Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/26Jj3NrfYSZbwNdIODR2BUvFQ_M.roa
File: 26Jj3NrfYSZbwNdIODR2BUvFQ_M.roa (raw, json)
Hash identifier: ys+37GgUTjGG7MCXnQjQ+R7bS4T/sUvIEMErx+RZ7js=
Subject key identifier: DB:A2:63:DC:DA:DF:61:26:5B:C0:D7:48:38:34:76:05:4B:C5:43:F3
Certificate issuer: /CN=602CBCE32DD76D0BB39F5A706324248869119435
Certificate serial: 0953
Authority key identifier: 60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/26Jj3NrfYSZbwNdIODR2BUvFQ_M.roa
Signing time: Wed 29 Sep 2021 02:41:43 +0000
ROA not before: Wed 29 Sep 2021 02:41:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131587
IP address blocks: 103.228.216.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2387 (0x953)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=602CBCE32DD76D0BB39F5A706324248869119435
Validity
Not Before: Sep 29 02:41:43 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DBA263DCDADF61265BC0D748383476054BC543F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:55:da:8c:e9:88:ec:fb:80:b3:b2:93:07:51:
ae:8b:2c:ee:95:a8:ba:4c:13:17:26:3e:a1:6e:14:
e8:b1:ca:60:29:9f:8a:9d:98:1e:df:18:99:c0:b9:
30:5e:f9:83:9e:c8:a7:04:72:e6:b0:4a:28:a5:79:
ec:e9:83:e3:9c:c7:39:73:5c:97:ac:64:e5:f4:94:
41:1c:db:73:1c:e7:8c:90:0b:e8:84:4f:1b:bd:0a:
72:9b:15:14:12:ae:40:c8:3b:99:b2:7e:d3:3f:db:
8e:54:db:49:20:90:c1:83:d4:54:08:5f:e4:42:0b:
e9:6f:4e:61:81:41:b2:92:89:2d:f1:2c:06:b8:f8:
ca:db:9b:bb:9e:4f:bd:53:61:9e:09:59:26:8a:1f:
90:b9:b5:bb:7f:38:17:ca:77:f4:dd:cc:59:f1:a4:
9f:b6:da:22:e9:4c:2d:8c:d3:79:9a:d2:b4:2b:6d:
9e:66:c8:73:af:59:eb:6f:b3:ae:4c:5b:11:ac:45:
ec:29:0b:ee:0d:be:8a:f0:13:50:ef:44:0d:7b:7d:
85:a7:b1:bb:1e:47:5a:23:78:8a:f8:31:d3:24:a1:
5d:c0:71:71:a1:c2:0a:10:33:47:eb:0d:f3:61:a0:
61:3e:73:91:45:8d:34:fa:13:f1:53:0b:17:93:9f:
dd:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A2:63:DC:DA:DF:61:26:5B:C0:D7:48:38:34:76:05:4B:C5:43:F3
X509v3 Authority Key Identifier:
keyid:60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/26Jj3NrfYSZbwNdIODR2BUvFQ_M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.228.216.0/22
Signature Algorithm: sha256WithRSAEncryption
79:3c:7e:12:8b:36:d9:53:f8:3d:dd:39:1e:0b:a6:c6:8b:3b:
6f:9e:33:a0:c4:f1:44:95:2c:a5:be:e3:1c:75:b9:be:67:33:
a2:59:4c:69:dc:5f:7a:af:4e:69:49:89:b3:d6:fa:c0:78:57:
0f:12:62:3b:98:6c:65:37:a6:a4:1a:4f:3e:9d:77:50:ea:cf:
60:9d:af:87:fe:80:04:09:62:f6:3e:ec:db:84:f0:07:9f:39:
09:26:66:28:dc:c4:15:e5:af:74:f7:43:e2:93:4e:b0:8e:7d:
ac:97:c5:fb:a0:d5:d6:c1:94:d3:a5:4c:1b:00:b0:67:5f:b0:
3c:b0:98:a0:ee:7a:ac:65:d4:0c:eb:d0:1d:a6:df:24:e3:25:
6d:33:9c:9e:10:e5:17:bc:2f:03:3e:a4:c5:63:2f:c5:a2:8e:
1b:ce:5e:03:87:52:48:b2:a7:f5:74:2b:51:ee:aa:d7:0d:3f:
8e:3b:71:80:8e:cd:ee:30:3f:7a:6e:6a:fe:1f:02:9d:e9:8e:
fa:bf:7b:0a:b0:53:ad:12:e3:49:32:a2:17:08:c3:7a:9e:6b:
dd:62:99:b5:23:af:33:6a:cb:85:c3:0e:0b:29:c7:76:f2:79:
41:52:ab:3e:73:ba:cd:36:1a:df:27:cb:62:f8:b1:4b:b6:e1:
c4:77:d1:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org