Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/paAecLdLlVweKrEPTKbI5iPUn3w.roa
File: paAecLdLlVweKrEPTKbI5iPUn3w.roa (raw, json)
Hash identifier: zMxxG5UQFFhmdq/pTbT1MDCbmqZWWbirSmt6gOQVr5g=
Subject key identifier: A5:A0:1E:70:B7:4B:95:5C:1E:2A:B1:0F:4C:A6:C8:E6:23:D4:9F:7C
Certificate issuer: /CN=6D6C5CBFCECBA7987951112DAA187FFCB6204E26
Certificate serial: 0A3F
Authority key identifier: 6D:6C:5C:BF:CE:CB:A7:98:79:51:11:2D:AA:18:7F:FC:B6:20:4E:26
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bWxcv87Lp5h5UREtqhh__LYgTiY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/paAecLdLlVweKrEPTKbI5iPUn3w.roa
Signing time: Thu 15 Sep 2022 02:50:57 +0000
ROA not before: Thu 15 Sep 2022 02:50:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18179
IP address blocks: 103.20.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2623 (0xa3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D6C5CBFCECBA7987951112DAA187FFCB6204E26
Validity
Not Before: Sep 15 02:50:57 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A5A01E70B74B955C1E2AB10F4CA6C8E623D49F7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2d:91:f0:6c:2c:cf:35:5e:33:47:45:9a:2c:
a7:25:f7:c5:9d:8b:3e:6e:5e:38:04:4f:ad:48:c4:
63:82:b1:f3:9b:3c:c4:ae:cb:fd:11:e8:24:a4:97:
2c:bc:f2:91:22:ce:c2:e1:fc:f2:eb:f7:c2:80:5c:
ef:bb:60:bd:fb:a8:1a:9b:d2:ab:7d:24:2a:83:c9:
31:4c:82:ad:f3:3b:84:48:9b:4d:c0:1d:df:5e:68:
41:99:d1:47:62:db:53:55:1d:51:43:e5:9a:6e:0b:
66:3f:e1:96:a0:35:a1:dc:b0:06:ee:26:15:95:05:
ae:2b:c3:3a:ba:5c:d1:12:dc:c3:72:81:77:60:1d:
79:8c:1c:b4:1c:fa:b7:73:3a:c7:ec:c3:7f:66:2b:
85:76:e9:8c:49:f8:4b:3d:ef:ef:6f:ec:df:64:67:
f1:bd:3b:83:91:51:d8:52:2f:f2:8c:fb:c4:28:8c:
68:28:bb:98:45:bd:a9:3d:de:35:dd:d8:68:ba:79:
0d:e4:f8:5e:16:18:29:cf:45:26:74:09:4d:99:15:
1a:cc:36:87:5e:d8:46:96:af:22:75:7a:1e:6e:90:
c0:42:9b:f2:97:02:e9:83:c4:6b:dc:a0:bc:94:59:
ed:10:34:32:62:59:0f:89:c6:ec:4b:e3:d7:d4:98:
70:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:A0:1E:70:B7:4B:95:5C:1E:2A:B1:0F:4C:A6:C8:E6:23:D4:9F:7C
X509v3 Authority Key Identifier:
keyid:6D:6C:5C:BF:CE:CB:A7:98:79:51:11:2D:AA:18:7F:FC:B6:20:4E:26
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/bWxcv87Lp5h5UREtqhh__LYgTiY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bWxcv87Lp5h5UREtqhh__LYgTiY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MITACMDC/paAecLdLlVweKrEPTKbI5iPUn3w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.20.176.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:38:53:bf:7e:e5:f6:27:3c:7d:b6:18:fc:d3:ca:10:83:3a:
8a:20:a7:c4:6c:82:e2:ae:8a:92:7d:2e:dd:15:80:73:da:d2:
80:16:31:d0:0d:1f:78:ff:cb:b6:9e:d9:42:0f:46:cf:c2:ef:
ae:4d:6b:66:1c:b1:26:d1:c3:0c:d1:db:6b:d0:25:45:3a:37:
e2:b3:7a:35:a5:28:41:80:e7:42:7c:15:a0:78:a2:52:4a:2c:
01:a0:da:7e:b0:3d:88:db:8c:91:97:f8:48:e7:3b:6c:97:eb:
5e:1e:10:b8:2e:08:0e:e4:b4:28:5c:56:98:ae:d1:c0:9e:f7:
b4:9a:d4:20:26:0b:05:7e:00:32:4e:d7:90:38:f2:8a:69:db:
9e:5c:42:86:3e:04:f7:8a:a3:95:81:53:eb:15:c6:41:62:86:
25:1a:e0:15:ab:f3:e4:32:3f:5b:fd:29:f6:de:a1:75:c9:52:
c0:41:5d:a3:93:a4:89:88:cb:e4:a1:ab:be:54:54:8e:c6:1d:
84:8f:c4:60:5b:73:f3:a3:56:6d:ec:4d:d3:0e:d7:0a:7e:29:
c7:82:e8:2e:b7:36:d3:ac:34:8e:55:e4:cd:e4:11:1c:ae:f6:
b3:1c:b0:81:d5:00:fc:33:dc:5a:66:71:1e:fd:a4:83:d6:1f:
52:95:5a:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org