5f:17:e2:c3:e9:dc:89:ad:b8:00:61:9c:da:2f:01:f3:4e:
66:eb:fa:3c:21:61:40:18:e1:f9:5c:cf:81:08:f1:d5:06:d3:
a7:52:ea:84:a6:f5:82:25:36:c9:38:9c:e6:d0:b8:a8:b6:e4:
79:50:51:71:b3:dd:4e:19:95:ac:9d:2e:89:71:4b:a1:fd:b6:
12:86:de:55:3f:cb:72:8f:b3:cd:01:5a:b1:93:95:89:da:f8:
cd:39:e0:ec:88:8e:2a:27:14:30:64:52:f8:a2:f3:b4:53:7c:
1e:57:e3:03:30:24:99:ea:6d:77:80:5d:e2:9f:c0:57:a9:77:
ae:a2:07:0c:bd:fa:b8:ac:47:88:65:98:f1:bd:0d:0d:e2:e4:
3b:4a:a1:5f:9a:17:03:5d:91:ae:18:d1:c9:65:48:d3:eb:fd:
36:c8:57:90:97:50:66:9f:3a:91:ea:22:58:e6:54:16:e9:4b:
bf:92:42:75:9b:85:57:40:be:2a:43:96:f4:b7:5b:04:f9:88:
b8:7c:23:64:5f:d3:a1:37:73:79:3f:09:ea:af:9b:13:00:64:
f5:6d:55:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org