Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MCK/tpJCNr75SfDLIgAP63MA2IlMiwQ.roa
File: tpJCNr75SfDLIgAP63MA2IlMiwQ.roa (raw, json)
Hash identifier: daeycpkukvPTgso5tDhOJxJCjFfH6PEldpyX4alW7CQ=
Subject key identifier: B6:92:42:36:BE:F9:49:F0:CB:22:00:0F:EB:73:00:D8:89:4C:8B:04
Certificate issuer: /CN=83CF8C19843BACDE6445D4BD4A1E66441B23F3E3
Certificate serial: 063F
Authority key identifier: 83:CF:8C:19:84:3B:AC:DE:64:45:D4:BD:4A:1E:66:44:1B:23:F3:E3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MCK/tpJCNr75SfDLIgAP63MA2IlMiwQ.roa
Signing time: Thu 15 Sep 2022 02:38:10 +0000
ROA not before: Thu 15 Sep 2022 02:38:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131618
IP address blocks: 103.148.68.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1599 (0x63f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83CF8C19843BACDE6445D4BD4A1E66441B23F3E3
Validity
Not Before: Sep 15 02:38:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B6924236BEF949F0CB22000FEB7300D8894C8B04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f7:12:68:45:69:e8:72:18:5d:9e:68:21:3c:
67:93:c4:34:16:c1:67:5d:c2:5c:e0:b8:f0:30:eb:
88:ea:21:13:64:67:0d:80:83:3a:c4:5f:10:f3:11:
75:d8:8a:43:f1:fc:de:94:f5:d9:80:c0:f3:c1:7c:
81:04:f1:1c:50:0e:39:a0:77:a5:ab:fd:5d:89:08:
cb:4b:2e:b0:0a:09:0b:9b:17:be:23:d2:33:3b:64:
a7:33:ac:af:10:fb:fc:23:09:46:1b:d2:76:59:e2:
77:87:18:9a:16:6f:1c:63:d0:24:d3:6f:13:54:be:
bc:d9:52:38:29:d1:2a:bb:2a:4e:f1:43:aa:5a:a5:
df:40:d6:00:b4:db:85:6d:68:cd:16:3f:14:18:4c:
d1:2d:c0:5d:70:7c:b3:d7:fa:d0:5d:7f:16:2d:6d:
ec:e1:34:7c:97:a1:c4:7a:dc:f4:69:a3:14:60:1e:
4b:5f:3d:b9:6e:ed:fa:79:ec:40:97:88:bd:18:0b:
3f:94:d4:31:cd:e8:d5:00:1a:d6:e9:0a:89:21:68:
3a:19:af:b4:be:7d:5d:5c:31:f0:e6:34:fe:e9:2a:
5c:66:d1:68:e8:b6:d9:2d:b9:a5:8a:54:b1:d8:99:
d1:27:ba:29:9d:a4:84:c0:9b:97:59:17:00:bc:87:
0d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:92:42:36:BE:F9:49:F0:CB:22:00:0F:EB:73:00:D8:89:4C:8B:04
X509v3 Authority Key Identifier:
keyid:83:CF:8C:19:84:3B:AC:DE:64:45:D4:BD:4A:1E:66:44:1B:23:F3:E3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MCK/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MCK/tpJCNr75SfDLIgAP63MA2IlMiwQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.148.68.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:a6:f8:64:36:18:6d:f4:9f:9b:38:7d:a6:63:ad:49:de:a0:
42:d2:d0:58:17:b4:15:f4:0d:2c:36:ee:a2:eb:7a:b4:a3:07:
db:1e:25:35:2d:c9:95:3b:40:78:d0:a2:50:2b:af:2d:fc:77:
81:0f:fc:10:14:eb:48:e9:36:13:8d:43:6b:d0:fb:92:d8:50:
b1:fb:27:24:5d:b3:4b:a5:ec:da:b9:cf:00:ca:e0:1c:c2:a8:
3d:35:ba:af:ef:d7:d4:5e:f4:ce:73:4e:8d:40:b6:9a:ea:33:
78:67:95:80:d7:28:c1:ec:e1:77:a2:27:0f:d3:af:09:f0:84:
cf:a3:5e:00:82:46:f0:2c:48:e4:08:7e:08:ea:9d:05:8c:1e:
39:e3:e6:65:c5:13:c6:39:93:be:d2:25:d9:d8:27:ec:40:16:
4f:dd:f5:f3:16:fc:0b:fa:89:62:40:cc:13:c4:d0:fe:00:e0:
4c:f2:c1:4f:1f:9a:19:55:b7:9c:c0:ec:7c:5a:4b:95:b4:5b:
c2:fc:4c:88:c7:86:c8:a5:fe:8d:f9:8f:ce:d0:92:11:c4:53:
84:a9:0e:8e:6f:69:78:c8:fb:1c:4b:b2:e7:3c:6a:e7:64:24:
df:28:80:7e:fc:70:7d:47:cd:5d:8e:a9:fd:aa:73:78:5d:1d:
68:f6:74:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:11 2024 by rpki-client on console-ams.rpki-client.org