Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/Ng7OyFiRX_kLHmLH5xkv3EcrAPU.roa
File: Ng7OyFiRX_kLHmLH5xkv3EcrAPU.roa (raw, json)
Hash identifier: R9OWmEZEHP+Wb5+Y1FvLujXhNH4eNE1iIiXsrw7gGxY=
Subject key identifier: 36:0E:CE:C8:58:91:5F:F9:0B:1E:62:C7:E7:19:2F:DC:47:2B:00:F5
Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D
Certificate serial: 0DDD
Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/Ng7OyFiRX_kLHmLH5xkv3EcrAPU.roa
Signing time: Tue 29 Sep 2020 09:59:22 +0000
ROA not before: Tue 29 Sep 2020 09:59:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131636
IP address blocks: 103.130.124.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3549 (0xddd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D
Validity
Not Before: Sep 29 09:59:22 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=360ECEC858915FF90B1E62C7E7192FDC472B00F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d4:7a:3a:c2:0d:9e:2f:cb:c5:9a:d9:fe:5a:
51:5f:9d:88:76:60:0b:43:e1:df:08:99:5c:f8:16:
39:73:14:dc:b4:fb:66:74:fa:d6:96:3c:b6:4e:57:
bb:8f:ab:c6:e3:c4:31:1e:92:d2:4e:47:c8:87:48:
13:ff:43:bc:28:24:42:24:c4:28:1e:5b:f0:76:78:
b1:90:24:4e:2e:1d:91:96:91:8a:bf:cc:49:a9:a4:
4f:be:14:86:0e:37:c8:b6:28:50:ec:59:f2:a5:71:
72:17:eb:06:23:8c:96:be:6e:ea:e8:53:df:3d:67:
1b:c6:07:29:0a:9c:2f:40:f2:33:22:ac:0b:06:1b:
c1:4f:da:e8:6c:56:47:2b:a7:8a:07:af:46:59:09:
27:c8:fb:40:0f:78:57:6e:63:d0:0f:f9:fb:5c:83:
cc:12:0c:a8:31:65:6e:a3:8b:63:a3:0e:18:42:82:
07:4e:bd:18:ae:65:4b:1b:de:06:15:20:0f:37:53:
d2:b7:8e:36:1f:3b:03:1b:87:ec:a6:6b:7d:5b:be:
0d:9d:76:44:1e:f3:64:e2:7f:1e:34:53:56:78:86:
ac:82:b2:fa:45:57:0b:98:64:d4:a8:6e:8d:8b:cd:
52:06:41:47:d9:7f:21:eb:18:6d:51:24:9a:79:8d:
b5:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:0E:CE:C8:58:91:5F:F9:0B:1E:62:C7:E7:19:2F:DC:47:2B:00:F5
X509v3 Authority Key Identifier:
keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/Ng7OyFiRX_kLHmLH5xkv3EcrAPU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.124.0/22
Signature Algorithm: sha256WithRSAEncryption
47:34:79:c0:ac:12:28:f7:27:67:ad:26:9e:cc:1a:75:90:38:
aa:ac:a2:68:b8:d2:c6:2f:86:32:97:0f:95:65:ef:3d:48:f7:
f4:15:88:af:fb:9a:d0:84:82:93:5b:32:ef:aa:f0:ce:ce:6a:
16:2a:93:74:67:2d:3e:59:d9:80:5f:73:fc:07:66:be:c4:31:
c9:22:37:e8:3e:08:11:70:78:ba:8e:d2:d6:08:aa:f9:c6:a9:
1e:b2:be:d3:2b:59:dc:b0:56:78:5a:a8:67:a5:b8:3c:53:78:
f7:14:7f:c9:1f:83:d7:0a:1e:5c:a2:23:69:13:7d:e8:02:87:
fc:cb:0d:56:5d:d0:43:bb:2f:74:08:c6:77:3d:9c:73:19:fd:
f3:af:aa:11:20:40:da:70:82:a9:dd:ba:e9:9b:66:cd:35:84:
3d:bd:98:7b:b9:f2:bd:27:fc:61:be:25:13:8c:a5:bf:a4:07:
6a:bd:7d:c3:47:44:3f:e8:22:e9:da:0c:67:54:43:8b:79:1f:
e6:7f:03:2c:66:32:eb:95:9b:9b:d6:6f:d9:3f:05:81:56:47:
90:dc:6c:2c:26:10:75:1b:89:86:ed:d9:40:d6:59:93:4e:06:
b4:fb:4a:05:ff:bf:bc:3e:fa:9f:1c:a8:6e:f2:80:ad:a7:f5:
23:d3:7a:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:42 2023 by rpki-client on console-ams.rpki-client.org