Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/MtVefi-BB0kVCCjA5uv2ha2WuiI.roa
File: MtVefi-BB0kVCCjA5uv2ha2WuiI.roa (raw, json)
Hash identifier: CP4g3O5cGTodYAReHpMVSYQTJ5k94KnLDQWSoaKIp6w=
Subject key identifier: 32:D5:5E:7E:2F:81:07:49:15:08:28:C0:E6:EB:F6:85:AD:96:BA:22
Certificate issuer: /CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Certificate serial: 09F8
Authority key identifier: 16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/MtVefi-BB0kVCCjA5uv2ha2WuiI.roa
Signing time: Tue 20 Oct 2020 04:14:57 +0000
ROA not before: Tue 20 Oct 2020 04:14:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 138145
IP address blocks: 103.137.246.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2552 (0x9f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Validity
Not Before: Oct 20 04:14:57 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=32D55E7E2F810749150828C0E6EBF685AD96BA22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:9e:fe:e4:94:ef:01:3e:b0:bc:c8:74:17:0d:
3f:98:29:5b:0b:a3:3f:8a:1b:5c:01:63:b9:76:88:
13:80:70:89:35:11:33:20:14:a3:a6:f7:02:ab:21:
c0:03:93:4e:45:01:16:d9:68:87:63:95:8f:91:c3:
79:81:24:da:32:38:ee:e3:bf:f2:38:b9:85:ad:08:
3f:3b:20:08:ac:75:f6:10:aa:5a:82:77:6b:4e:d6:
b5:e4:67:a3:82:62:49:a4:4d:9e:e0:b8:b1:2a:2c:
5f:1e:d5:c1:63:09:36:d3:50:09:2d:c6:62:16:cb:
35:ef:4a:44:fb:b9:7f:a8:21:b2:83:74:27:6f:91:
35:fd:7d:22:3c:27:5e:5d:02:19:3c:20:37:9d:d3:
3a:e0:10:d0:5e:9f:a9:dd:34:d2:b7:22:a5:c5:18:
8b:7c:ad:1a:9b:e6:4b:dd:fa:75:fd:7d:50:67:84:
ce:9e:32:6e:50:43:a7:74:94:80:26:f6:e9:9f:cb:
af:29:e6:db:1c:52:76:bb:26:d7:a5:d0:0f:29:5f:
ab:7a:cf:b1:9c:cf:22:8f:c1:c4:c5:1c:7a:31:f1:
28:59:0c:08:6a:21:db:95:37:9a:c3:23:bc:77:25:
0b:6b:c0:37:ff:fc:0e:17:e5:24:66:1c:17:16:9d:
48:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:D5:5E:7E:2F:81:07:49:15:08:28:C0:E6:EB:F6:85:AD:96:BA:22
X509v3 Authority Key Identifier:
keyid:16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/MtVefi-BB0kVCCjA5uv2ha2WuiI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.246.0/23
Signature Algorithm: sha256WithRSAEncryption
59:cc:a0:9e:90:16:2d:e1:ca:58:79:af:9a:66:2d:ec:65:03:
52:65:8c:b0:c9:eb:5d:d7:76:ce:2d:5a:eb:ef:78:4b:5c:e7:
86:f2:f8:50:24:91:ac:61:95:7c:04:a0:5c:dd:66:56:48:9b:
c1:3c:73:fb:1c:69:01:7e:0b:b5:88:2b:4e:82:36:2d:51:84:
56:90:c1:6f:59:7d:3a:d1:ae:53:70:79:e3:b7:9d:b2:fc:05:
94:c6:63:6b:e6:ac:16:cb:86:f1:52:67:37:55:69:5a:c8:04:
3c:c2:5d:be:ee:5a:62:e2:9d:17:2d:0d:04:9e:dd:de:e4:e3:
12:f4:37:34:14:05:6f:e0:04:52:54:d5:52:8a:8e:99:70:d2:
66:b6:ac:68:0b:49:c8:78:2a:81:81:d7:3d:b4:4d:52:29:ab:
72:b9:a1:21:55:47:66:e9:0e:a7:39:82:66:b8:c0:cc:7c:cf:
86:b0:7b:d7:da:17:4b:54:e1:fc:c4:1a:cd:8e:7b:8f:70:82:
70:9e:df:20:fd:7e:22:37:d7:8c:a4:41:f9:66:57:ec:cd:60:
0b:ca:a0:e4:07:aa:01:c9:da:3e:96:73:6a:1e:ad:83:e2:b1:
eb:50:0a:7b:06:ac:e0:f8:08:f8:c1:7f:24:a4:ff:ab:bd:50:
df:40:e4:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:02 2023 by rpki-client on console-fra.rpki-client.org