Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/fP-J11d9rPhfEexLrXsKgciw-lc.roa
File: fP-J11d9rPhfEexLrXsKgciw-lc.roa (raw, json)
Hash identifier: rQB3GxRSoydgw2EuzNy1zSUqce+8ZLgruMKRdlLMF/E=
Subject key identifier: 7C:FF:89:D7:57:7D:AC:F8:5F:11:EC:4B:AD:7B:0A:81:C8:B0:FA:57
Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D
Certificate serial: 1031
Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/fP-J11d9rPhfEexLrXsKgciw-lc.roa
Signing time: Thu 24 Mar 2022 06:04:40 +0000
ROA not before: Thu 24 Mar 2022 06:04:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131636
IP address blocks: 103.130.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4145 (0x1031)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D
Validity
Not Before: Mar 24 06:04:40 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7CFF89D7577DACF85F11EC4BAD7B0A81C8B0FA57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:bc:98:87:d0:1c:67:7c:63:44:4a:56:2c:91:
d5:83:38:b2:f6:9d:4b:f3:27:09:57:bd:94:36:23:
23:08:58:f2:83:76:39:18:eb:8c:e1:0d:28:b0:c2:
2a:d8:b2:49:12:52:04:c0:56:3e:09:0f:d4:29:33:
77:c6:f3:a1:c3:db:15:dd:e4:e4:0f:b2:67:d1:e7:
ac:67:5b:c9:39:f4:26:87:3f:04:72:2e:4c:5e:ed:
9b:dc:7f:34:31:29:a2:da:81:04:fe:67:c6:ef:f4:
48:0d:09:cd:10:d3:ac:f9:4f:62:cf:d6:1a:97:6e:
1f:fe:d4:35:07:d7:c4:60:4e:9b:99:fc:f3:48:d7:
8a:0b:77:8e:bb:25:ca:35:31:39:bb:b3:12:81:e0:
cf:8b:35:2c:9a:b7:35:49:4d:78:88:5a:03:1f:d2:
46:66:39:5f:a8:30:02:92:7d:a5:c7:7b:2f:1c:7f:
b5:ef:23:7d:58:ba:56:cb:ac:11:60:5f:5f:21:34:
b9:df:9c:8a:a4:55:9d:ef:d2:bb:aa:e1:22:bc:78:
0c:cb:d0:6e:78:95:2b:93:d5:0e:6b:b6:f8:b1:1a:
01:8f:d3:01:58:20:76:87:af:44:ce:2f:f8:71:9a:
48:fe:ca:75:55:63:36:78:26:f6:71:6f:ec:d6:6e:
8a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:FF:89:D7:57:7D:AC:F8:5F:11:EC:4B:AD:7B:0A:81:C8:B0:FA:57
X509v3 Authority Key Identifier:
keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/fP-J11d9rPhfEexLrXsKgciw-lc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.124.0/24
Signature Algorithm: sha256WithRSAEncryption
89:8f:64:56:f9:95:c5:7f:61:81:c3:df:9a:7a:92:1d:6d:f3:
25:2a:a6:59:b3:92:1e:5f:07:b0:11:02:b3:7b:79:b0:7c:05:
13:20:ce:89:5a:48:33:88:fe:5f:25:69:b9:ac:15:33:c6:6b:
24:f7:86:ad:d1:a8:ae:6c:6c:60:b9:4e:7f:39:cd:f3:5a:7e:
23:92:87:87:88:cd:a6:44:4a:5b:7a:20:83:1d:4a:c0:c9:94:
e5:1f:ff:49:06:cf:9b:3e:bd:85:ec:94:0c:21:aa:54:00:0e:
4e:dc:57:40:32:0e:82:20:f5:38:29:47:c4:a4:16:3b:94:cd:
fb:ad:af:22:90:70:61:3e:9b:cf:f6:c6:f6:a7:ee:b9:f9:59:
71:6d:12:a2:2a:12:ab:f2:d4:7a:1e:c2:5c:08:41:26:5e:14:
58:00:11:da:3b:9b:28:f0:dc:a6:e6:84:2e:41:40:51:db:2f:
ae:29:95:8d:34:cd:d5:c9:de:bc:16:0f:97:68:69:2a:72:dd:
16:29:51:f5:89:03:52:f5:4a:d1:bb:78:78:62:3b:34:aa:ce:
15:67:15:7c:ea:e7:0d:08:5d:d5:c5:83:9a:76:1d:8b:4d:82:
fa:1a:fa:0e:4c:4d:ab:2b:81:ba:1c:73:b2:3d:43:dd:c4:75:
39:e9:59:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org