Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCDTV/nGJvL9hzqKmZHRP_hUrwtR9A6PY.roa
File: nGJvL9hzqKmZHRP_hUrwtR9A6PY.roa (raw, json)
Hash identifier: LCd+3Xt1IdsBvnQJOVH2CYLVvc+6pT7wNBsQkvCR1i8=
Subject key identifier: 9C:62:6F:2F:D8:73:A8:A9:99:1D:13:FF:85:4A:F0:B5:1F:40:E8:F6
Certificate issuer: /CN=4B81BB31FA5292C8025B828F802722DE0D5EADE3
Certificate serial: 08AB
Authority key identifier: 4B:81:BB:31:FA:52:92:C8:02:5B:82:8F:80:27:22:DE:0D:5E:AD:E3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/S4G7MfpSksgCW4KPgCci3g1ereM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCDTV/nGJvL9hzqKmZHRP_hUrwtR9A6PY.roa
Signing time: Sun 07 Feb 2021 11:32:49 +0000
ROA not before: Sun 07 Feb 2021 11:32:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131597
IP address blocks: 103.196.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2219 (0x8ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4B81BB31FA5292C8025B828F802722DE0D5EADE3
Validity
Not Before: Feb 7 11:32:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9C626F2FD873A8A9991D13FF854AF0B51F40E8F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5e:cd:ae:18:28:ad:2c:fd:88:c2:cf:d7:bc:
d4:dc:82:27:a6:90:04:12:8d:8a:2d:b6:55:4a:a2:
15:97:9d:60:b0:5a:b7:b5:ae:65:4a:80:39:6d:dc:
c7:3b:13:b5:0b:75:28:f0:a3:40:ff:19:4f:35:08:
ee:cf:83:be:34:f2:52:14:6d:77:50:23:5c:70:46:
6d:5f:1e:2a:f5:47:1c:01:79:62:04:06:10:e7:b0:
a0:00:81:f8:d5:f6:f2:7e:ce:8e:45:fa:ff:81:21:
5c:2d:d2:c3:2f:a7:de:c0:ca:72:cf:e2:d2:13:48:
c4:fe:3b:c5:88:74:a0:5d:e6:22:46:60:5b:d7:ad:
44:d0:4e:2b:d6:90:24:05:33:52:15:9b:d0:c9:b9:
92:e6:35:92:f0:32:ee:c4:9e:7a:ea:ef:26:ec:c2:
33:8f:9d:50:50:40:b4:69:52:8d:d6:53:18:92:ef:
7a:be:59:0b:b3:12:c3:c1:1a:70:a4:71:27:02:4a:
f3:1c:86:9c:04:7e:b9:04:6d:3a:9d:32:a6:74:ad:
bc:4d:35:0f:8d:9c:69:fe:e4:af:71:ed:fd:3e:3d:
7f:b7:f6:f1:3b:6f:a4:b7:ee:ec:1e:a7:fe:00:cf:
43:23:3a:46:b6:0a:78:a6:63:83:f0:77:0a:21:f8:
90:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:62:6F:2F:D8:73:A8:A9:99:1D:13:FF:85:4A:F0:B5:1F:40:E8:F6
X509v3 Authority Key Identifier:
keyid:4B:81:BB:31:FA:52:92:C8:02:5B:82:8F:80:27:22:DE:0D:5E:AD:E3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCDTV/S4G7MfpSksgCW4KPgCci3g1ereM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/S4G7MfpSksgCW4KPgCci3g1ereM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCDTV/nGJvL9hzqKmZHRP_hUrwtR9A6PY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.196.172.0/22
Signature Algorithm: sha256WithRSAEncryption
63:90:b3:d8:76:3f:66:c7:06:1d:45:5c:d3:67:13:9e:c1:26:
ae:27:ba:18:c6:bc:8f:67:c4:51:0f:63:51:f0:67:09:80:e8:
5b:6c:16:36:7d:33:9f:6d:80:f0:20:f6:cb:66:50:d8:a6:f3:
fb:96:b7:ea:c7:ec:ae:0a:48:7f:34:03:d7:46:e5:5d:83:fe:
ce:17:51:cf:84:1f:c9:f8:b0:46:62:25:fa:f2:75:97:bc:25:
d1:3d:68:7d:1a:e2:fd:fa:28:83:5d:27:9d:4c:32:61:51:81:
2b:d0:4a:0c:68:6d:b9:8e:03:7e:00:44:3a:7d:cc:2b:8c:09:
bf:78:50:06:24:bd:05:da:f4:0b:90:e8:50:c8:e6:fc:e9:47:
21:d4:9d:2d:dd:37:9f:16:7a:80:de:14:c6:3a:c7:87:2f:fa:
18:ed:da:ae:ce:2c:fe:7b:f5:3f:16:99:99:c5:5a:96:7c:b6:
71:f2:ee:18:56:3f:f6:06:15:7b:dd:0f:dd:99:6c:8b:5d:fa:
47:ea:46:b1:1b:92:dc:a6:06:23:f3:12:cf:de:e2:5a:b9:cd:
63:4c:a3:20:c1:bc:87:32:90:6e:9a:c1:b6:2f:6c:be:74:36:
a0:94:62:7f:98:f6:ea:87:26:12:2e:18:51:27:75:ec:57:93:
58:3e:62:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:11 2024 by rpki-client on console-ams.rpki-client.org