Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/lTt5MwC4xHQAY8tI7CFe5sRp68U.roa
File: lTt5MwC4xHQAY8tI7CFe5sRp68U.roa (raw, json)
Hash identifier: 8/vSMSNIGfcuk+kn7qqM0oY6flHVl0Ilecgby+eYiBM=
Subject key identifier: 95:3B:79:33:00:B8:C4:74:00:63:CB:48:EC:21:5E:E6:C4:69:EB:C5
Certificate issuer: /CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Certificate serial: 03F1
Authority key identifier: AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/lTt5MwC4xHQAY8tI7CFe5sRp68U.roa
Signing time: Wed 29 Sep 2021 02:37:48 +0000
ROA not before: Wed 29 Sep 2021 02:37:48 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 134098
IP address blocks: 103.152.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1009 (0x3f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Validity
Not Before: Sep 29 02:37:48 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=953B793300B8C4740063CB48EC215EE6C469EBC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:33:54:7b:88:4e:2c:68:d4:b7:e9:2c:9b:9a:
56:a5:72:1b:38:29:66:01:b9:69:1b:4a:2b:4c:b8:
95:5a:08:31:d4:0b:31:07:2d:58:22:b6:26:f3:cc:
bf:13:49:d7:65:70:43:41:90:14:27:59:d2:6e:d6:
1a:88:52:37:46:50:1a:39:c8:f5:51:44:69:cc:de:
a4:fc:01:9e:71:57:e8:0e:dc:52:20:eb:96:46:69:
57:78:ef:c9:c5:69:1f:70:e6:88:32:49:82:60:28:
67:03:76:99:79:b9:5d:e7:87:f5:01:b7:d6:57:b2:
a7:81:da:2a:0f:60:3d:4e:0e:27:94:e4:99:85:24:
ae:e3:18:2e:c4:90:31:04:9a:1b:dc:14:8d:ed:cf:
85:51:3d:b6:e1:13:89:54:2a:a6:87:3d:9f:27:d6:
7a:71:ef:29:22:6a:a6:8f:38:ec:01:2f:96:0a:b8:
2a:12:e1:f6:33:fa:2b:24:c1:3f:ec:09:01:fe:a7:
df:77:64:4e:4d:c6:25:0e:6b:26:41:81:4d:e2:2c:
9c:9d:e8:73:e9:f1:70:24:62:01:53:dc:6b:ac:57:
3a:0e:7a:ba:5c:5c:78:fc:49:da:e9:4f:e7:93:67:
fe:e1:9f:08:fc:db:66:ad:30:d1:a3:a1:80:d0:e7:
77:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:3B:79:33:00:B8:C4:74:00:63:CB:48:EC:21:5E:E6:C4:69:EB:C5
X509v3 Authority Key Identifier:
keyid:AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/lTt5MwC4xHQAY8tI7CFe5sRp68U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.203.0/24
Signature Algorithm: sha256WithRSAEncryption
22:2e:46:a7:46:7f:f5:21:f8:19:6f:69:be:99:af:be:69:39:
41:99:ec:fc:e4:1e:a6:02:d6:ec:7f:c7:c4:45:9f:9a:18:9a:
b0:42:af:24:bf:be:2e:e0:4f:79:fa:69:4f:8a:30:53:95:00:
19:0b:6b:05:bc:fa:f9:c4:b6:ad:44:f9:b2:36:3f:5c:b8:2a:
34:06:34:7f:e7:d4:cf:f1:e5:f2:2e:86:ea:50:2d:60:4b:f1:
ac:34:0c:42:e0:f3:05:ad:b2:09:a7:fe:45:cc:c0:e3:4a:1b:
31:9e:51:5e:46:a2:04:a8:31:81:d2:54:b7:bb:31:bc:a0:46:
88:13:6d:6b:a2:65:bd:dc:c4:af:b5:21:9c:ab:69:c9:46:f9:
26:a6:47:3c:b0:18:6e:6c:07:69:cd:45:f1:70:c6:75:5d:11:
b9:a8:19:66:a2:8f:4f:b4:0f:a8:d9:e2:66:ac:aa:cf:a1:90:
73:3e:c5:3a:8b:09:1a:34:b7:ac:f3:13:07:77:0f:84:bf:1a:
48:d1:14:4a:dd:4c:13:0d:b2:4a:a6:ee:7b:dc:5f:bb:ba:35:
64:13:97:76:f6:ad:7e:c3:cd:ae:3d:fc:ca:df:f2:0d:89:25:
ab:0f:d0:11:99:9e:93:9f:e6:86:15:53:01:80:b0:a9:e6:99:
65:55:8b:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org