Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/TXw5zYyL0yAwZsfpRMFbrUEzCT8.roa
File: TXw5zYyL0yAwZsfpRMFbrUEzCT8.roa (raw, json)
Hash identifier: h4dB+CkHLmB3WZ62cPMGrqmtURoGuSdo6LDwr1UsI6c=
Subject key identifier: 4D:7C:39:CD:8C:8B:D3:20:30:66:C7:E9:44:C1:5B:AD:41:33:09:3F
Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Certificate serial: 0781
Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/TXw5zYyL0yAwZsfpRMFbrUEzCT8.roa
Signing time: Tue 29 Sep 2020 10:06:57 +0000
ROA not before: Tue 29 Sep 2020 10:06:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131590
IP address blocks: 103.227.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1921 (0x781)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Validity
Not Before: Sep 29 10:06:57 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4D7C39CD8C8BD3203066C7E944C15BAD4133093F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:35:5e:04:b5:a2:a3:35:84:c1:bf:2a:71:26:
34:66:df:30:f9:5a:c0:fd:69:18:70:a5:93:bd:9a:
0c:f9:af:00:b6:b2:f9:8d:a3:19:5c:91:a8:48:ac:
a9:02:28:95:c5:68:ec:5a:23:c8:d5:92:90:3b:71:
b8:d8:cd:64:cc:c8:ab:f5:50:a4:1d:65:a2:e4:95:
20:35:42:e4:2b:64:87:57:84:37:e1:b1:70:89:77:
f8:78:b8:1b:f7:b7:b3:2c:68:cf:ab:74:48:3d:3b:
a3:ec:4f:33:c9:c8:96:56:bf:e2:16:62:60:5a:b0:
50:90:f9:36:c3:ef:bc:f1:83:38:0a:ef:d9:50:0d:
61:51:24:87:6f:5e:8d:ec:cb:89:42:d1:f6:cf:9e:
3e:8a:9b:7c:29:f9:54:0e:2f:88:c5:1d:e9:d3:56:
20:e0:98:e5:cb:e5:27:a2:a7:2b:c1:0b:9b:f1:54:
ed:6e:4e:c7:2a:ee:9c:0e:ae:91:e8:b1:70:55:c6:
71:4d:df:9d:7f:14:48:5c:e6:cf:7f:ec:d5:e2:18:
b4:27:45:f2:e2:49:26:93:28:00:ce:2d:3c:cd:7c:
6f:e3:1d:ed:1e:2d:90:51:21:fe:27:01:47:f0:72:
87:3a:49:a3:ae:da:65:77:c9:03:b9:ab:13:c0:d2:
e6:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:7C:39:CD:8C:8B:D3:20:30:66:C7:E9:44:C1:5B:AD:41:33:09:3F
X509v3 Authority Key Identifier:
keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/TXw5zYyL0yAwZsfpRMFbrUEzCT8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.227.227.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:b9:53:50:31:98:16:87:9a:6c:24:7a:4f:5d:1a:b9:b6:51:
99:c3:37:9b:43:10:fe:e0:4b:95:dd:2b:20:e6:ba:e8:f3:ad:
d8:c6:b2:6b:a0:17:02:d5:28:b0:83:b5:c9:7d:9c:76:f3:54:
f3:a5:f2:42:0c:05:08:4b:59:39:96:c4:9d:ca:4b:c2:a5:1a:
ae:d8:13:52:4f:8d:d9:74:40:84:0d:76:1e:95:60:2e:48:79:
9c:13:8c:b9:fb:ff:46:1c:2c:1f:ba:82:c8:63:cd:09:48:4a:
51:05:3f:a3:f0:b7:06:0f:07:3d:ec:4c:6b:8e:61:0f:a0:c1:
ff:be:79:48:66:ff:4e:e6:1b:05:07:d4:1c:cd:98:18:1f:fc:
ad:ea:48:a7:da:cd:78:07:dc:69:bf:6c:d0:4b:2c:fd:5b:0e:
be:e1:d2:d6:00:82:fb:e4:79:84:2a:bf:e9:0d:a4:17:19:0c:
f1:d7:62:96:39:fb:06:f3:6e:cc:3c:09:3f:b1:cf:15:4a:e1:
09:c0:06:5a:e9:35:01:6f:0a:a1:ec:58:6c:b3:47:6f:b7:84:
3f:dd:1e:35:a9:e7:b9:de:6d:fb:a5:9e:31:33:54:41:56:48:
c0:af:0e:d2:87:47:50:9c:0f:95:2d:71:33:fc:4c:33:46:0e:
77:1c:d0:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:18 2023 by rpki-client on console-fra.rpki-client.org