Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/oeswvcZF675ImxIoO_-eoKd6y40.roa
File: oeswvcZF675ImxIoO_-eoKd6y40.roa (raw, json)
Hash identifier: iqFfvG4t4ycB6roR6nGPx6u0FIvw5Hi+XtDX83BBNac=
Subject key identifier: A1:EB:30:BD:C6:45:EB:BE:48:9B:12:28:3B:FF:9E:A0:A7:7A:CB:8D
Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Certificate serial: 08D0
Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/oeswvcZF675ImxIoO_-eoKd6y40.roa
Signing time: Sun 07 Feb 2021 11:49:08 +0000
ROA not before: Sun 07 Feb 2021 11:49:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131590
IP address blocks: 103.227.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2256 (0x8d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Validity
Not Before: Feb 7 11:49:08 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A1EB30BDC645EBBE489B12283BFF9EA0A77ACB8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:10:b8:8a:c1:e5:f1:04:60:88:ec:b3:e8:2f:
96:22:32:ff:52:85:87:19:b4:42:f1:a2:62:4f:4e:
bc:2b:8c:41:44:94:c4:ce:c4:ea:80:fe:4f:23:53:
2b:4b:88:19:02:30:98:25:17:c4:a2:14:07:b8:cc:
e3:ba:c2:7f:64:f7:34:54:a3:69:ce:6d:0d:34:09:
af:03:e2:83:a7:84:a2:0c:78:e1:3d:ca:ba:0a:40:
37:43:f6:6e:de:98:82:9d:8e:d7:81:2f:f2:c6:bc:
1a:f8:7a:ae:6c:4b:17:8a:ab:25:11:9b:1c:e1:dc:
b8:43:e3:e8:05:6c:b4:8a:f8:5c:c0:63:79:30:b7:
4e:3d:ae:75:5a:53:74:62:d0:3c:68:e4:5a:31:52:
62:ce:04:aa:9e:0b:b2:c2:3a:8a:a4:30:f0:09:1c:
57:c7:52:b9:8f:97:26:ca:ec:5d:fa:5f:76:f4:c7:
92:b6:5e:8f:e4:3d:41:b4:e3:28:44:fe:fd:83:31:
c6:bf:0b:3c:67:7d:db:a3:52:17:05:1f:b6:c8:76:
b5:cd:f0:b0:65:a2:11:ce:e8:35:d1:ae:16:52:ea:
15:a2:5b:71:bc:ca:97:c3:a5:ef:4d:5e:5a:b3:33:
2f:da:ab:8e:f8:2e:f7:57:7b:22:35:2b:dd:ab:e8:
dc:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:EB:30:BD:C6:45:EB:BE:48:9B:12:28:3B:FF:9E:A0:A7:7A:CB:8D
X509v3 Authority Key Identifier:
keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/oeswvcZF675ImxIoO_-eoKd6y40.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.227.227.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:72:e7:0f:7f:ec:f9:a9:84:3b:07:30:13:bd:e6:f1:47:6b:
fd:80:72:39:28:38:d4:fe:a5:90:95:b2:bb:e6:0d:a0:9c:f5:
6d:ad:ab:f3:c7:ad:bf:7e:be:2d:7f:2e:cb:68:00:48:28:29:
62:6e:d7:0c:da:2a:76:be:56:db:2c:0c:c1:50:f0:8c:03:52:
63:be:b0:ae:ef:8a:ce:3a:e6:c9:37:36:74:8f:39:6d:94:17:
06:72:86:0b:8a:19:09:28:67:76:41:72:c2:34:32:16:7b:44:
ed:1d:21:bc:b4:44:22:5e:8a:d0:7c:57:92:dc:69:1b:16:9e:
f3:e9:9e:d7:20:c9:f6:0b:89:72:bf:35:a0:23:6d:6b:cf:d4:
fc:90:b4:be:e1:a4:79:10:68:c7:eb:be:32:c3:8c:c8:b4:a7:
52:7e:ca:3b:4d:b4:0a:e1:26:44:85:42:fc:6b:4c:8c:07:3a:
9d:53:2f:44:3c:d9:c3:04:64:c4:2e:98:69:c4:c6:d3:0f:f6:
14:94:7e:80:f9:70:dd:6a:85:d5:84:7e:a6:ff:31:a3:a9:9c:
8c:4e:cf:c9:a1:21:19:21:24:ce:8b:71:4c:34:89:3b:de:70:
7b:4f:57:63:36:95:7b:8d:1e:88:40:15:f4:e2:68:9e:c4:1b:
3a:38:58:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:06 2023 by rpki-client on console-ams.rpki-client.org