Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ULC/RzOfDV8VdKD9hIIyYY-RYTkuOwk.roa
File: RzOfDV8VdKD9hIIyYY-RYTkuOwk.roa (raw, json)
Hash identifier: 7p2fdQddjyYPKyGqArslweEhZVaIwBgTxEbhUIffyaQ=
Subject key identifier: 47:33:9F:0D:5F:15:74:A0:FD:84:82:32:61:8F:91:61:39:2E:3B:09
Certificate issuer: /CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Certificate serial: 01B0
Authority key identifier: BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/RzOfDV8VdKD9hIIyYY-RYTkuOwk.roa
Signing time: Sat 02 Oct 2021 04:31:07 +0000
ROA not before: Sat 02 Oct 2021 04:31:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131642
IP address blocks: 103.157.42.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 432 (0x1b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Validity
Not Before: Oct 2 04:31:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=47339F0D5F1574A0FD848232618F9161392E3B09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:81:f2:42:5c:75:98:a9:6d:1b:3f:52:69:0d:
f3:e3:f3:52:46:a8:8b:57:70:c5:05:0a:23:ea:d8:
37:e6:5b:54:bc:6a:19:ca:c3:a8:7a:68:e6:43:38:
c4:50:57:a3:cc:b0:82:04:dc:a1:9c:65:c9:55:d3:
d4:b8:46:c4:83:6d:65:95:2b:87:b3:01:31:fb:db:
96:d1:31:28:b6:bf:da:74:3c:5c:06:7b:d6:00:95:
1e:a4:a0:39:3b:e9:ae:d0:28:a3:19:83:06:22:c6:
00:97:9a:11:94:97:16:bd:76:20:ab:5b:e0:56:82:
cd:c8:3c:44:e0:cd:25:73:48:c4:c8:60:a6:e4:e6:
28:f5:65:a5:19:e7:08:8b:48:f5:3c:9b:b0:80:88:
b6:58:b3:f6:cd:4d:da:b1:e5:9d:8a:a6:84:e8:47:
64:a5:3d:09:63:4a:40:86:7e:18:d1:6a:70:26:f7:
1a:3c:ec:21:b2:1f:e9:fc:f4:26:b8:0c:e7:a8:02:
b5:8f:f8:27:e5:79:8d:18:36:09:32:5c:13:1e:6c:
63:04:b0:33:a2:9a:aa:5a:ff:cb:d2:86:16:fc:7b:
95:cf:f1:d9:f0:2e:a4:af:41:2c:e9:75:b5:7b:69:
57:9c:35:55:3e:c6:5a:b6:0a:60:9d:b9:4b:6f:8c:
e4:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:33:9F:0D:5F:15:74:A0:FD:84:82:32:61:8F:91:61:39:2E:3B:09
X509v3 Authority Key Identifier:
keyid:BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/RzOfDV8VdKD9hIIyYY-RYTkuOwk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.157.42.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:cf:da:9d:c2:4f:e5:69:ef:1b:75:34:ee:f4:f1:56:7d:47:
7c:3d:f5:9b:e2:76:b5:ea:bb:18:4c:d7:85:2a:69:00:49:ed:
d8:50:88:7f:06:46:e8:a4:84:6f:51:87:ec:c3:be:ad:f3:c2:
13:f4:13:67:26:59:41:e3:58:a8:45:09:5e:6a:76:0d:76:c3:
6e:42:10:c6:8c:b9:64:72:d2:e3:5a:ce:94:d3:ef:16:0a:1f:
90:07:c9:a2:08:f8:dd:f9:78:4a:f0:7b:34:a7:58:94:d2:e4:
9e:3f:34:2e:d9:98:5d:ef:75:ed:1e:98:98:b3:74:bf:61:73:
7d:27:35:68:97:a1:a3:f0:f8:fb:b1:e5:35:bd:e6:69:66:c7:
82:3d:dc:0e:b3:dd:6c:d4:21:1b:3f:d5:6a:f2:1a:7e:17:af:
94:05:a0:7d:6b:aa:8d:0c:e0:12:55:75:5f:4b:cc:32:9a:4e:
de:6d:83:e7:d5:f1:47:5f:e4:91:0f:28:61:0a:d2:6a:f5:f6:
1d:56:9e:48:c7:17:74:29:10:23:86:72:0a:d2:34:76:e0:0e:
6a:bc:c7:65:65:52:5b:2a:9a:15:9c:2e:0c:c4:fc:52:3e:84:
ba:c5:19:b2:61:83:11:e4:7b:03:5b:3b:aa:b3:50:14:a7:43:
60:05:37:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org