Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/ldyW8mObsEoW5_nWfx55fmA3WB8.roa
File: ldyW8mObsEoW5_nWfx55fmA3WB8.roa (raw, json)
Hash identifier: m14OzG7XvG56Thcd1yz0WEcXBmtXj/CzQDX8yemEHgA=
Subject key identifier: 95:DC:96:F2:63:9B:B0:4A:16:E7:F9:D6:7F:1E:79:7E:60:37:58:1F
Certificate issuer: /CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Certificate serial: 03ED
Authority key identifier: AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/ldyW8mObsEoW5_nWfx55fmA3WB8.roa
Signing time: Wed 29 Sep 2021 02:37:46 +0000
ROA not before: Wed 29 Sep 2021 02:37:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131668
IP address blocks: 103.152.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1005 (0x3ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Validity
Not Before: Sep 29 02:37:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=95DC96F2639BB04A16E7F9D67F1E797E6037581F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:10:7b:87:67:a5:6c:44:22:c5:8b:ee:93:9a:
cb:af:0f:69:d4:56:1c:b5:0f:b7:62:8e:2c:9c:62:
37:4b:0b:d9:c6:c7:ef:0f:3f:88:2e:d4:73:8e:6f:
3c:1e:a8:6e:51:24:dc:52:c8:94:cf:0f:f8:3e:28:
6b:bb:03:48:b2:ca:db:b8:c3:a3:53:82:9c:64:f1:
4b:f4:4a:18:2f:0e:0d:6f:a4:fb:03:9b:0a:03:d3:
f5:59:4f:fe:e4:ec:51:a8:1a:99:44:fd:9e:5c:e4:
24:55:0f:eb:c1:23:48:21:d2:dc:a1:ff:60:9e:42:
c2:51:8a:70:bf:0b:9c:fc:81:67:8c:22:73:b9:11:
c8:21:35:e5:a1:dd:2e:45:4f:b6:3f:49:98:46:18:
94:87:23:68:e1:8b:a3:f1:df:71:05:b4:32:ac:ce:
db:13:2c:23:ad:73:56:b6:95:bf:cd:cc:0c:b4:d9:
29:31:93:34:45:00:a1:2a:34:34:db:6f:03:19:71:
f7:33:f2:4d:15:5d:b0:d1:68:c9:98:c5:98:74:2f:
4e:45:6b:6f:f8:0d:37:6c:fd:9f:51:cc:0b:70:ee:
70:d6:94:08:61:e0:a8:b9:21:7b:be:b9:f5:cf:4e:
7b:72:67:6d:3e:9b:93:b9:8a:c2:ff:bf:0a:5a:a5:
e3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:DC:96:F2:63:9B:B0:4A:16:E7:F9:D6:7F:1E:79:7E:60:37:58:1F
X509v3 Authority Key Identifier:
keyid:AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/ldyW8mObsEoW5_nWfx55fmA3WB8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.202.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:b7:30:72:9b:06:b1:76:b5:39:48:c9:85:aa:a2:b4:43:93:
a7:16:3d:e4:14:79:a2:6f:1e:ec:3b:84:03:b5:72:9a:f5:8f:
ad:be:92:4e:f6:a4:9a:7a:e2:9a:7f:d5:0a:a3:0e:45:19:f5:
d6:b4:44:2a:b1:2c:7d:71:f2:cd:18:b1:a3:80:38:4b:c0:34:
b4:89:de:1a:f3:28:de:e1:5f:6e:3d:4e:3b:b9:64:e3:10:1c:
5b:db:d3:c4:60:7e:9a:4d:1c:83:41:1e:34:c7:db:41:c9:24:
1a:83:86:c0:15:0c:60:0a:8f:fc:54:3c:3a:ef:63:e2:f2:f9:
5d:a0:77:95:df:ec:0e:65:6c:c5:16:13:93:07:e5:cd:ff:ac:
e3:3b:f8:d7:05:9b:4e:c0:4a:5b:3d:b1:7b:6a:e7:f9:64:5a:
8e:c5:d3:8e:1f:96:41:9a:05:82:2d:d1:d8:d2:41:c0:52:76:
46:93:19:1c:fc:0b:97:8f:db:31:57:5c:18:c5:d9:4c:f0:98:
38:e0:a0:f7:35:70:cc:a4:75:87:2c:f0:dd:59:10:81:1f:4f:
b8:29:cc:db:a7:7f:df:92:94:c4:66:83:f3:12:76:c7:1e:db:
bd:5d:8b:21:7d:4d:4b:c7:b9:55:e7:ae:29:9e:c6:d2:ed:eb:
99:e2:be:46
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICA+0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQURG
RTZFNTZEQUY4NDkyRUM3REU4OEIzQTkwNkIzMTM5QjU1Qjg2NDAeFw0yMTA5Mjkw
MjM3NDZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDk1REM5NkYyNjM5QkIw
NEExNkU3RjlENjdGMUU3OTdFNjAzNzU4MUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEEHuHZ6VsRCLFi+6TmsuvD2nUVhy1D7dijiycYjdLC9nGx+8P
P4gu1HOObzweqG5RJNxSyJTPD/g+KGu7A0iyytu4w6NTgpxk8Uv0ShgvDg1vpPsD
mwoD0/VZT/7k7FGoGplE/Z5c5CRVD+vBI0gh0tyh/2CeQsJRinC/C5z8gWeMInO5
EcghNeWh3S5FT7Y/SZhGGJSHI2jhi6Px33EFtDKsztsTLCOtc1a2lb/NzAy02Skx
kzRFAKEqNDTbbwMZcfcz8k0VXbDRaMmYxZh0L05Fa2/4DTds/Z9RzAtw7nDWlAhh
4Ki5IXu+ufXPTntyZ20+m5O5isL/vwpapeM/AgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUldyW8mObsEoW5/nWfx55fmA3WB8wHwYDVR0jBBgwFoAUrf5uVtr4SS7H3oiz
qQazE5tVuGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJ
VEVBL3JmNXVWdHI0U1M3SDNvaXpxUWF6RTV0VnVHUS5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvcmY1dVZ0cjRTUzdIM29penFRYXpFNXRWdUdRLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJVEVBL2xkeVc4bU9ic0Vv
VzVfbldmeDU1Zm1BM1dCOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBABnmMowDQYJKoZIhvcNAQELBQADggEBAF63MHKbBrF2tTlIyYWqorRDk6cW
PeQUeaJvHuw7hAO1cpr1j62+kk72pJp64pp/1QqjDkUZ9da0RCqxLH1x8s0YsaOA
OEvANLSJ3hrzKN7hX249Tju5ZOMQHFvb08RgfppNHINBHjTH20HJJBqDhsAVDGAK
j/xUPDrvY+Ly+V2gd5Xf7A5lbMUWE5MH5c3/rOM7+NcFm07ASls9sXtq5/lkWo7F
044flkGaBYIt0djSQcBSdkaTGRz8C5eP2zFXXBjF2UzwmDjgoPc1cMykdYcs8N1Z
EIEfT7gpzNunf9+SlMRmg/MSdsce271diyF9TUvHuVXnrimextLt65nivkY=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:57 2023 by rpki-client on console-ams.rpki-client.org