Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/unvkbj2D92gPmMXo9L0KIpZBd_0.roa
File: unvkbj2D92gPmMXo9L0KIpZBd_0.roa (raw, json)
Hash identifier: RGmRBaq3s2ZQ0ONRF1uUuA9rplOTJHC7mDkqI7zjSxk=
Subject key identifier: BA:7B:E4:6E:3D:83:F7:68:0F:98:C5:E8:F4:BD:0A:22:96:41:77:FD
Certificate issuer: /CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Certificate serial: 03EE
Authority key identifier: AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/unvkbj2D92gPmMXo9L0KIpZBd_0.roa
Signing time: Wed 29 Sep 2021 02:37:47 +0000
ROA not before: Wed 29 Sep 2021 02:37:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17415
IP address blocks: 103.152.202.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1006 (0x3ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Validity
Not Before: Sep 29 02:37:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BA7BE46E3D83F7680F98C5E8F4BD0A22964177FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:08:8d:10:04:cc:bd:77:94:39:ec:0c:99:7c:
bf:b7:c3:f0:4e:62:a5:a1:55:bb:bf:01:9d:60:61:
1b:d0:c5:ed:8e:89:33:6f:2a:87:38:61:a0:aa:7d:
21:9b:2f:cc:01:bd:53:ef:72:24:2e:ed:68:27:ad:
d5:72:a1:10:9f:e9:39:fb:a5:9c:8f:77:cc:a7:32:
8c:3b:ca:02:51:e1:ec:62:f2:a7:51:48:62:99:5d:
85:12:39:8d:7b:7b:de:98:52:9f:28:60:6e:00:d5:
94:13:9d:bd:21:d1:a5:ff:23:2f:e1:d1:8f:d6:da:
70:3f:a3:28:cc:fc:c2:cd:72:bd:60:97:f6:e4:4a:
32:4a:d7:bd:54:62:d9:2e:40:09:03:ce:d6:6a:32:
44:2b:d9:dc:a4:a7:eb:e7:d3:06:87:c1:03:a9:39:
4c:09:ca:c2:22:a9:9c:7b:67:0a:43:70:b8:61:92:
48:51:20:2e:7f:fa:fe:85:1e:06:c2:76:9c:c3:76:
9f:3a:d1:36:47:06:64:ce:ce:f0:04:6e:65:81:b5:
fe:65:c2:cf:b2:ef:8f:aa:01:76:e4:93:63:e7:c0:
a7:4c:e1:07:4b:56:f7:33:e8:f2:38:e0:e6:f8:f4:
26:c9:64:36:02:98:a6:4d:50:14:be:b1:f0:a3:8b:
a8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:7B:E4:6E:3D:83:F7:68:0F:98:C5:E8:F4:BD:0A:22:96:41:77:FD
X509v3 Authority Key Identifier:
keyid:AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/unvkbj2D92gPmMXo9L0KIpZBd_0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.202.0/23
Signature Algorithm: sha256WithRSAEncryption
80:e9:aa:71:0a:17:18:09:d7:e3:a1:41:da:b9:fc:70:5f:b0:
f1:fc:71:fb:a0:b9:d8:c0:e0:78:ee:fc:62:48:9b:7f:5d:25:
94:ca:d6:21:98:10:6b:90:49:35:7b:a3:78:ce:43:17:93:ed:
0f:66:03:d1:a8:9e:f1:43:75:8a:7b:d0:fb:da:05:9b:df:61:
39:b8:93:9f:a5:b5:94:7e:d2:d6:b7:80:36:92:75:10:e2:15:
eb:94:19:67:cc:cf:74:b4:8a:f0:1c:23:79:6f:d5:85:07:6d:
37:a8:85:76:85:38:9c:1d:8c:c6:e8:6c:47:88:ea:d5:b7:a7:
e9:be:39:6e:01:86:da:bc:ac:f6:84:d7:66:e6:d7:62:cc:03:
3f:d5:4c:b2:d7:ea:a9:dd:2c:3a:7e:33:f8:5f:9b:5b:b8:0e:
8e:9e:17:77:38:14:a7:33:52:8c:fc:34:f1:dc:fa:6c:cc:7c:
08:8d:eb:b9:a8:a4:fa:fe:e2:d8:23:4a:cf:f2:4b:73:c1:7d:
eb:c8:bb:91:ad:e5:e5:da:32:29:62:db:d3:69:03:1c:c8:72:
e3:e3:7d:8b:e6:a3:cd:5f:96:f4:34:6a:c0:86:65:74:73:5f:
70:81:70:79:81:59:93:08:e5:93:26:9c:27:04:b0:97:1d:8f:
29:24:c0:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:11 2024 by rpki-client on console-ams.rpki-client.org