Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WNCL/cYGKrycG3ivXMlKwigxTWfJAXv8.roa
File: cYGKrycG3ivXMlKwigxTWfJAXv8.roa (raw, json)
Hash identifier: 0luau5b/IINphZo8mWWjywTrmlmLX7X5Fg1UwglLLaI=
Subject key identifier: 71:81:8A:AF:27:06:DE:2B:D7:32:52:B0:8A:0C:53:59:F2:40:5E:FF
Certificate issuer: /CN=9D441AADD239AD926010AFC4DB20454EF2C4B0C1
Certificate serial: 08B6
Authority key identifier: 9D:44:1A:AD:D2:39:AD:92:60:10:AF:C4:DB:20:45:4E:F2:C4:B0:C1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nUQardI5rZJgEK_E2yBFTvLEsME.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WNCL/cYGKrycG3ivXMlKwigxTWfJAXv8.roa
Signing time: Sun 07 Feb 2021 12:40:24 +0000
ROA not before: Sun 07 Feb 2021 12:40:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 134823
IP address blocks: 103.123.132.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2230 (0x8b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9D441AADD239AD926010AFC4DB20454EF2C4B0C1
Validity
Not Before: Feb 7 12:40:24 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=71818AAF2706DE2BD73252B08A0C5359F2405EFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5b:af:41:12:68:49:29:6b:df:b3:2f:25:ef:
12:39:56:9c:2d:ef:06:eb:f9:9d:a2:72:4d:48:b5:
88:48:d6:7e:39:44:5c:06:e5:7b:92:ef:31:b3:5d:
77:3c:b5:56:d0:a1:20:08:49:2a:4b:e9:fc:01:f8:
f4:46:a9:2e:4e:71:74:8a:9b:55:84:f8:e7:a9:12:
0f:fa:7e:a9:a3:0f:a9:a0:0a:c1:1e:b7:90:40:17:
80:42:cd:0a:b4:72:22:0e:2e:3a:4b:44:a4:ae:b0:
0e:bd:63:11:74:42:2b:f0:9a:3a:cc:8b:8f:43:f0:
64:45:06:c0:6a:2f:ab:bb:f5:9b:93:c0:29:63:5e:
16:55:92:1c:00:ce:f6:44:14:9e:39:81:5a:95:37:
b1:b0:19:b2:44:a8:81:8f:86:ec:4b:12:8f:a2:43:
5c:01:ce:cc:6f:5a:8d:99:ef:ad:10:06:28:f8:1b:
94:7c:2f:7d:2c:02:70:57:12:c8:3b:0a:4f:5f:83:
94:9c:bf:6e:73:b9:c6:22:db:89:66:a7:4d:37:17:
30:b3:4e:84:f8:30:00:e0:24:f5:98:a0:35:ed:e3:
9f:0d:83:b8:41:55:ee:17:2e:0a:62:c2:c9:8c:24:
4b:90:c2:9d:ba:a3:48:a2:d5:fa:1d:30:c4:2a:04:
ed:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:81:8A:AF:27:06:DE:2B:D7:32:52:B0:8A:0C:53:59:F2:40:5E:FF
X509v3 Authority Key Identifier:
keyid:9D:44:1A:AD:D2:39:AD:92:60:10:AF:C4:DB:20:45:4E:F2:C4:B0:C1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WNCL/nUQardI5rZJgEK_E2yBFTvLEsME.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nUQardI5rZJgEK_E2yBFTvLEsME.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WNCL/cYGKrycG3ivXMlKwigxTWfJAXv8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.132.0/22
Signature Algorithm: sha256WithRSAEncryption
c2:6e:fb:a0:5f:1a:a3:88:0c:7c:87:6b:c7:cd:19:37:82:d8:
ab:d8:dd:bf:a9:3d:35:5a:b4:cd:a4:f2:8c:bb:56:c2:e7:5d:
ae:88:d9:af:e7:a9:6b:97:b5:cb:9e:85:48:72:09:f2:e1:e6:
a3:8d:31:fc:4b:97:a3:e0:7f:7d:52:b0:17:2c:18:c8:9e:74:
ea:aa:c5:6a:34:4e:7a:4a:48:b7:95:4a:39:4a:75:94:c4:5b:
3b:73:78:e4:32:b5:5f:49:6e:06:8a:53:6c:ac:9b:d8:72:49:
07:39:7a:11:7b:8f:a1:ab:a7:1f:41:9e:cc:7c:15:18:a4:41:
ae:c0:f6:8d:d9:6a:2e:65:05:6f:a4:a6:dd:d7:ea:e1:30:83:
9f:a5:99:3d:79:55:cc:43:2a:1d:87:37:29:30:2a:05:3d:4c:
d2:18:ef:f1:c4:8d:d2:c9:4c:e8:74:50:1e:44:f3:e7:9d:4d:
7c:5f:e1:fb:9a:e4:00:81:7f:66:6b:ff:d5:37:fe:cc:73:7e:
68:77:01:0b:36:ff:b3:93:b1:50:a0:dc:5f:32:59:e7:96:c7:
73:cb:80:c1:f5:14:af:4e:f0:cb:d0:b8:36:51:aa:da:42:9b:
c5:c0:34:95:bb:39:8a:54:d8:2a:20:8f:71:0a:4e:3a:29:4f:
eb:7d:d1:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org