Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/l15ibLho67bhByfsg2GZz8ZFcYM.roa
File: l15ibLho67bhByfsg2GZz8ZFcYM.roa (raw, json)
Hash identifier: FMtQU8klvwlp10D+ZdMl9K/lnRPzzyd5Ss8gkWKr+x0=
Subject key identifier: 97:5E:62:6C:B8:68:EB:B6:E1:07:27:EC:83:61:99:CF:C6:45:71:83
Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial: 0A80
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/l15ibLho67bhByfsg2GZz8ZFcYM.roa
Signing time: Mon 14 Nov 2022 02:35:03 +0000
ROA not before: Mon 14 Nov 2022 02:35:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131149
IP address blocks: 103.1.220.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2688 (0xa80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Validity
Not Before: Nov 14 02:35:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=975E626CB868EBB6E10727EC836199CFC6457183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a7:26:13:10:b5:d3:e4:64:63:be:f8:cf:c5:
fe:4d:41:d6:81:d3:e5:cc:fc:55:00:ae:16:41:22:
4e:0d:1d:29:c0:cb:5a:52:1d:57:65:da:42:8f:58:
7c:3e:25:13:ab:29:e8:26:e5:be:1f:03:f6:a7:93:
98:90:e8:2d:5c:9e:de:24:18:0b:8b:4e:15:45:3f:
5f:84:d3:ec:ba:51:ab:f6:f4:bd:45:ce:ad:38:8d:
12:17:f7:dd:9d:c6:8c:7b:28:ff:b3:75:3e:86:85:
98:cb:37:ea:e6:46:bb:3b:99:46:b6:25:9e:da:1f:
25:98:55:51:4e:2c:58:06:58:1c:37:0d:42:0e:ae:
6b:d4:35:1a:af:01:fd:05:77:f6:07:e5:bc:f1:ab:
f6:f2:48:5e:68:b4:dc:e1:98:fe:27:76:3b:db:bc:
b5:99:3e:21:9f:9b:28:ac:93:df:b3:a3:93:5b:1a:
c7:81:98:a8:b9:b4:2b:d8:ac:ad:fe:fb:d6:95:99:
06:a9:25:a0:d8:17:b7:01:0e:33:2e:89:5e:5e:66:
66:cb:b3:50:59:e9:6e:d3:20:11:32:f8:24:47:6a:
0c:f4:cb:a6:f7:c0:f0:45:02:39:ec:cc:cf:12:d5:
35:bb:a3:88:cd:a4:b2:b3:16:fa:d4:12:5c:b6:60:
6d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:5E:62:6C:B8:68:EB:B6:E1:07:27:EC:83:61:99:CF:C6:45:71:83
X509v3 Authority Key Identifier:
keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/l15ibLho67bhByfsg2GZz8ZFcYM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.1.220.0/22
Signature Algorithm: sha256WithRSAEncryption
18:15:82:62:25:81:ad:86:47:13:f2:b0:a9:74:e9:9d:52:2e:
cf:3d:d7:b2:a1:83:64:68:c0:e7:d0:c6:0e:ba:fc:55:36:e1:
31:fd:fe:00:5d:3f:4f:51:4d:0c:50:c6:b0:f0:f2:eb:f9:dc:
db:9e:e0:f2:22:8e:79:ac:dd:e5:3f:20:1d:1b:ba:4f:e4:22:
4d:bb:23:01:5f:5f:fa:06:25:e1:b5:3d:dc:3a:55:b8:35:a4:
74:c7:92:b7:30:bf:01:59:14:32:9e:43:63:98:57:96:9f:31:
d1:00:b3:d1:70:89:51:4b:9b:c1:48:c5:71:33:27:86:26:9c:
f5:a3:e1:d9:1f:f1:9a:32:2f:c9:93:29:ab:d2:55:2e:73:52:
74:a3:b3:55:49:ad:9e:ec:57:f2:a7:10:57:d3:a3:13:4e:f7:
72:8f:87:09:f3:3c:9c:c9:60:6e:2e:a1:5d:ee:2a:3d:f6:9e:
07:0f:4f:12:56:22:1f:ca:d9:ad:3a:7b:93:4a:46:e1:bc:5d:
3d:44:17:94:f1:eb:c1:b2:9b:f7:d8:0f:16:cb:1d:3f:37:64:
40:7a:26:e3:16:59:f4:4a:44:80:36:ce:98:a8:1b:0b:a7:7e:
28:b0:30:a5:cd:30:97:22:e8:54:01:97:f2:06:81:a4:94:66:
e9:93:4b:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:52 2024 by rpki-client on console-ams.rpki-client.org