Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ULC/MoN6Bd1vNYqRwOLbxmd5ysB7ZWw.roa
File: MoN6Bd1vNYqRwOLbxmd5ysB7ZWw.roa (raw, json)
Hash identifier: UoZwRq4hz+jS0/I2yt0CV//INn2vfbA8yRDYEK+B3Cs=
Subject key identifier: 32:83:7A:05:DD:6F:35:8A:91:C0:E2:DB:C6:67:79:CA:C0:7B:65:6C
Certificate issuer: /CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Certificate serial: 26
Authority key identifier: BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/MoN6Bd1vNYqRwOLbxmd5ysB7ZWw.roa
Signing time: Tue 20 Oct 2020 04:06:00 +0000
ROA not before: Tue 20 Oct 2020 04:06:00 +0000
ROA not after: Sat 16 Oct 2021 04:29:56 +0000
asID: 134823
IP address blocks: 103.157.42.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38 (0x26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Validity
Not Before: Oct 20 04:06:00 2020 GMT
Not After : Oct 16 04:29:56 2021 GMT
Subject: CN=32837A05DD6F358A91C0E2DBC66779CAC07B656C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:33:c3:44:49:99:c9:81:ae:37:0f:75:64:2f:
2f:5b:b5:dc:82:8b:17:59:19:27:f9:e8:f6:df:a6:
f1:62:51:cb:84:77:8f:f7:e6:14:ad:4e:13:57:66:
50:77:51:eb:f0:73:74:35:7e:83:c5:03:bd:03:7e:
d3:b5:ce:0c:f4:ae:73:2e:2b:83:0b:02:4a:e3:ef:
ce:bd:3e:d2:a1:ba:05:85:ff:08:b6:fa:79:0b:48:
08:a4:d5:f3:c9:3a:c9:a6:bd:8d:b0:12:61:4c:a0:
24:62:cb:f6:61:42:5a:2c:9b:a8:32:93:18:8b:4f:
cd:51:2d:d7:a1:f6:b4:0d:6b:ec:4a:c8:bb:57:f3:
ff:9b:64:5c:1c:84:91:28:95:ba:d6:00:51:3a:65:
9f:56:96:82:ea:ae:f4:09:e0:5e:fc:65:6a:fd:2c:
4a:ee:32:b5:41:40:56:f7:82:35:fe:a7:f7:d0:ee:
a3:c0:41:4d:e2:e1:d2:78:b2:a7:ec:67:ee:2c:ee:
6d:12:4d:16:4e:c9:c7:8f:6c:ba:69:f1:af:10:79:
47:10:34:60:54:80:19:0e:80:40:79:27:3d:11:b1:
5b:7b:18:2a:0b:6d:d7:fa:aa:f8:f5:ad:62:e1:cc:
a9:7b:4f:05:28:3b:61:12:d1:72:56:05:28:ce:2f:
d6:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:83:7A:05:DD:6F:35:8A:91:C0:E2:DB:C6:67:79:CA:C0:7B:65:6C
X509v3 Authority Key Identifier:
keyid:BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/MoN6Bd1vNYqRwOLbxmd5ysB7ZWw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.157.42.0/23
Signature Algorithm: sha256WithRSAEncryption
20:52:b5:ad:43:02:b9:32:45:ac:44:f9:76:c6:27:67:19:3c:
c1:b4:72:fb:12:c3:16:b1:f8:9a:fd:e9:59:8e:2d:70:94:c5:
51:f7:39:9e:51:2a:39:c2:6a:d7:91:77:c2:f6:17:c7:2f:28:
37:e9:b7:49:52:fa:90:1c:33:cc:f8:25:5c:5d:4d:16:eb:12:
68:73:8d:8c:ad:7b:7a:dd:e1:28:6d:2c:05:50:21:92:82:c4:
17:6c:a6:4d:1e:5a:e5:c1:b7:d5:bb:d1:b8:ed:a0:19:04:45:
f1:b7:6a:98:3e:be:54:d4:bd:ec:08:6c:a9:77:17:e4:48:cf:
52:b9:65:a5:7b:94:6c:17:30:9b:7f:a9:2e:ca:ce:5b:92:e9:
1d:37:b6:77:bf:ae:57:8a:4d:ca:23:b4:99:89:f0:31:d6:eb:
08:02:0a:50:dd:26:3e:92:f2:61:17:b0:be:d4:2a:e3:3f:ef:
35:19:b4:f0:63:15:70:b6:a4:cb:1e:f1:10:6c:b3:2d:ce:c7:
8f:f9:b9:19:c1:a6:b1:91:4f:23:c0:21:5c:db:26:99:85:d9:
0d:62:7d:0c:e2:83:1c:cf:bb:00:7c:a2:68:ab:a0:8e:3f:f4:
a1:0a:2a:88:34:d9:de:48:ea:7e:d9:ea:d6:c4:6f:7e:08:29:
90:25:69:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org