Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/skCPq-50WFZKd46-VOqv3e4XC98.roa
File: skCPq-50WFZKd46-VOqv3e4XC98.roa (raw, json)
Hash identifier: J+BGi3YFBHsv4YxtIokyh2ptUdbQgK3jVv5LVkjOUiI=
Subject key identifier: B2:40:8F:AB:EE:74:58:56:4A:77:8E:BE:54:EA:AF:DD:EE:17:0B:DF
Certificate issuer: /CN=6E181085902F896294602D8B121C1E2E22B58CE7
Certificate serial: 0FAD
Authority key identifier: 6E:18:10:85:90:2F:89:62:94:60:2D:8B:12:1C:1E:2E:22:B5:8C:E7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bhgQhZAviWKUYC2LEhweLiK1jOc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/skCPq-50WFZKd46-VOqv3e4XC98.roa
Signing time: Tue 09 May 2023 08:31:07 +0000
ROA not before: Tue 09 May 2023 08:31:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 64496
IP address blocks: 103.125.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4013 (0xfad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E181085902F896294602D8B121C1E2E22B58CE7
Validity
Not Before: May 9 08:31:07 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B2408FABEE7458564A778EBE54EAAFDDEE170BDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:59:37:a2:04:d3:49:44:e3:09:75:8f:1b:2f:
64:af:1d:87:71:2b:d3:12:fe:87:75:24:11:ca:1a:
37:0c:3b:ed:0f:d0:d1:de:1c:d7:b6:a2:e1:16:b2:
7b:76:68:05:7b:01:71:95:d9:94:d9:f5:9b:97:5c:
06:e3:c6:be:fc:14:c2:a6:f5:ca:04:08:03:a9:e0:
5a:5a:70:60:e5:c6:22:93:4f:e5:00:ad:2f:1d:c5:
29:6e:02:0d:14:32:df:72:e1:3a:f4:ac:85:eb:e9:
8b:50:6c:dd:42:d9:e8:d7:60:3f:b0:60:7b:f6:be:
69:51:5e:3c:94:ea:f0:dc:60:83:64:a0:2e:9c:99:
95:19:53:2c:4d:56:b2:9c:e9:56:6e:81:02:91:6e:
44:04:28:35:94:7a:0e:76:3d:d6:fa:fb:e0:7c:0f:
d5:21:14:71:42:11:1b:b1:bb:dd:24:9d:d3:d2:31:
52:13:8e:53:34:98:d7:85:97:1b:07:86:b4:48:7b:
f6:23:a7:2d:43:a2:04:39:48:ee:b2:d2:3a:15:7b:
c0:73:0c:69:e7:b0:9e:af:6a:78:ac:ca:1c:bc:42:
dd:b3:3d:af:89:87:3e:97:d9:5b:37:d5:6b:cf:21:
4c:cc:57:7a:63:44:97:da:09:6b:9f:0d:be:76:2e:
19:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:40:8F:AB:EE:74:58:56:4A:77:8E:BE:54:EA:AF:DD:EE:17:0B:DF
X509v3 Authority Key Identifier:
keyid:6E:18:10:85:90:2F:89:62:94:60:2D:8B:12:1C:1E:2E:22:B5:8C:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/bhgQhZAviWKUYC2LEhweLiK1jOc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bhgQhZAviWKUYC2LEhweLiK1jOc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/skCPq-50WFZKd46-VOqv3e4XC98.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.125.227.0/24
Signature Algorithm: sha256WithRSAEncryption
91:02:3f:2b:bc:5c:3c:4e:43:32:71:d1:4d:c4:96:80:12:55:
15:01:5f:f7:79:06:95:5d:0a:14:b6:59:ec:20:e8:2f:51:40:
e4:b5:fa:90:9e:ac:5c:21:6a:51:81:59:98:12:08:1c:7d:93:
11:e8:4a:7a:17:49:b8:38:6b:da:13:42:fe:0d:09:95:53:f3:
53:17:e2:bb:90:38:4e:34:f9:5e:4f:17:71:a7:4e:8d:51:40:
28:ad:af:e1:e2:e2:d2:e3:16:b4:15:92:a6:9a:65:7a:3c:78:
70:d5:aa:bb:f6:f2:75:7b:62:55:6d:a7:ec:6f:b7:49:bc:49:
73:fe:11:37:a6:38:a0:82:1d:e2:66:2c:da:3b:c6:be:17:43:
92:9a:12:b0:2d:89:83:e5:96:8b:b7:bf:c6:a5:90:cb:eb:27:
a3:dc:93:cc:19:06:82:43:c1:b6:55:37:7d:91:d5:d4:00:a6:
45:8b:65:ca:df:78:b0:c7:4a:fa:e9:d0:8b:0e:21:41:32:32:
7a:8c:0d:1c:71:ef:5e:fd:2b:9a:49:d8:dc:35:66:80:ba:4f:
71:d4:d1:60:8d:a9:7e:8f:1f:b8:7d:35:1c:1d:9e:d5:61:db:
db:57:a3:cb:7f:9c:d5:74:c5:1f:cc:76:1c:f9:2d:60:13:5b:
d5:f1:71:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org