Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/mqLl7NAkQpjtSJGRxIzuqNj-tVg.roa
File: mqLl7NAkQpjtSJGRxIzuqNj-tVg.roa (raw, json)
Hash identifier: SBV/FaOPgNLM3Dd9UimwEji/DLPCtFQb29po9hOoYEw=
Subject key identifier: 9A:A2:E5:EC:D0:24:42:98:ED:48:91:91:C4:8C:EE:A8:D8:FE:B5:58
Certificate issuer: /CN=602CBCE32DD76D0BB39F5A706324248869119435
Certificate serial: 08B5
Authority key identifier: 60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/mqLl7NAkQpjtSJGRxIzuqNj-tVg.roa
Signing time: Sun 07 Feb 2021 12:40:22 +0000
ROA not before: Sun 07 Feb 2021 12:40:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131587
IP address blocks: 103.228.216.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2229 (0x8b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=602CBCE32DD76D0BB39F5A706324248869119435
Validity
Not Before: Feb 7 12:40:22 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9AA2E5ECD0244298ED489191C48CEEA8D8FEB558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:2b:29:d6:e0:56:a7:19:0c:8a:00:ef:aa:f1:
dd:01:90:69:9a:42:c9:83:3c:c6:61:9a:84:c4:00:
21:ca:9c:26:59:d2:98:2b:a2:df:84:3c:74:33:81:
d8:fe:a3:6a:0a:b7:08:af:32:2f:10:3e:ff:7b:e5:
0d:06:ae:b5:31:7b:98:fe:db:fd:c6:b8:8a:bb:58:
56:de:5a:9d:43:42:3e:e4:5f:26:d0:24:dd:ac:43:
5f:53:6f:30:c5:ea:ce:2d:8d:8e:58:f9:f5:b6:b5:
d2:8c:bf:e9:5e:0d:22:c5:ba:50:91:fc:86:b2:02:
68:ba:50:43:03:10:75:4f:63:f9:3e:86:8d:9f:1e:
fa:f1:fa:f5:5c:9c:32:eb:f0:c6:9e:56:59:1b:90:
b2:6c:4a:32:80:db:82:b6:ec:f8:2c:07:cd:5d:14:
fd:ed:3c:6b:3f:f5:2e:49:b4:b0:b5:c4:37:05:1e:
c7:36:89:0b:70:43:a6:28:13:0b:f5:21:3d:83:f4:
07:dd:75:49:57:a1:42:83:5a:29:e3:c4:47:71:1c:
a8:c4:eb:92:f9:0b:16:0b:5a:f5:88:5d:85:01:42:
18:a2:90:cf:77:96:2e:e2:ce:6c:84:63:cb:cc:8b:
b4:79:65:6e:80:51:ff:57:53:d8:6c:c6:eb:97:34:
80:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:A2:E5:EC:D0:24:42:98:ED:48:91:91:C4:8C:EE:A8:D8:FE:B5:58
X509v3 Authority Key Identifier:
keyid:60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/mqLl7NAkQpjtSJGRxIzuqNj-tVg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.228.216.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:70:fa:00:9f:a9:7d:aa:aa:23:e9:f4:f8:48:b0:17:3a:4a:
c3:4e:d8:37:d5:bb:83:18:97:53:2d:9b:dc:79:ef:32:ed:bf:
c2:23:e7:b3:32:7d:73:a7:5a:c0:7f:59:4a:8b:76:da:59:32:
54:cb:33:22:85:56:19:ce:15:26:9d:6f:37:7a:98:fa:08:f8:
b8:39:09:02:a7:6a:df:3f:47:ca:30:b1:43:e9:28:f2:d7:c3:
08:2c:7d:1b:c5:3b:45:0c:77:80:5c:63:bc:44:df:a1:ac:35:
f6:b9:e3:04:10:99:69:13:0e:bc:60:f8:dc:13:86:11:7c:2c:
66:9e:ef:c3:c8:20:6a:7d:a8:e2:b6:ce:41:27:c6:8a:3d:37:
d9:ea:01:0a:19:ea:30:e9:59:d9:c1:48:80:1d:4a:47:f0:d8:
ac:01:6b:5d:76:79:ed:92:1c:9b:c3:dd:d8:b5:2c:ad:98:73:
54:00:19:83:84:51:69:d8:bf:c1:f0:ba:71:39:86:ed:dc:78:
65:81:62:6f:3d:3d:4a:44:bf:dc:c8:6a:29:73:d2:5b:b6:db:
6e:0c:40:49:c2:83:cc:13:1c:cb:20:78:4e:ea:ba:37:df:8e:
4b:f9:f5:4f:38:38:47:98:20:93:40:43:70:fe:8d:a7:f2:2c:
03:37:ba:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org