Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/LbQ8g5WpuYjsZjr63qga2OF_5SM.roa
File: LbQ8g5WpuYjsZjr63qga2OF_5SM.roa (raw, json)
Hash identifier: 4RS6ZO7q6gfmipxwuE7bmli1qD/hNeCPWbZmrW60xDk=
Subject key identifier: 2D:B4:3C:83:95:A9:B9:88:EC:66:3A:FA:DE:A8:1A:D8:E1:7F:E5:23
Certificate issuer: /CN=6D6C5CBFCECBA7987951112DAA187FFCB6204E26
Certificate serial: 08B0
Authority key identifier: 6D:6C:5C:BF:CE:CB:A7:98:79:51:11:2D:AA:18:7F:FC:B6:20:4E:26
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bWxcv87Lp5h5UREtqhh__LYgTiY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/LbQ8g5WpuYjsZjr63qga2OF_5SM.roa
Signing time: Sun 07 Feb 2021 12:40:06 +0000
ROA not before: Sun 07 Feb 2021 12:40:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18179
IP address blocks: 103.16.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2224 (0x8b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D6C5CBFCECBA7987951112DAA187FFCB6204E26
Validity
Not Before: Feb 7 12:40:06 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2DB43C8395A9B988EC663AFADEA81AD8E17FE523
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:85:fd:d0:6e:2c:a9:02:7b:4c:3f:21:90:ef:
1c:57:7b:e7:9e:4f:7c:a5:30:ce:24:d6:43:20:20:
ea:f8:d7:7b:a2:ae:3d:57:6e:8b:b6:d0:82:16:ce:
b9:dd:39:9c:df:12:b5:ca:cf:90:fc:4a:7b:96:7b:
c9:ab:09:c9:67:c1:ca:4d:47:b5:5f:1b:2d:04:7e:
bc:fb:73:21:85:cc:a9:23:32:10:5a:0d:b3:66:3e:
95:23:0f:d4:6d:cc:4a:4e:ec:96:e7:e6:da:59:cd:
b3:99:e4:3d:fa:ba:cc:a8:73:5d:44:7d:df:64:31:
e7:03:ec:ad:f3:80:b6:a5:e1:ec:62:d4:b4:65:0d:
10:bd:2d:f9:84:a6:6a:af:f1:ea:14:dc:4e:c2:29:
36:47:32:f5:be:4e:9d:90:1a:f2:04:80:e7:3f:7b:
40:1c:f2:57:7e:bf:12:61:65:8e:6a:a5:e9:9a:23:
8d:16:71:79:98:3c:80:ef:ea:83:2c:2c:22:52:e4:
05:e5:28:37:2c:d9:05:c6:67:2d:e9:73:78:22:08:
f5:a1:c4:56:d1:d7:9c:d5:4c:15:f2:d6:ea:d2:6d:
ad:20:2d:9d:c6:5b:0f:6b:01:a5:5e:a5:4b:f8:9e:
0d:c8:d2:32:5a:7f:54:57:3d:f4:97:95:dd:b1:6b:
c0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B4:3C:83:95:A9:B9:88:EC:66:3A:FA:DE:A8:1A:D8:E1:7F:E5:23
X509v3 Authority Key Identifier:
keyid:6D:6C:5C:BF:CE:CB:A7:98:79:51:11:2D:AA:18:7F:FC:B6:20:4E:26
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/bWxcv87Lp5h5UREtqhh__LYgTiY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bWxcv87Lp5h5UREtqhh__LYgTiY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/LbQ8g5WpuYjsZjr63qga2OF_5SM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.16.244.0/22
Signature Algorithm: sha256WithRSAEncryption
15:9a:d9:50:3c:ea:57:a9:2e:7b:cb:87:16:47:dc:ac:99:dd:
b6:24:f8:03:04:6c:e0:98:80:57:e8:d2:b1:37:54:b7:1f:94:
28:18:55:57:5c:86:bd:ab:6b:48:29:33:55:21:db:4d:25:57:
f4:b2:9e:89:29:21:ba:61:ca:fc:41:af:a8:30:d5:a9:a6:8d:
99:0a:62:eb:90:46:7c:7a:bd:da:2d:f8:70:44:bf:c9:2a:1c:
ed:6b:56:1c:e3:09:ca:0e:ef:bd:ad:72:71:4a:bc:53:6a:82:
1f:c8:eb:6f:8e:1a:ba:5b:a7:b6:7a:ef:47:0e:d2:6b:10:f4:
b9:5b:b0:3e:3c:25:66:c0:c4:b6:b4:43:63:dd:4d:2e:4b:75:
d8:27:47:4f:28:3a:37:53:51:3b:14:12:40:1b:4e:fb:1d:1c:
1f:7f:aa:ec:cc:da:bb:58:61:49:ad:45:30:34:83:ca:64:76:
bb:19:b4:e8:ed:5b:a3:96:99:03:73:e5:29:c6:fb:07:c9:97:
ff:66:33:ba:60:fc:f3:6c:bb:1f:0f:c1:6c:78:27:f8:25:47:
f4:0e:4a:18:77:a3:f4:78:3e:28:90:43:d0:9c:b5:00:bc:ed:
e8:8a:62:af:4d:9a:1d:d6:27:2e:1c:21:65:6d:9d:c4:6c:0c:
ee:a5:7a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org