Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/x3CkaWJQ9G8y27hiFG7zalIi8pw.roa
File: x3CkaWJQ9G8y27hiFG7zalIi8pw.roa (raw, json)
Hash identifier: w8hEsn29p5S3E/iAvsQ1IoObCttY0MdC0lLRmrJEJ9E=
Subject key identifier: C7:70:A4:69:62:50:F4:6F:32:DB:B8:62:14:6E:F3:6A:52:22:F2:9C
Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Certificate serial: 0971
Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/x3CkaWJQ9G8y27hiFG7zalIi8pw.roa
Signing time: Wed 29 Sep 2021 02:39:18 +0000
ROA not before: Wed 29 Sep 2021 02:39:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38851
IP address blocks: 103.229.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2417 (0x971)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378
Validity
Not Before: Sep 29 02:39:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C770A4696250F46F32DBB862146EF36A5222F29C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ae:9a:e6:d1:06:f1:54:36:fb:b4:b2:b4:5a:
2e:1e:a2:49:bd:bd:ec:8e:da:6c:18:4f:d8:5b:fd:
03:d0:5b:8e:dd:3c:bf:bf:76:81:31:c1:51:be:67:
c4:ea:1d:84:e4:82:77:25:d8:af:4a:9c:6b:69:36:
52:2f:06:77:19:f1:5b:34:c1:6d:33:15:ec:fb:65:
33:06:19:87:97:45:7d:b0:f1:04:11:ec:1e:98:3a:
0e:a5:e1:28:e1:60:00:a2:00:e8:2c:81:25:4b:8a:
09:56:6f:56:f1:f9:44:55:8d:14:aa:48:ee:5d:89:
6b:4f:0b:a6:14:d4:e1:35:d6:8a:f0:7c:c3:fa:91:
df:08:f4:10:b3:a1:ad:50:ef:48:11:c3:b9:9e:8e:
d3:3c:b1:4b:42:de:b7:87:15:c3:9f:4d:23:a7:88:
da:12:32:6c:ba:f9:89:0c:88:45:c5:bc:00:62:0d:
d3:1d:27:1a:85:1a:88:4f:8e:47:27:5d:b1:f7:e2:
1e:21:35:d1:d8:ab:16:84:a9:9c:20:ec:f8:9d:d0:
24:03:d8:ec:4e:c5:db:44:6a:2a:71:c7:a4:0e:f4:
12:e3:4a:42:1a:11:21:80:95:c7:22:c0:84:e3:11:
a8:4c:e8:ad:93:5c:7e:ce:84:71:96:54:95:5f:44:
21:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:70:A4:69:62:50:F4:6F:32:DB:B8:62:14:6E:F3:6A:52:22:F2:9C
X509v3 Authority Key Identifier:
keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/x3CkaWJQ9G8y27hiFG7zalIi8pw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.229.100.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:f1:e1:27:dd:31:36:4c:98:c7:1b:16:2c:a7:c3:04:99:e0:
d8:1a:32:1f:16:d3:e6:04:f0:89:b0:a0:f9:59:5e:71:d1:2e:
d9:72:3f:55:4d:44:5b:f3:32:aa:a7:5a:ab:6e:48:70:72:b8:
2c:11:4a:f7:3a:7a:d9:fc:60:63:eb:ae:dc:2d:f5:6e:1a:19:
f8:ab:00:f7:ca:ef:4e:83:44:c3:7a:cb:fb:55:85:31:2b:84:
eb:a9:b8:25:7a:8e:08:af:61:32:fd:20:e9:22:e0:8e:2c:c0:
69:a2:be:cf:17:fc:12:25:68:1f:01:b4:04:ed:36:c7:c5:6d:
be:e3:84:a7:48:b1:00:93:d2:24:b4:87:b5:cb:b8:c8:52:b8:
2a:9c:23:04:9d:56:2e:c0:38:dd:0d:77:d7:f5:c6:a1:f5:d6:
0e:85:ae:ca:a8:50:97:a3:a3:80:25:1c:77:bb:d7:61:a4:c4:
6b:c9:e9:d0:6e:34:72:16:a5:04:41:af:d9:1c:cc:3f:4e:fb:
81:0c:7e:89:14:7c:95:64:92:59:57:87:23:38:38:b0:89:85:
a9:30:3b:c5:8b:b8:14:9a:6f:fd:0c:2e:82:86:10:30:a4:2e:
98:13:25:68:9a:81:73:11:07:c4:87:af:a9:a0:46:5b:2f:35:
23:00:7e:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org