Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/EggCHJUA1FJlofDNR7GlXFIrNdQ.roa
File: EggCHJUA1FJlofDNR7GlXFIrNdQ.roa (raw, json)
Hash identifier: PCjs6A38YKsl/3Pkbyg4xcf7OPYRiW+c7s05o1esuzg=
Subject key identifier: 12:08:02:1C:95:00:D4:52:65:A1:F0:CD:47:B1:A5:5C:52:2B:35:D4
Certificate issuer: /CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Certificate serial: 033D
Authority key identifier: AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/EggCHJUA1FJlofDNR7GlXFIrNdQ.roa
Signing time: Sun 07 Feb 2021 13:06:16 +0000
ROA not before: Sun 07 Feb 2021 13:06:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17415
IP address blocks: 103.152.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 829 (0x33d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Validity
Not Before: Feb 7 13:06:16 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1208021C9500D45265A1F0CD47B1A55C522B35D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:df:44:a1:c1:f3:a8:92:e2:ac:24:13:cc:93:
e0:85:0c:96:ec:99:9b:03:8b:32:84:da:a1:95:b6:
90:1f:02:a8:5c:cc:f5:1a:d1:43:bc:5c:d3:32:6c:
34:22:46:0b:68:eb:ee:61:d4:b9:68:f9:d1:53:d3:
b0:22:40:b7:60:a3:36:4f:18:5b:1b:20:7b:5c:e0:
8a:95:8e:fe:18:a2:91:f9:ac:9f:65:f1:08:bf:f3:
d8:8e:5d:b7:d1:1b:58:a9:de:16:ff:19:50:2f:d3:
2b:11:4f:d2:5e:69:ee:68:26:7d:5b:cc:fc:f5:14:
f2:07:c2:ec:b8:de:7c:d3:dc:d6:a9:e8:55:a9:63:
db:1a:6c:b8:64:dd:ad:68:3b:e2:98:3d:7b:36:3f:
c4:88:75:dc:3e:cb:69:3a:06:26:6e:8b:35:54:1b:
5f:f1:34:9b:7b:8d:65:85:8e:4d:b7:4d:64:d3:85:
bf:2a:28:5a:8b:e5:1d:ff:9e:49:6e:c2:b3:43:40:
a6:e7:a5:3f:bb:6b:da:58:51:7b:92:9c:47:c4:c8:
cd:a9:31:6a:ba:bc:53:c0:cc:cd:f0:f8:6d:b2:2a:
07:99:45:af:01:c8:31:51:1a:6a:49:05:3d:c7:54:
3e:4f:79:94:46:e6:62:e6:7a:3d:89:89:cc:78:a4:
c1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:08:02:1C:95:00:D4:52:65:A1:F0:CD:47:B1:A5:5C:52:2B:35:D4
X509v3 Authority Key Identifier:
keyid:AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/EggCHJUA1FJlofDNR7GlXFIrNdQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.203.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:7c:d5:a0:39:57:c0:9d:50:a6:17:bc:26:73:49:07:a6:22:
4a:8d:ad:53:99:0f:79:09:60:7b:f5:d8:de:eb:c9:81:c4:71:
ca:05:e7:dd:33:32:27:08:1d:af:f8:e5:b5:59:36:5f:4c:7f:
68:9d:67:94:80:6d:89:42:75:84:1f:a8:60:df:e7:2c:99:55:
a9:e2:3d:04:c8:99:d9:36:1a:46:3c:9c:d4:34:06:94:55:93:
d0:ce:9f:60:a3:a2:c7:c3:2f:33:9d:82:46:18:0b:da:da:10:
fc:77:31:ca:4f:dd:74:08:99:b3:7b:12:f1:f3:b1:8f:96:c5:
9a:74:02:88:6f:b6:72:0d:75:88:7c:ff:df:08:e4:7a:51:8a:
34:6a:26:34:1d:cc:4b:9f:5b:90:21:01:57:56:e8:b9:5f:12:
55:3d:59:bc:7a:5a:f1:b2:12:e4:cc:29:28:1f:01:2d:a7:1d:
c4:c7:3c:47:b0:65:a1:33:cf:45:7a:bc:eb:8f:2f:ea:84:03:
c4:a6:57:e5:14:82:7d:03:42:4c:66:50:a6:61:da:a7:c5:97:
1c:55:e9:96:8c:3d:9a:41:b9:6c:73:07:d3:ac:31:6e:44:7e:
fe:11:15:e3:6f:af:d0:e1:6d:5f:91:a1:96:09:ce:89:cb:37:
e7:de:55:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org