Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/b4POVxw71BuaFxdevqvynIA5Wzs.roa
File: b4POVxw71BuaFxdevqvynIA5Wzs.roa (raw, json)
Hash identifier: IH3LRMISfcyjQQd0K+Oi2xQAqtDLKv85EM6bRCaw6IA=
Subject key identifier: 6F:83:CE:57:1C:3B:D4:1B:9A:17:17:5E:BE:AB:F2:9C:80:39:5B:3B
Certificate issuer: /CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Certificate serial: 04DD
Authority key identifier: AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/b4POVxw71BuaFxdevqvynIA5Wzs.roa
Signing time: Thu 15 Sep 2022 02:38:23 +0000
ROA not before: Thu 15 Sep 2022 02:38:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17415
IP address blocks: 103.152.202.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1245 (0x4dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Validity
Not Before: Sep 15 02:38:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6F83CE571C3BD41B9A17175EBEABF29C80395B3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:67:25:6a:95:4e:5b:05:9f:d6:21:ac:6f:10:
04:68:fe:da:b4:e0:50:47:30:c0:40:6e:14:34:d7:
35:b6:d7:bc:18:10:6f:28:3c:7f:ab:61:7e:8a:81:
41:7a:fd:bb:d0:b0:73:34:a0:36:e2:0c:0e:f2:ac:
44:0b:f3:1d:76:53:6e:18:12:75:05:36:30:a9:15:
44:a0:6c:77:9b:aa:fa:68:97:7b:e9:a0:da:e3:9e:
e0:6a:42:eb:c1:34:d4:d0:0b:ae:60:8f:46:dc:90:
93:41:a2:6a:8f:49:f8:3a:23:7c:00:17:d7:be:b4:
16:eb:dd:7c:0f:45:98:77:be:6b:1b:a8:f9:e2:22:
4f:f9:6d:d9:82:20:f1:98:d2:05:5d:6a:b8:58:b2:
1b:b6:df:2c:aa:63:1f:7c:1b:6b:de:24:ff:ee:30:
44:4a:db:9c:b4:cb:87:b5:88:13:7f:70:9d:3a:30:
60:79:05:44:d8:48:fa:8a:e9:b7:d4:72:43:bb:c2:
18:37:e9:46:7e:38:52:74:96:63:5c:ba:67:e8:a4:
f8:a5:fa:ee:8c:91:65:58:60:81:1e:03:29:c9:0d:
dd:76:9c:64:ee:d5:3f:1c:0f:25:09:d0:6f:02:34:
1c:f0:26:93:41:10:a4:85:88:08:31:a1:7a:c5:fa:
a0:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:83:CE:57:1C:3B:D4:1B:9A:17:17:5E:BE:AB:F2:9C:80:39:5B:3B
X509v3 Authority Key Identifier:
keyid:AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/b4POVxw71BuaFxdevqvynIA5Wzs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.202.0/23
Signature Algorithm: sha256WithRSAEncryption
35:c1:3a:61:40:88:f0:39:83:e8:6c:96:57:d6:e9:48:39:65:
3b:ac:a3:b9:ae:89:29:82:57:30:91:63:5e:e8:fd:5f:0a:a5:
8c:dd:b9:82:8f:eb:8d:ab:30:bc:21:da:05:85:eb:70:c1:21:
4f:6e:f0:0e:db:0a:24:4f:38:88:7a:96:9a:56:1e:7b:96:79:
e5:c0:75:b2:b4:31:91:f3:30:5f:e8:60:fa:b0:0a:63:35:01:
a2:68:32:54:6a:62:b4:82:f1:e4:81:77:04:f6:26:3d:bb:85:
0c:ae:bd:95:72:bc:61:9a:e6:c0:d8:e9:fe:72:99:d6:c3:80:
a3:de:fe:f3:73:06:f5:95:26:80:e1:ed:82:4b:41:6d:0d:3d:
22:92:16:29:f5:06:67:9d:01:06:44:68:9d:e7:fe:7d:bd:1d:
15:ee:0e:15:0f:3e:7d:58:59:0a:ba:4c:55:f3:bc:35:a9:e9:
24:e8:92:18:3f:f1:5c:95:a1:e1:0c:40:6f:de:38:f6:5a:f2:
b2:77:37:bc:1e:54:c0:cc:1f:aa:e4:23:78:e3:cd:cc:53:1b:
32:56:15:7e:b4:28:a4:1f:57:cd:dc:5a:a6:4f:e9:ec:d7:e0:
5f:70:e3:92:9e:90:d3:bb:2d:6a:0a:93:3c:d6:38:a4:11:10:
6c:26:69:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org