Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/GE2sTX05pPIM4Vz473sOONPUcuI.roa
File: GE2sTX05pPIM4Vz473sOONPUcuI.roa (raw, json)
Hash identifier: acQp0IZtPV9bYL4fMs8SgUMGhWec6DmdRKPt2ppMtmA=
Subject key identifier: 18:4D:AC:4D:7D:39:A4:F2:0C:E1:5C:F8:EF:7B:0E:38:D3:D4:72:E2
Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Certificate serial: 08C7
Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/GE2sTX05pPIM4Vz473sOONPUcuI.roa
Signing time: Sun 07 Feb 2021 11:50:54 +0000
ROA not before: Sun 07 Feb 2021 11:50:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38851
IP address blocks: 103.229.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2247 (0x8c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Validity
Not Before: Feb 7 11:50:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=184DAC4D7D39A4F20CE15CF8EF7B0E38D3D472E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9e:a5:77:5e:ff:8f:5b:b3:3a:ec:e8:d1:96:
72:c8:45:95:cf:d9:29:ce:af:15:9c:07:e7:f1:c5:
f8:6b:6b:e9:37:89:2c:2d:5c:26:58:db:8e:d7:fa:
5a:f2:1f:6a:c8:0c:47:89:ff:6f:14:61:8a:81:4f:
86:92:9e:04:e6:46:28:01:60:fd:ff:4f:4f:eb:dc:
d6:0c:37:a6:cf:73:74:1f:91:27:b7:17:81:f4:e5:
d5:ac:00:22:01:76:1b:17:2a:73:54:99:bb:54:8e:
89:7b:9a:a4:22:6e:1f:12:db:fe:2b:01:ea:b0:2a:
bb:d5:bf:f5:f9:e8:62:4d:b5:90:08:55:82:ba:5b:
71:79:e0:14:bc:98:0d:92:76:e5:29:94:ac:cb:cb:
8a:be:d7:c1:e6:02:b4:39:83:5c:ce:30:e9:88:8b:
eb:e3:c0:5d:dd:f7:d6:41:bf:19:1e:57:b7:58:3a:
88:2a:0a:bb:80:2e:fd:6d:fc:6a:ac:f7:fd:ff:d4:
ad:0d:b1:03:00:21:a7:e9:11:6e:7e:d8:39:d2:da:
40:c1:ce:2b:ec:28:8b:ff:56:fb:28:f5:95:6c:86:
0a:a5:a7:8a:39:83:e8:ed:6d:70:11:4f:5a:99:50:
8a:99:a9:8f:ab:f0:84:00:af:f4:57:3e:f6:9c:4b:
93:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:4D:AC:4D:7D:39:A4:F2:0C:E1:5C:F8:EF:7B:0E:38:D3:D4:72:E2
X509v3 Authority Key Identifier:
keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/GE2sTX05pPIM4Vz473sOONPUcuI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.229.100.0/22
Signature Algorithm: sha256WithRSAEncryption
62:ea:bd:5d:e4:65:89:ae:28:fd:6d:e5:a7:77:ef:e8:ab:68:
79:81:9a:ea:60:14:95:cc:13:12:c1:8f:3a:e3:7c:0f:40:c4:
d1:75:2e:7b:ff:69:9c:70:9b:64:09:b0:d6:08:08:7d:ba:53:
b3:dc:a0:a5:c6:90:c1:be:58:2d:f8:53:3b:f6:e0:0b:cc:e0:
81:27:f3:ed:bf:eb:e8:7d:80:60:67:c6:37:66:b2:d9:49:20:
87:01:92:f9:84:64:aa:a5:2f:f0:0a:74:b5:6d:83:5b:bf:55:
3c:f8:ab:ab:10:3a:78:32:6e:9c:1d:c8:71:af:c9:b5:47:e2:
2f:7f:4d:92:ec:cf:16:74:d1:70:c9:c8:7a:01:51:92:b4:21:
b5:5c:28:38:a8:a2:fe:27:2b:da:34:6e:71:d4:f9:ed:03:f9:
22:b9:a7:90:33:46:a6:62:55:70:47:ee:4e:09:ca:90:da:9b:
c3:a5:a9:72:09:aa:26:d9:53:f9:6b:9b:f8:e0:cf:78:b8:e6:
7f:0a:97:92:8f:65:e6:2e:be:a5:f3:47:62:ef:81:52:1a:de:
d5:6a:7e:2d:26:b5:06:1c:2e:aa:6a:00:98:e2:f5:3b:52:20:
02:54:01:29:35:fe:aa:37:97:7d:45:47:72:e4:42:99:d1:8a:
a2:b3:18:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org