Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/cnkwKO_s-wA4fueVVAvDZewxrwg.roa
File: cnkwKO_s-wA4fueVVAvDZewxrwg.roa (raw, json)
Hash identifier: uWBjXD9ml3YOMzDx326sSGV4TCnx4WjmCdUMdrgujF8=
Subject key identifier: 72:79:30:28:EF:EC:FB:00:38:7E:E7:95:54:0B:C3:65:EC:31:AF:08
Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Certificate serial: 0786
Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/cnkwKO_s-wA4fueVVAvDZewxrwg.roa
Signing time: Tue 29 Sep 2020 10:06:58 +0000
ROA not before: Tue 29 Sep 2020 10:06:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131590
IP address blocks: 103.227.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1926 (0x786)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Validity
Not Before: Sep 29 10:06:58 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=72793028EFECFB00387EE795540BC365EC31AF08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d8:7c:39:68:13:89:1f:09:83:20:46:5a:b1:
be:44:ba:47:6b:c4:a2:f6:9b:ed:1f:25:31:6e:aa:
63:e9:aa:1e:ad:7e:d5:4f:ed:20:fd:a8:a1:23:da:
6e:7e:86:9d:a6:db:d1:9a:4b:8e:26:9c:8b:27:18:
20:22:fa:7a:8c:34:85:ab:52:b0:f4:9a:cf:26:4f:
39:15:4a:2e:77:ac:87:60:d0:8e:81:ba:10:45:e9:
13:73:e8:6d:41:b1:59:ea:52:a5:55:81:2c:65:2f:
c8:82:3c:42:35:9f:02:e9:09:56:40:95:19:db:6e:
60:a2:71:79:7d:0a:52:21:68:fc:cc:12:9b:b7:db:
89:3d:ea:5b:29:8b:40:6e:9f:2d:76:40:a1:9b:34:
ec:4e:d5:16:2a:81:69:79:cd:06:b0:0f:f6:f6:0a:
39:21:24:4a:3b:1a:35:f6:8c:ee:69:03:bc:64:26:
b3:a0:67:97:b4:55:c1:4c:9a:63:c2:87:69:96:79:
ca:f8:7c:70:5f:88:30:21:a6:f9:da:72:52:d3:d1:
72:5c:ef:6b:50:0e:ad:0d:22:b7:b6:c0:a9:c7:5a:
98:bb:47:2c:a7:54:f9:f5:3a:19:f9:2b:27:ee:f8:
05:db:70:3d:8d:a8:4b:02:e4:c5:f4:5f:25:0e:a4:
76:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:79:30:28:EF:EC:FB:00:38:7E:E7:95:54:0B:C3:65:EC:31:AF:08
X509v3 Authority Key Identifier:
keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/cnkwKO_s-wA4fueVVAvDZewxrwg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.227.224.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:65:fd:33:eb:35:a4:15:8b:b4:cd:3c:e0:f1:18:aa:a1:51:
6f:b7:43:70:af:a4:6f:de:50:76:12:68:89:b3:1e:eb:03:34:
21:9f:45:1f:28:06:fd:b1:48:aa:20:e3:55:90:33:c5:a4:01:
7f:a1:d8:d3:f1:64:8b:80:3e:88:59:e8:74:f5:d8:24:fd:08:
24:4a:9c:b1:b8:01:bc:65:97:a2:bc:1c:17:f1:49:95:dd:13:
dc:89:a1:75:f2:16:a9:1b:e7:ac:0e:6b:0d:44:ae:b0:b6:a8:
6a:19:9c:f4:2c:4c:25:d5:03:fb:41:f0:b6:26:00:1e:ca:ed:
85:72:5f:8f:3b:c9:fb:30:40:82:ca:33:94:b5:ce:2d:19:52:
f7:9b:b9:8c:23:9f:1a:d6:27:5f:b4:10:7b:e9:5f:76:dc:34:
ea:5f:3d:9a:d4:84:1b:f1:0d:b4:a0:5c:cd:71:27:9d:c1:d9:
a7:06:f1:f1:44:f6:c3:73:a9:ad:2a:9e:1a:4e:f9:9f:f5:e3:
fb:63:f7:c2:37:a8:76:e2:27:e2:c9:26:06:1a:d1:b0:6e:9b:
fd:58:3a:5a:d5:5c:b8:76:e6:26:d6:1c:f9:ad:20:47:70:48:
ff:2b:d2:70:d6:e7:39:0e:d5:5b:44:ea:6f:53:44:e0:7a:3b:
49:05:76:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org