Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/MDICJNpFFeyfBz_lFWpmHC8gTt0.roa
File: MDICJNpFFeyfBz_lFWpmHC8gTt0.roa (raw, json)
Hash identifier: Nf51aWFvFoVGh+oCH44TGXGGocvdvoxn8iHvE+X63nw=
Subject key identifier: 30:32:02:24:DA:45:15:EC:9F:07:3F:E5:15:6A:66:1C:2F:20:4E:DD
Certificate issuer: /CN=4E609BA74186D0B0E3A1A9C010DA1DF0559A1982
Certificate serial: 0738
Authority key identifier: 4E:60:9B:A7:41:86:D0:B0:E3:A1:A9:C0:10:DA:1D:F0:55:9A:19:82
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TmCbp0GG0LDjoanAENod8FWaGYI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/MDICJNpFFeyfBz_lFWpmHC8gTt0.roa
Signing time: Tue 29 Sep 2020 09:51:50 +0000
ROA not before: Tue 29 Sep 2020 09:51:50 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131149
IP address blocks: 103.129.168.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1848 (0x738)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4E609BA74186D0B0E3A1A9C010DA1DF0559A1982
Validity
Not Before: Sep 29 09:51:50 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=30320224DA4515EC9F073FE5156A661C2F204EDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e3:e4:ad:be:fa:fd:16:29:79:37:ed:74:31:
59:d9:04:6f:a1:52:c7:e7:44:84:80:06:4f:7f:8f:
ad:0b:88:ee:ef:73:40:c0:5c:a6:cb:4a:2a:05:6e:
39:d2:e8:a4:f1:76:d5:b1:0d:3d:5d:36:db:17:b2:
f0:0c:b3:ab:f0:94:ef:95:4c:20:fc:31:8e:08:4d:
b6:99:21:f6:0a:d0:1d:7d:10:09:8c:48:99:5e:c4:
d0:3e:3c:92:da:7f:30:e7:a1:1e:09:4f:4b:98:99:
e0:cb:a3:b3:9a:dc:5a:1a:ac:9e:39:36:27:df:e2:
bc:d4:9e:76:71:47:49:40:e3:46:26:0c:62:50:5d:
72:40:75:f3:15:47:10:64:82:a7:86:80:02:ef:d7:
57:01:76:f4:d0:a7:a4:e0:65:f7:57:0a:39:5a:26:
b2:ab:74:33:09:eb:cf:5c:37:85:41:76:cc:70:81:
70:54:6c:84:cf:5f:56:37:33:70:ed:70:cd:23:20:
d5:14:80:9a:8a:88:85:4b:a0:d1:14:73:e5:28:8b:
45:50:41:f1:e1:fc:85:b2:29:05:4e:6e:d9:f4:dd:
e6:8c:a0:18:e3:0c:fa:a9:ca:f0:61:2f:98:d2:b2:
bc:82:4b:f5:3e:1b:94:e0:85:60:e9:56:c1:0d:c7:
d5:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:32:02:24:DA:45:15:EC:9F:07:3F:E5:15:6A:66:1C:2F:20:4E:DD
X509v3 Authority Key Identifier:
keyid:4E:60:9B:A7:41:86:D0:B0:E3:A1:A9:C0:10:DA:1D:F0:55:9A:19:82
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/TmCbp0GG0LDjoanAENod8FWaGYI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TmCbp0GG0LDjoanAENod8FWaGYI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTCOMTW/MDICJNpFFeyfBz_lFWpmHC8gTt0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.129.168.0/22
Signature Algorithm: sha256WithRSAEncryption
29:1b:8e:93:83:ee:4c:4d:d2:a4:ab:9e:f0:78:97:1d:16:ed:
2f:61:30:53:a8:cc:09:38:7e:40:14:1f:d2:5b:a8:85:16:65:
89:1d:75:8c:23:de:ea:90:40:2d:f2:1e:bb:9f:7f:5d:01:50:
43:74:6e:39:9a:a6:ca:06:8f:00:a7:0b:52:a4:b2:1d:49:c3:
8d:c7:4e:2b:34:88:f4:8d:ce:83:c0:a6:ce:90:a0:a1:a3:90:
b3:9c:84:e2:40:40:7c:3d:f4:4f:6a:14:47:bc:cf:36:35:fc:
6b:a2:ad:73:06:68:1a:1f:92:99:09:69:38:19:0b:0c:d0:c7:
be:0e:74:0b:8e:24:da:3a:5c:40:40:b3:56:58:91:2b:db:97:
68:0e:16:53:6b:58:a2:8e:ce:bb:23:fc:48:a1:a0:bb:ad:17:
73:06:f1:2d:75:d7:c7:9e:79:c6:4c:9f:42:55:39:42:8c:66:
79:b4:5b:40:01:8c:f4:a6:a9:c0:d9:8e:63:23:f7:25:2e:ef:
ce:46:64:f6:dc:ef:fb:8d:d0:2f:86:c0:d7:2e:a6:5e:0e:e6:
1b:64:2c:87:de:22:c7:8d:3a:d5:5f:d7:41:02:0a:2c:34:d6:
d8:d0:db:67:9f:10:1e:d3:c9:c0:78:0d:e2:a0:17:f4:c8:49:
57:6b:04:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:07 2023 by rpki-client on console-fra.rpki-client.org