Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SERVCOMP/aonqYZT17BBAp7dpAj3M1TyQ0pI.roa
File: aonqYZT17BBAp7dpAj3M1TyQ0pI.roa (raw, json)
Hash identifier: c1u17S/nRl40wyYfbFUj2iGhRppEOeB78J+le/FMnIw=
Subject key identifier: 6A:89:EA:61:94:F5:EC:10:40:A7:B7:69:02:3D:CC:D5:3C:90:D2:92
Certificate issuer: /CN=0CE68958C4074750F9B01967C18F50F9CB112212
Certificate serial: 09F3
Authority key identifier: 0C:E6:89:58:C4:07:47:50:F9:B0:19:67:C1:8F:50:F9:CB:11:22:12
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DOaJWMQHR1D5sBlnwY9Q-csRIhI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SERVCOMP/aonqYZT17BBAp7dpAj3M1TyQ0pI.roa
Signing time: Thu 15 Sep 2022 02:48:48 +0000
ROA not before: Thu 15 Sep 2022 02:48:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131620
IP address blocks: 103.116.68.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2547 (0x9f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0CE68958C4074750F9B01967C18F50F9CB112212
Validity
Not Before: Sep 15 02:48:48 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6A89EA6194F5EC1040A7B769023DCCD53C90D292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:25:a6:b4:da:29:a6:b1:6d:ff:8c:05:aa:dd:
0d:99:bb:de:2e:97:55:1a:a2:19:e0:1f:63:41:de:
11:a1:56:5e:0d:a9:a3:31:3c:15:02:20:6d:66:27:
8d:3a:48:88:37:0a:f3:49:e9:4f:6a:d7:c0:3c:fe:
a8:dd:83:81:4f:d2:4d:2a:3c:2e:2f:0f:0b:2c:27:
58:bb:30:6d:f5:55:c8:91:a2:c1:70:63:50:47:94:
24:ac:29:02:55:f6:d4:d5:be:45:ee:8a:aa:df:9e:
9b:09:cf:48:00:a1:cb:b9:31:a5:46:91:93:36:61:
6d:24:e3:4f:80:e2:b7:e0:9e:8f:8c:d0:7b:29:29:
9f:ea:2e:fb:61:dd:b6:33:3d:57:24:9f:3d:4c:eb:
f5:fb:45:ca:50:64:bc:3c:74:90:37:66:ff:35:36:
88:ef:16:aa:44:49:36:1a:f2:68:38:fd:66:89:61:
83:fc:ed:72:79:31:f2:c6:b8:d8:5b:c5:b8:9e:b0:
f1:ba:37:6b:35:47:39:ea:b6:2b:8b:8c:31:4f:6a:
97:2e:90:06:3c:e2:d9:e6:4f:a5:a8:aa:71:01:48:
b6:a3:9d:d5:07:aa:2f:98:03:e7:e3:e3:7c:72:3b:
dd:23:aa:b2:de:9f:93:f2:b9:2d:7e:80:ed:64:35:
bc:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:89:EA:61:94:F5:EC:10:40:A7:B7:69:02:3D:CC:D5:3C:90:D2:92
X509v3 Authority Key Identifier:
keyid:0C:E6:89:58:C4:07:47:50:F9:B0:19:67:C1:8F:50:F9:CB:11:22:12
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SERVCOMP/DOaJWMQHR1D5sBlnwY9Q-csRIhI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOaJWMQHR1D5sBlnwY9Q-csRIhI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SERVCOMP/aonqYZT17BBAp7dpAj3M1TyQ0pI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.116.68.0/22
Signature Algorithm: sha256WithRSAEncryption
28:ad:15:04:41:97:57:6d:0c:67:8a:87:ea:8f:89:0e:5c:00:
18:08:66:21:72:17:2d:07:98:ae:86:d4:9f:76:8e:ab:cd:40:
1a:4a:aa:f6:3a:2a:80:5e:49:e3:c1:19:11:f2:26:3a:e0:5a:
4b:3a:ba:06:0a:5d:a7:88:12:97:55:c3:ed:08:03:58:68:6a:
8b:2c:7c:54:f7:28:4a:0c:d3:13:15:27:ea:e2:b9:b9:10:99:
9a:8b:41:35:0a:84:e9:3e:b7:e9:66:ff:48:39:68:3a:62:96:
e5:d1:39:70:5c:73:94:a8:7a:6f:a3:cd:b1:b9:23:60:73:ff:
2e:5c:2e:ce:70:4d:83:57:a1:a4:24:f6:ca:6d:fc:f6:dd:b0:
38:14:1d:bb:ea:9d:53:f2:e6:d4:33:6d:f3:b9:b8:e4:23:7a:
30:b5:c9:7c:3e:15:db:53:10:37:fe:2d:8d:9d:b1:bf:68:ce:
00:41:7d:80:ab:d1:02:dc:71:b0:09:67:48:e8:b5:6d:54:ac:
2a:26:14:33:0c:42:cd:9e:a6:c1:98:6a:3b:a7:86:4b:90:ff:
dc:35:fb:d3:df:d3:b4:b5:08:9a:00:03:91:61:e0:60:85:3e:
3f:bd:10:b0:30:be:f7:56:d6:d5:3f:d3:d6:cc:52:88:d3:19:
0e:85:a5:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org