Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/dtfnPnXeNICbTH-RWJHuS_JbZ_Q.roa
File: dtfnPnXeNICbTH-RWJHuS_JbZ_Q.roa (raw, json)
Hash identifier: 41cRE5mipNjmNOUVc5n0ttBlAuNFCg1aQ36qr+COpfI=
Subject key identifier: 76:D7:E7:3E:75:DE:34:80:9B:4C:7F:91:58:91:EE:4B:F2:5B:67:F4
Certificate issuer: /CN=98A5C390143149481DE79BC17BB62DBA2271F61F
Certificate serial: DF
Authority key identifier: 98:A5:C3:90:14:31:49:48:1D:E7:9B:C1:7B:B6:2D:BA:22:71:F6:1F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mKXDkBQxSUgd55vBe7YtuiJx9h8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/dtfnPnXeNICbTH-RWJHuS_JbZ_Q.roa
Signing time: Sun 21 Nov 2021 16:41:50 +0000
ROA not before: Sun 21 Nov 2021 16:41:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131618
IP address blocks: 103.159.120.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223 (0xdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98A5C390143149481DE79BC17BB62DBA2271F61F
Validity
Not Before: Nov 21 16:41:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=76D7E73E75DE34809B4C7F915891EE4BF25B67F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:95:15:28:3d:e5:eb:89:3c:38:cd:e8:19:96:
4a:b0:db:f0:63:bc:1c:e6:72:0b:71:b2:9c:25:df:
ea:3a:dd:d5:b5:8c:be:7f:7e:a9:f6:ae:f6:24:2a:
85:20:25:ed:5c:08:ea:c2:6b:af:8a:65:16:6a:ac:
f2:b8:79:83:7e:7c:28:32:3a:e2:4d:d2:cf:50:54:
42:ea:29:08:e2:e5:fb:86:17:6e:62:57:2a:41:9d:
ce:fe:94:0b:bd:bb:1a:e8:da:b8:e8:c5:c4:cb:43:
45:24:d2:7e:11:dc:f5:c0:24:59:88:37:14:bb:e3:
22:5a:31:0a:73:2c:b8:56:b1:d5:8b:81:40:6d:cd:
3d:50:a5:c3:cf:09:78:d2:d2:c1:06:dc:d2:81:c3:
7b:89:4a:34:84:79:21:ed:b8:f4:b7:d9:44:19:51:
b5:c4:87:07:6d:87:6a:8d:22:bc:4f:fa:b8:84:78:
f0:38:2f:4b:7c:ad:0f:a2:e4:29:b4:73:6c:93:00:
c8:ae:17:05:bd:44:7f:6d:5d:09:0e:7c:73:bc:0d:
f1:81:55:6e:55:19:53:04:a8:32:cd:e4:e5:8f:41:
4d:f6:bf:99:13:c2:50:70:ec:eb:46:a1:be:f7:29:
e9:60:e2:79:48:b5:41:de:5f:4c:3a:53:f7:c2:3e:
fa:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:D7:E7:3E:75:DE:34:80:9B:4C:7F:91:58:91:EE:4B:F2:5B:67:F4
X509v3 Authority Key Identifier:
keyid:98:A5:C3:90:14:31:49:48:1D:E7:9B:C1:7B:B6:2D:BA:22:71:F6:1F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/mKXDkBQxSUgd55vBe7YtuiJx9h8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mKXDkBQxSUgd55vBe7YtuiJx9h8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/dtfnPnXeNICbTH-RWJHuS_JbZ_Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.159.120.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:c8:a2:33:57:e1:4a:f1:a4:4b:03:25:79:48:47:0a:d8:8f:
5f:7a:d9:1a:36:03:01:e1:20:39:70:c6:c6:53:53:cf:38:43:
81:c9:fc:b4:d1:92:ed:92:13:3a:24:86:0b:b8:8d:16:f8:25:
04:18:42:d4:70:7f:b7:22:4f:83:9f:8e:b8:75:2d:83:d2:95:
21:3c:d1:bb:d7:58:6f:c8:f2:fe:34:c6:f6:dd:ad:fb:70:2e:
ca:0e:07:70:25:f0:7e:eb:ee:b7:fc:94:eb:d7:00:60:4d:d8:
cb:8a:94:b1:46:61:1a:ee:6d:7a:02:17:34:56:b0:c8:f4:1d:
8e:b9:96:31:e5:43:f1:3d:c0:b6:bf:12:7c:ff:df:7a:b5:54:
ea:13:8f:7b:6b:c8:11:eb:a1:50:40:d6:da:b8:c3:6e:97:03:
1f:5f:2e:19:01:88:71:32:6c:61:c4:11:32:66:54:47:4e:08:
6e:31:fb:08:2f:9a:35:77:4a:f9:07:6c:2b:62:9e:de:d7:bf:
33:87:70:c7:3c:40:25:34:dc:a8:42:e3:5e:c1:c9:9e:02:63:
b9:56:93:02:84:66:5c:43:fe:96:76:6b:c0:6a:c7:34:f7:80:
b0:b0:98:66:76:36:0a:1c:5c:76:38:69:b0:ff:4c:62:af:79:
0d:5d:71:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-fra.rpki-client.org