Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/R2HN5Z96YKjYokTVC3PSSdV5Big.roa
File: R2HN5Z96YKjYokTVC3PSSdV5Big.roa (raw, json)
Hash identifier: 0V6m77kvAM2E8/WhlJH0d8gp7IZNFCzRrf8VcgKKytY=
Subject key identifier: 47:61:CD:E5:9F:7A:60:A8:D8:A2:44:D5:0B:73:D2:49:D5:79:06:28
Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Certificate serial: 0A5B
Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/R2HN5Z96YKjYokTVC3PSSdV5Big.roa
Signing time: Thu 15 Sep 2022 02:38:52 +0000
ROA not before: Thu 15 Sep 2022 02:38:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38851
IP address blocks: 103.229.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2651 (0xa5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Validity
Not Before: Sep 15 02:38:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4761CDE59F7A60A8D8A244D50B73D249D5790628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:46:62:2f:16:ea:74:b5:f6:e9:f5:8c:68:a0:
3c:97:88:f0:ea:af:17:7a:0f:2e:8c:ab:8a:c7:34:
ca:2b:56:94:25:ea:54:0e:d6:9e:e6:b9:e6:d3:99:
49:10:1a:5f:57:af:cb:7e:fa:bc:f6:e7:48:9c:75:
45:64:56:82:a9:83:f7:69:f8:49:fb:6f:4d:ad:04:
2b:9c:d3:d2:47:73:fe:8e:61:60:87:2e:65:d2:16:
3f:f8:07:77:d2:22:32:92:b6:79:08:db:3c:e3:33:
0b:e8:0a:a3:ac:9e:c4:01:ac:40:7e:22:45:43:88:
52:b2:07:79:4c:9d:2c:62:7b:e5:96:79:41:56:20:
e4:d5:ea:c4:b2:3d:21:e4:d3:3b:f4:69:9f:5d:07:
ef:3f:94:de:68:5a:a0:22:8f:de:99:d9:4e:ce:95:
4c:8b:d8:10:76:ca:03:a3:a6:c0:81:20:56:e7:b4:
96:35:49:65:97:74:b7:77:81:a1:39:c5:66:cb:cb:
55:52:22:0d:bc:6f:bd:bb:25:78:62:2d:c8:5d:a4:
37:6f:86:2f:53:94:0b:a7:ce:54:ff:0d:ce:01:77:
0e:8e:49:36:42:a7:3b:31:4c:f8:bb:f0:f0:92:69:
5f:bd:05:3a:46:18:8a:58:6f:98:f5:ab:2f:d0:2c:
f5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:61:CD:E5:9F:7A:60:A8:D8:A2:44:D5:0B:73:D2:49:D5:79:06:28
X509v3 Authority Key Identifier:
keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/R2HN5Z96YKjYokTVC3PSSdV5Big.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.229.100.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:46:b6:4d:08:94:18:ca:a0:b2:2b:08:d6:14:0d:46:10:31:
89:68:f3:cd:38:52:92:76:a3:87:ed:79:29:05:6b:38:ec:77:
51:e1:84:45:ec:c9:95:b2:c2:59:de:40:39:54:70:e7:9d:21:
41:be:ad:cf:d8:7a:f1:5e:85:06:77:64:5b:ee:88:d0:31:6b:
37:76:d8:70:08:53:40:a4:90:b6:75:cd:4b:1a:78:7a:1b:1e:
9b:d8:a3:09:0d:be:d4:fe:2f:c0:8b:ed:b7:63:ec:42:7a:48:
f7:04:27:0c:f5:fe:6f:4a:11:43:4c:c1:6d:23:7f:c0:4b:c0:
a8:3c:1f:36:31:04:33:66:a6:91:b6:17:b6:e7:9c:a3:5e:c9:
11:7b:b9:a1:53:35:05:a0:3b:f6:18:2e:74:2a:7d:00:9d:70:
41:98:25:58:84:f0:bf:c6:e6:21:a8:08:e8:5e:c0:b8:fa:dc:
df:9d:5b:96:47:8f:78:20:3f:4e:6f:09:d3:96:9c:db:6b:1d:
ed:a2:1a:0f:40:d1:ef:c4:45:b7:ba:4e:9a:6a:44:33:9a:81:
ab:34:d8:c7:9a:11:20:dc:79:26:ee:35:c3:cd:cf:7b:84:a3:
98:f0:a8:af:31:6a:00:f6:5f:7a:89:ca:e6:f6:fb:67:e5:ed:
7c:b6:16:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org