Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ULC/yTMQdgDvjHCCXlAD0CYdiZFwSGA.roa
File: yTMQdgDvjHCCXlAD0CYdiZFwSGA.roa (raw, json)
Hash identifier: +kOX2iNwgz08OAEAarFqoHP1LK3TINin8bvFNBJpsgM=
Subject key identifier: C9:33:10:76:00:EF:8C:70:82:5E:50:03:D0:26:1D:89:91:70:48:60
Certificate issuer: /CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Certificate serial: 01B0
Authority key identifier: BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/yTMQdgDvjHCCXlAD0CYdiZFwSGA.roa
Signing time: Sat 02 Oct 2021 04:31:08 +0000
ROA not before: Sat 02 Oct 2021 04:31:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 134823
IP address blocks: 103.157.42.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 432 (0x1b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B
Validity
Not Before: Oct 2 04:31:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C933107600EF8C70825E5003D0261D8991704860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:75:58:f1:60:18:d9:a9:47:f9:48:e9:b3:1a:
95:5a:bd:51:e5:4f:9f:7e:09:45:3b:9e:d1:a1:e1:
2a:c2:57:d7:38:5e:08:24:33:82:36:06:01:b9:2a:
cc:37:11:85:99:bb:cf:e7:96:5c:f4:08:f3:fc:55:
b9:b5:48:b2:c9:c8:58:b6:81:21:ad:60:a0:8c:0c:
9b:7a:d2:0c:d2:78:ab:39:b4:76:5e:f1:37:e5:2c:
24:bb:a5:35:37:b3:07:9d:6e:fd:c3:c7:54:12:10:
e1:89:e5:28:f8:1d:e6:08:e7:76:ab:68:69:54:cc:
45:af:22:b7:a6:81:65:73:54:f1:f5:89:a1:d1:99:
59:bb:d1:bb:9a:9f:19:66:40:27:12:af:46:36:0e:
a1:25:da:3a:5b:7f:a5:82:57:86:84:3a:6e:63:dd:
90:79:ec:7f:4d:51:7c:b2:03:71:16:79:a2:a3:f6:
4e:a3:1f:b7:ab:d2:b5:97:36:47:b5:bd:96:26:fb:
25:77:48:4e:b5:47:33:ed:e1:b8:8a:bb:5a:36:26:
46:93:6d:a1:36:cb:85:71:a2:a6:6c:ad:1d:4e:50:
ca:a2:00:40:00:61:ff:4b:dc:f3:59:3a:b2:80:35:
3f:7a:46:c9:d7:c7:c9:ea:88:6c:0f:ae:3a:13:74:
b3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:33:10:76:00:EF:8C:70:82:5E:50:03:D0:26:1D:89:91:70:48:60
X509v3 Authority Key Identifier:
keyid:BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/yTMQdgDvjHCCXlAD0CYdiZFwSGA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.157.42.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:ed:f5:c5:11:1d:d9:1e:ba:00:e2:c0:24:2e:00:29:ce:74:
d9:98:b0:bb:89:e9:1b:32:cf:ff:81:5b:67:12:36:a3:ed:38:
38:8b:44:7c:85:32:be:bd:07:a3:9d:b4:03:79:f5:88:8c:91:
00:22:4a:4a:19:3b:45:f8:ca:5a:8a:79:9e:d0:56:4b:94:8e:
3b:4b:70:89:35:db:37:7a:b7:ae:64:e7:de:4c:1c:70:76:fd:
f3:23:e0:65:60:bf:2d:73:37:e1:65:6b:3d:4f:dd:22:66:48:
74:e9:bf:c3:66:93:56:28:bb:23:62:45:8f:bd:e6:c6:82:f5:
6f:59:a8:24:3f:04:e5:0d:77:93:d6:fe:69:62:e2:b6:90:e3:
95:46:2a:9f:66:90:e0:2f:b8:d3:3a:4d:06:d8:cd:aa:23:d1:
e6:42:42:ef:70:28:36:52:e1:8a:d7:f3:e4:24:a9:58:a5:df:
5d:da:86:18:25:af:52:09:f9:42:90:54:7f:86:27:93:ad:4b:
bd:e3:db:5d:64:ce:0e:f8:da:3b:97:a4:ed:bb:45:c4:f7:5b:
f3:8a:ae:03:fb:cc:90:8e:b5:0c:73:22:61:42:79:f9:04:84:
a9:03:9e:94:c0:92:c8:bf:3e:b1:12:85:9a:90:a3:27:10:83:
1d:23:be:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org