Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/li5KItCIX_AhEGiBt9-hQFcInkk.roa
File: li5KItCIX_AhEGiBt9-hQFcInkk.roa (raw, json)
Hash identifier: Xx97/dUint/rpenfcIni3alRDqOBI/uMT6T1F0ytefU=
Subject key identifier: 96:2E:4A:22:D0:88:5F:F0:21:10:68:81:B7:DF:A1:40:57:08:9E:49
Certificate issuer: /CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Certificate serial: 02F0
Authority key identifier: AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/li5KItCIX_AhEGiBt9-hQFcInkk.roa
Signing time: Tue 17 Nov 2020 08:54:27 +0000
ROA not before: Tue 17 Nov 2020 08:54:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17415
IP address blocks: 103.152.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 752 (0x2f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Validity
Not Before: Nov 17 08:54:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=962E4A22D0885FF021106881B7DFA14057089E49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9c:cb:b3:f0:97:e3:8e:fb:9b:58:15:69:07:
68:c6:ff:64:1f:e5:33:3a:c4:2b:fa:78:2a:61:71:
ef:a9:17:13:0f:61:34:0f:86:28:43:07:48:66:af:
11:ff:c3:b1:2b:06:0c:14:0a:7c:9c:64:00:5a:d9:
5a:7a:42:d5:2d:19:9d:4e:45:45:e9:16:b5:5c:14:
9c:18:b2:d8:6f:ee:af:eb:7d:01:d3:99:bd:0f:2c:
58:b9:24:30:41:c3:85:29:e3:a9:b3:b8:a9:3f:2e:
5e:7a:03:c4:fb:ab:f4:53:21:b5:35:68:b7:a0:64:
46:ae:9a:87:1a:a3:1c:70:bf:5c:70:a6:c7:50:eb:
b1:e8:d4:bd:81:27:c3:fd:14:71:34:7d:75:8f:14:
4b:19:e6:d4:be:c2:be:3a:20:44:da:ce:5c:1c:8d:
25:8d:4c:79:9e:c3:c2:b8:74:d4:03:95:ea:b1:a5:
ff:fb:83:08:9b:63:10:3d:29:f0:ae:ba:64:01:e2:
72:13:ae:c3:dc:ec:5d:af:2e:21:67:6b:ec:d2:31:
4f:98:d4:98:5b:7c:e4:5e:6a:9a:5b:95:e7:b3:0f:
00:42:ea:b7:53:f1:62:18:f5:6f:a6:8a:fc:1f:dc:
ed:95:b7:73:8a:f5:54:f2:1f:35:4c:c1:18:9d:f7:
d4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:2E:4A:22:D0:88:5F:F0:21:10:68:81:B7:DF:A1:40:57:08:9E:49
X509v3 Authority Key Identifier:
keyid:AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/li5KItCIX_AhEGiBt9-hQFcInkk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.203.0/24
Signature Algorithm: sha256WithRSAEncryption
34:3d:65:84:18:dc:22:03:11:ba:a7:be:77:0d:72:98:d3:b6:
bf:9b:46:69:13:a2:43:b6:0c:d1:4c:8f:90:74:c0:94:e9:4a:
13:d7:5b:a4:82:a8:02:43:02:5f:e8:bf:7e:28:83:f2:9c:89:
aa:41:25:38:d2:e5:8c:63:1e:9c:a4:5d:8d:56:57:c7:6b:b2:
88:20:a9:a3:c8:9b:b2:da:4d:f6:82:ed:9c:25:4f:4f:22:54:
60:fd:7a:08:66:b3:66:68:e6:3b:5d:dc:cb:44:d3:ea:2c:04:
45:17:f6:22:2a:f1:22:a0:c8:50:ea:3c:e1:a8:50:69:39:75:
27:07:5e:10:9b:af:3c:7b:4d:7f:99:c3:93:c3:35:f7:57:54:
b0:c7:22:9e:66:d1:1f:24:6b:dd:39:b9:d0:78:e7:d4:16:95:
d1:6d:f7:64:16:60:80:cf:61:12:7a:7f:c5:8d:40:b7:07:fe:
29:a2:a2:a6:37:0c:64:55:d0:b7:8c:43:f2:31:34:82:7e:0c:
e8:ef:d1:eb:1e:a8:73:55:06:3e:37:05:29:c6:db:52:6d:fd:
cf:27:63:a1:e8:75:44:79:35:4a:f4:52:e2:8c:48:b2:bd:aa:
2d:81:75:7b:df:3f:54:54:56:b6:1c:d5:01:8c:88:77:22:52:
9f:43:d6:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:52:20 2025 by rpki-client