Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CKMATES/G8IOMwBL6GWAmhntGpUhGI6YFrw.roa
File: G8IOMwBL6GWAmhntGpUhGI6YFrw.roa (raw, json)
Hash identifier: grw+rVxXsgeq1KIQ80rbIurPph9X6PiD86P49V0HHEM=
Subject key identifier: 1B:C2:0E:33:00:4B:E8:65:80:9A:19:ED:1A:95:21:18:8E:98:16:BC
Certificate issuer: /CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Certificate serial: 091E
Authority key identifier: 5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/G8IOMwBL6GWAmhntGpUhGI6YFrw.roa
Signing time: Wed 29 Sep 2021 02:52:26 +0000
ROA not before: Wed 29 Sep 2021 02:52:26 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 14618
IP address blocks: 103.119.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2334 (0x91e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5CD10AD5B6A4775D3C504D661071F8CE243E2807
Validity
Not Before: Sep 29 02:52:26 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1BC20E33004BE865809A19ED1A9521188E9816BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:49:64:ec:45:90:df:fb:b7:66:3b:b2:b7:11:
76:79:2b:12:c9:06:bc:42:60:e1:da:a9:44:52:e2:
eb:bc:52:f6:a2:51:90:cd:27:eb:de:70:81:29:0b:
54:f9:19:43:18:7f:9b:46:48:9e:7c:9d:9e:7f:3d:
62:d1:18:91:3a:7c:0a:28:d5:5c:4d:d2:8c:cf:f6:
99:2e:7e:ed:16:1b:5f:20:79:bb:0b:92:36:5e:5f:
69:82:2d:fd:3b:f9:9d:29:b9:1a:de:26:03:6b:09:
11:fa:c0:62:52:33:29:b0:f6:91:75:23:0f:8e:d4:
0e:29:69:57:54:d0:72:f5:07:81:7e:43:3f:15:31:
42:0d:c8:56:de:86:2e:19:67:1d:c2:73:b2:98:55:
11:51:d5:ee:41:4f:33:37:40:9d:a2:fe:b0:93:14:
31:f7:a2:92:b0:5d:4d:53:8d:36:14:fb:7d:2f:bb:
46:d1:2a:34:34:fe:22:d9:a8:d7:e1:5a:81:81:41:
39:be:3a:dc:04:a8:be:f5:1d:84:73:91:bc:89:ff:
14:8d:b1:35:46:f8:5f:70:55:e1:5d:8a:7e:62:58:
6f:4d:51:9b:a5:63:20:03:07:5c:38:e0:4c:26:a3:
97:73:9b:85:7c:a0:e5:aa:9e:f7:b7:68:83:38:4e:
7d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:C2:0E:33:00:4B:E8:65:80:9A:19:ED:1A:95:21:18:8E:98:16:BC
X509v3 Authority Key Identifier:
keyid:5C:D1:0A:D5:B6:A4:77:5D:3C:50:4D:66:10:71:F8:CE:24:3E:28:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/XNEK1bakd108UE1mEHH4ziQ-KAc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XNEK1bakd108UE1mEHH4ziQ-KAc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CKMATES/G8IOMwBL6GWAmhntGpUhGI6YFrw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.119.213.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:63:0c:9f:bc:0c:db:9d:60:22:45:89:a1:23:72:c8:97:6f:
e8:5b:d8:68:fe:b0:e1:83:72:28:82:64:78:7e:03:f7:7d:b7:
5d:1d:ac:03:17:87:90:28:1a:a1:dc:b0:d9:d1:7c:b8:58:13:
06:06:54:e5:d2:ea:f2:ef:69:de:03:4b:d8:54:d9:0c:ac:56:
20:29:79:63:90:00:1b:75:ec:38:5f:e1:ca:ad:e6:53:25:dc:
c6:6b:61:76:d7:89:1a:d6:2b:08:2c:7a:92:09:1a:53:d3:4e:
ee:6f:3c:68:66:82:13:66:9f:43:f0:d8:c9:8a:7b:dd:8f:4a:
1e:4f:29:63:52:7d:da:bc:c3:dc:3e:ff:e8:c8:fa:68:23:12:
3c:87:8c:02:31:80:cc:43:6f:81:a5:52:cb:a8:5d:fc:d4:c9:
39:b6:09:45:5d:c5:dc:1a:16:90:9b:df:eb:47:e7:c0:77:12:
bf:b0:6a:01:98:2d:89:ca:3e:62:db:f7:de:9a:33:97:51:33:
f7:8b:b8:f8:73:f3:88:50:75:13:b3:05:9d:2a:1a:98:ef:8f:
6b:f3:80:74:c5:f4:31:53:2b:89:e8:0b:67:99:12:84:b2:82:
b0:ce:54:de:c5:3d:fa:1d:73:71:10:dd:2f:fe:61:74:d2:46:
a0:bd:10:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:59 2023 by rpki-client on console-fra.rpki-client.org