Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/E-d-SnZNxCOyzfKqZ_q890H1gjI.roa
File: E-d-SnZNxCOyzfKqZ_q890H1gjI.roa (raw, json)
Hash identifier: tdU2yzQzy2xp+P4dO7UA4SPXQwDDbvsfMb895OS3ALs=
Subject key identifier: 13:E7:7E:4A:76:4D:C4:23:B2:CD:F2:AA:67:FA:BC:F7:41:F5:82:32
Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Certificate serial: 0361
Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/E-d-SnZNxCOyzfKqZ_q890H1gjI.roa
Signing time: Wed 29 Sep 2021 02:55:51 +0000
ROA not before: Wed 29 Sep 2021 02:55:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9678
IP address blocks: 103.152.150.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 865 (0x361)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Validity
Not Before: Sep 29 02:55:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=13E77E4A764DC423B2CDF2AA67FABCF741F58232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:84:c4:5f:a9:05:90:78:cc:1a:b9:f4:cb:83:
e5:b0:eb:cc:e2:4c:04:47:e1:de:b3:7c:a1:e6:94:
48:6f:b0:82:4a:a0:1b:3f:e9:81:65:e8:97:76:47:
c2:0c:d6:01:80:06:d0:1a:26:3d:67:f4:92:1e:28:
16:80:50:49:38:7c:40:06:f7:66:ac:7f:69:99:5c:
57:64:a4:fa:68:71:db:ff:dd:be:47:bd:03:43:85:
5d:49:f8:29:a2:02:6c:77:18:3e:d5:70:2d:aa:a7:
cc:de:1b:c7:6a:61:d4:98:72:44:42:74:2c:a6:c3:
6b:18:6a:3c:75:3c:7d:96:c9:1e:2a:14:0d:d9:cb:
01:a4:3c:3c:65:fb:36:ac:28:e4:ce:ee:da:1e:39:
a9:65:03:58:bf:0d:f4:55:24:27:4a:40:a9:c0:3e:
78:ae:97:0a:3b:37:61:00:3e:7c:7b:6c:42:e3:61:
26:cd:d9:1e:49:41:52:24:79:15:e0:ab:2e:c1:10:
40:9c:9f:34:10:7c:b7:b4:44:4e:c5:a1:e1:dd:44:
89:0e:e2:5b:4f:d0:bb:bf:9a:7c:49:55:a5:b1:e5:
46:d2:b2:1f:9c:bc:1c:32:4a:24:65:9b:a2:ee:48:
c3:a7:65:68:e2:04:ed:a0:79:c9:19:48:d1:bc:19:
49:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:E7:7E:4A:76:4D:C4:23:B2:CD:F2:AA:67:FA:BC:F7:41:F5:82:32
X509v3 Authority Key Identifier:
keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/E-d-SnZNxCOyzfKqZ_q890H1gjI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.150.0/23
Signature Algorithm: sha256WithRSAEncryption
13:66:41:60:19:f0:05:a3:cf:63:00:b0:87:08:db:f5:f8:6d:
4a:99:a8:5f:06:b5:f0:95:84:b6:de:e1:04:fb:d6:f9:77:1c:
75:d3:4a:7a:19:97:68:98:89:76:7c:a0:5a:41:27:d7:4f:1b:
18:13:4f:e1:aa:b8:d0:62:0e:8c:93:23:a6:67:d6:91:64:db:
75:eb:39:8e:75:76:14:27:51:25:4e:b2:58:82:a9:01:f4:c6:
22:3e:a9:c5:87:a0:a4:04:d2:5b:e9:ba:94:cd:dc:b1:9c:a3:
ec:6c:fd:bf:a3:db:11:31:a5:42:c9:a2:c0:56:8b:b7:06:96:
1d:1a:9a:8f:4e:95:1d:6f:39:7b:93:af:24:c6:11:0c:f3:12:
5c:01:49:16:4d:19:21:a1:ee:4a:1d:91:b8:ce:40:de:ad:57:
2c:fe:b1:d5:27:79:06:ec:79:7e:e1:ba:1c:eb:ef:79:c8:67:
c0:6d:99:02:60:78:e4:3e:bc:11:4c:e7:a4:4b:5a:e2:d4:c8:
dc:ac:54:76:bb:3d:b5:5e:cc:3c:19:04:ae:74:7e:68:4b:61:
6f:42:06:2c:c0:03:33:de:07:e3:94:03:e7:b8:5e:cb:4a:d7:
fb:30:f0:d9:24:04:3c:90:b1:05:e2:dc:be:87:c4:76:9c:94:
d1:7e:4a:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:05 2023 by rpki-client on console-ams.rpki-client.org