Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWDS/jwoyNyM0CU6yXaNRrc1ahKPGJng.roa
File: jwoyNyM0CU6yXaNRrc1ahKPGJng.roa (raw, json)
Hash identifier: H9nBMJtR3WAxBsi0ADzi5cbEsCo5pI5mLWMi4wjg1pI=
Subject key identifier: 8F:0A:32:37:23:34:09:4E:B2:5D:A3:51:AD:CD:5A:84:A3:C6:26:78
Certificate issuer: /CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB
Certificate serial: 0633
Authority key identifier: 29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/jwoyNyM0CU6yXaNRrc1ahKPGJng.roa
Signing time: Tue 19 Jan 2021 02:30:32 +0000
ROA not before: Tue 19 Jan 2021 02:30:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131668
IP address blocks: 103.147.22.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1587 (0x633)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB
Validity
Not Before: Jan 19 02:30:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8F0A32372334094EB25DA351ADCD5A84A3C62678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e8:ee:b6:ff:a3:e5:86:10:3a:c1:84:ba:63:
07:e7:7d:d6:72:ed:92:20:d9:f6:17:d0:43:fa:55:
b4:78:6e:d1:91:fc:58:96:ba:1d:6e:4e:86:6a:1a:
37:6a:55:54:ec:c0:a4:0d:7b:4a:cd:ef:50:28:26:
07:95:db:1a:c4:28:6f:fd:19:0d:cd:c4:3f:93:76:
d4:ba:05:bf:8b:9c:d7:08:eb:0d:a3:a7:aa:97:7b:
f8:bd:e0:90:8e:ee:27:cb:91:f8:ec:e0:48:35:cb:
56:60:52:be:11:88:67:72:0b:79:5d:c8:3b:c0:e8:
4c:60:7a:ed:8b:3d:23:a0:6c:9f:43:92:50:63:92:
c9:73:c0:2d:9c:91:b5:6d:b9:a7:d9:0a:eb:52:64:
ae:23:78:09:b3:97:c1:73:da:c6:37:03:32:0c:98:
c9:bf:2c:6e:c3:d5:15:17:50:8b:de:21:67:8f:90:
50:62:3d:c6:1f:57:8c:68:97:e7:f9:9f:bb:56:86:
68:51:a5:78:30:fa:7d:1c:79:40:21:d2:76:34:fd:
d8:f3:69:1a:7f:16:67:9e:5b:b0:cd:9a:b5:26:bc:
e4:c7:d1:58:54:5c:7b:90:09:ae:96:7d:e2:1a:6f:
08:80:16:7c:83:0c:d2:40:7a:49:1b:e9:0d:36:2c:
76:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:0A:32:37:23:34:09:4E:B2:5D:A3:51:AD:CD:5A:84:A3:C6:26:78
X509v3 Authority Key Identifier:
keyid:29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/jwoyNyM0CU6yXaNRrc1ahKPGJng.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.147.22.0/23
Signature Algorithm: sha256WithRSAEncryption
03:1e:21:f9:d7:7b:d6:52:b0:59:c3:21:f7:ec:74:28:e5:62:
61:cb:33:95:07:1f:f8:a8:89:e3:de:86:b9:d3:21:92:2e:f9:
af:8e:87:c3:25:2f:0c:c2:38:7a:b0:0c:12:5f:90:65:83:fc:
e5:d8:6a:7f:f2:fd:00:b4:88:ab:de:1c:3d:2a:c2:0e:71:b0:
db:f5:66:0e:a8:ed:6d:a1:68:b6:34:5a:53:9d:2f:e1:75:ea:
0a:f4:27:bb:4c:bb:49:94:c5:d9:cc:51:11:71:93:d2:5c:21:
5c:1a:1b:75:60:1d:0a:a3:a0:39:e5:fd:e6:e7:a2:a7:4b:a9:
55:bf:5c:58:1c:cc:84:ad:d1:bb:6b:cf:52:7c:c6:bb:e7:63:
ce:b6:ea:61:8e:7a:48:75:72:f5:86:8b:99:cb:b6:ef:c6:ae:
64:a1:92:c7:6c:f8:d8:25:1b:55:a0:36:ce:be:81:3d:1c:6a:
73:33:43:33:b2:6c:99:cf:91:75:9b:70:a4:47:01:d2:ca:d3:
d4:e0:39:9b:72:a6:9f:9d:82:76:1b:30:57:3e:a2:3d:69:0c:
7b:b5:02:81:cc:f2:fb:a9:30:9c:72:e6:74:11:86:c5:aa:a6:
56:ff:42:76:92:09:ab:1b:20:77:34:ee:3e:fd:bb:3c:4f:f3:
57:08:92:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org