Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/fPfxIZqCKnvXa6iy7Q8Q4fRDNGc.roa
File: fPfxIZqCKnvXa6iy7Q8Q4fRDNGc.roa (raw, json)
Hash identifier: IvCJm/YdSFlNhka001sAMRwhG1+ZPaA8x8Cj8CzY3uk=
Subject key identifier: 7C:F7:F1:21:9A:82:2A:7B:D7:6B:A8:B2:ED:0F:10:E1:F4:43:34:67
Certificate issuer: /CN=602CBCE32DD76D0BB39F5A706324248869119435
Certificate serial: 0776
Authority key identifier: 60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/fPfxIZqCKnvXa6iy7Q8Q4fRDNGc.roa
Signing time: Tue 29 Sep 2020 10:04:55 +0000
ROA not before: Tue 29 Sep 2020 10:04:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131587
IP address blocks: 103.228.216.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1910 (0x776)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=602CBCE32DD76D0BB39F5A706324248869119435
Validity
Not Before: Sep 29 10:04:55 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7CF7F1219A822A7BD76BA8B2ED0F10E1F4433467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:85:43:b2:22:9b:08:ab:33:c7:2f:42:12:70:
10:97:0c:0b:fd:c6:45:8c:20:ee:33:7a:6f:2c:87:
54:52:83:89:f0:7c:61:d6:a0:39:3e:4a:48:80:19:
a4:f0:4b:d2:c5:1b:c8:c7:c9:8e:9c:cb:d3:7d:d8:
bc:cc:d8:d2:11:26:d0:5f:99:e7:03:89:27:b7:7b:
00:f3:7a:4c:26:47:bc:63:53:57:31:7a:f2:72:40:
2b:52:4b:1a:1c:9b:4b:2f:32:77:17:dc:70:d7:6a:
34:31:72:e5:5a:c2:88:86:6f:bd:db:9d:24:f2:68:
70:76:43:f4:d7:b3:c4:c8:aa:49:46:1e:5e:61:c7:
e3:aa:5f:81:6e:6b:4c:db:de:72:08:83:2a:a0:c7:
d0:28:8a:f6:69:46:db:85:25:d9:96:1b:2a:4f:57:
b4:f0:73:f3:d8:4d:f0:31:06:37:61:09:cf:3e:1f:
ef:8a:45:78:52:5c:82:40:a5:69:fb:f2:3b:0f:9a:
bc:8e:23:6a:e2:3f:de:fa:5e:90:a5:68:7d:85:2e:
9b:85:4c:36:6c:ab:1c:4a:7a:2d:12:4e:65:f8:b0:
9f:a0:37:d3:a3:4f:64:3f:00:5d:86:7a:1d:9b:52:
24:3c:0b:29:39:23:fc:16:15:17:0c:28:06:3a:da:
1c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:F7:F1:21:9A:82:2A:7B:D7:6B:A8:B2:ED:0F:10:E1:F4:43:34:67
X509v3 Authority Key Identifier:
keyid:60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/fPfxIZqCKnvXa6iy7Q8Q4fRDNGc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.228.216.0/22
Signature Algorithm: sha256WithRSAEncryption
53:80:30:e4:14:a4:a5:4f:e0:db:36:80:41:b6:65:ac:a7:b6:
87:51:c5:2e:d6:3f:e3:5c:63:8a:68:ca:e2:54:4a:36:8d:6a:
a2:35:3c:a6:2d:06:b5:89:e6:3f:c1:16:7f:a6:dc:04:9a:4e:
68:05:f1:fa:4e:a3:cb:81:37:de:f6:84:ad:8f:4a:6d:3a:56:
11:e4:53:15:30:1a:d7:a2:dd:0c:e2:56:18:22:e6:4a:cc:6c:
e2:0c:1c:64:a7:7d:2d:21:5a:3c:dd:a1:bf:82:c0:4e:56:d8:
78:ce:c9:f5:a6:64:e3:19:86:ad:17:89:9a:54:f7:36:0e:4a:
b7:2c:34:27:0f:f0:b5:34:0c:20:1c:c9:e3:61:cb:3f:c5:da:
d9:12:a8:61:ee:4c:b5:96:ba:58:1c:a4:4d:66:45:f9:5a:42:
26:ad:83:5b:a9:9c:db:d3:13:6f:4f:78:c9:51:75:05:7f:ff:
72:6e:d4:f1:ab:46:ee:bc:75:16:9d:07:4f:b6:16:80:c9:62:
db:2d:c4:1a:88:df:f6:91:bd:cb:eb:dc:f3:44:18:bd:8b:1c:
37:75:7d:2e:50:37:56:cc:1c:51:79:e2:19:b5:d5:2f:d4:bf:
6e:93:b6:67:0a:eb:18:42:cf:21:36:a9:b4:5d:7a:c0:6c:3c:
c9:86:8f:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org