Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WSN-TW/6pW5Lc1GIwTixGQBEB9huW1OxTk.roa
File: 6pW5Lc1GIwTixGQBEB9huW1OxTk.roa (raw, json)
Hash identifier: S7FdklFDBNDKS7AnebiaT3IQ4t2LBoM9TR1So3NKdbk=
Subject key identifier: EA:95:B9:2D:CD:46:23:04:E2:C4:64:01:10:1F:61:B9:6D:4E:C5:39
Certificate issuer: /CN=1CB1CA70A33248FB3DAEE8BF41E2DAA76A7DCFD3
Certificate serial: 08BC
Authority key identifier: 1C:B1:CA:70:A3:32:48:FB:3D:AE:E8:BF:41:E2:DA:A7:6A:7D:CF:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HLHKcKMySPs9rui_QeLap2p9z9M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WSN-TW/6pW5Lc1GIwTixGQBEB9huW1OxTk.roa
Signing time: Sun 07 Feb 2021 11:49:39 +0000
ROA not before: Sun 07 Feb 2021 11:49:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131603
IP address blocks: 103.42.144.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2236 (0x8bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1CB1CA70A33248FB3DAEE8BF41E2DAA76A7DCFD3
Validity
Not Before: Feb 7 11:49:39 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EA95B92DCD462304E2C46401101F61B96D4EC539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:54:a6:73:3a:9e:21:e0:13:be:54:cd:75:29:
b8:8c:d4:41:fa:e7:d4:da:3d:57:bc:8c:51:2f:8e:
87:c3:60:8c:69:80:4c:b2:e4:e4:74:26:92:84:0f:
93:c8:cf:fa:54:78:c2:53:65:d1:35:eb:22:7c:a0:
1d:29:60:b7:4a:3f:9e:da:90:46:ca:2f:48:57:21:
ca:ce:1c:da:75:ed:0b:85:79:91:8d:54:20:07:f2:
0a:1e:7e:21:65:c4:b7:e0:a2:0c:82:6a:e4:36:04:
85:47:58:2d:98:bf:06:a6:c6:a1:cd:ad:4a:77:a0:
48:70:57:3a:5b:a5:98:a5:e9:58:d6:25:58:96:28:
a9:19:fd:68:13:de:a2:ba:36:d6:2c:24:d8:7c:43:
c9:f6:a9:55:a1:e7:41:ff:fa:ac:32:3c:8d:d4:34:
39:dc:06:e6:30:7f:3a:11:b6:cc:82:8a:a6:02:27:
1d:f2:2d:40:26:aa:12:61:c4:42:e9:eb:9d:89:58:
03:9f:7a:65:10:10:46:3b:7a:d9:6c:24:6b:ee:6d:
8b:fb:e8:20:26:37:09:14:e0:50:61:38:f3:b6:78:
7a:02:31:4a:81:ae:12:0c:aa:51:2d:78:ee:06:d0:
3b:da:48:f3:63:0b:8b:b1:46:05:40:bf:6c:b2:a4:
24:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:95:B9:2D:CD:46:23:04:E2:C4:64:01:10:1F:61:B9:6D:4E:C5:39
X509v3 Authority Key Identifier:
keyid:1C:B1:CA:70:A3:32:48:FB:3D:AE:E8:BF:41:E2:DA:A7:6A:7D:CF:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WSN-TW/HLHKcKMySPs9rui_QeLap2p9z9M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HLHKcKMySPs9rui_QeLap2p9z9M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WSN-TW/6pW5Lc1GIwTixGQBEB9huW1OxTk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.42.144.0/22
Signature Algorithm: sha256WithRSAEncryption
75:e5:52:3c:bb:b0:26:4e:21:3b:21:61:d0:c6:25:4a:c4:6b:
35:dc:aa:e6:a1:7d:6b:ca:5c:8d:9b:eb:b7:91:5e:e6:c6:73:
b2:0a:35:94:82:c7:eb:b4:e8:53:6d:c2:87:c3:b9:52:9e:d2:
b9:50:0f:7e:89:21:01:54:2e:e9:39:de:37:a5:ce:e7:a9:f0:
53:ec:0b:19:95:8a:68:d6:19:93:93:23:b9:0c:22:d8:34:da:
50:48:3b:48:44:12:d1:3e:6f:f3:d0:c1:54:66:0c:9c:02:b0:
5c:1e:6c:db:6f:29:78:38:a9:90:88:82:95:24:9e:ff:8b:b0:
06:d2:a4:64:a9:0a:d0:83:90:5e:c2:4e:b9:0a:40:dd:bb:5b:
ca:c4:6b:82:99:e6:12:6a:58:ff:6b:ed:25:92:0a:43:81:79:
31:0f:4e:fe:f4:f7:59:ed:f4:34:7e:76:06:a8:92:32:ad:8f:
00:70:3e:35:14:df:13:6f:87:5c:05:73:68:05:32:bc:d5:82:
3e:eb:e7:8c:e5:56:6d:72:46:90:32:0b:8d:2b:d3:3f:1e:da:
09:24:e5:eb:0e:52:2f:f3:4f:07:4b:f2:04:c2:7b:96:ed:2b:
3c:d6:68:d9:30:db:95:fb:f0:82:56:ac:d5:1f:2c:41:87:a2:
2e:05:95:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org