Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/Cp4OqjGC5_hh2WiEbZT62Wr2_94.roa
File: Cp4OqjGC5_hh2WiEbZT62Wr2_94.roa (raw, json)
Hash identifier: VYDufneQpNphkjJk8eh1Ri5FJQ2KRv4Y9V0gVlIyqmY=
Subject key identifier: 0A:9E:0E:AA:31:82:E7:F8:61:D9:68:84:6D:94:FA:D9:6A:F6:FF:DE
Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Certificate serial: 556B
Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/Cp4OqjGC5_hh2WiEbZT62Wr2_94.roa
Signing time: Mon 25 Jan 2021 08:45:49 +0000
ROA not before: Mon 25 Jan 2021 08:45:49 +0000
ROA not after: Tue 23 Nov 2021 09:15:57 +0000
asID: 38851
IP address blocks: 103.131.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21867 (0x556b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Validity
Not Before: Jan 25 08:45:49 2021 GMT
Not After : Nov 23 09:15:57 2021 GMT
Subject: CN=0A9E0EAA3182E7F861D968846D94FAD96AF6FFDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:11:3b:ea:dd:65:99:a8:48:18:65:39:5d:87:
71:a9:18:97:e3:c1:c7:89:67:aa:df:a8:86:87:bf:
3f:1a:17:f2:03:3e:82:22:6f:38:20:48:2d:bf:cf:
b3:c1:32:0b:97:fc:ba:4a:b7:f2:47:5f:63:ee:b4:
26:8b:b5:0d:f6:ed:7c:7d:58:c3:9f:11:74:b5:75:
30:52:b4:5f:1b:88:3d:01:21:0b:e8:ab:b2:97:a2:
64:90:d6:89:1a:f2:76:07:42:c3:9d:ed:b0:04:8d:
c5:b6:6d:d0:fe:e6:b8:73:c9:62:fc:08:70:c2:bd:
78:ae:2e:fa:ee:bc:36:c2:6e:9f:24:53:8f:2f:b8:
6b:15:ef:38:6b:1b:b9:9c:d6:95:08:ea:e3:d5:49:
b7:ea:fc:28:c8:bd:f3:7a:74:41:ac:81:db:f3:0c:
93:32:ed:fa:34:a0:e0:73:ee:73:cf:11:93:21:fc:
fa:24:96:46:cf:5b:69:a6:05:07:74:29:e5:30:42:
7e:3b:36:13:3c:90:b8:17:d3:d0:0d:ad:91:a9:c8:
73:9e:af:bf:40:7e:27:ed:48:47:05:75:57:b2:3c:
71:7c:49:2e:58:99:75:e2:f3:54:a7:d0:97:2b:3b:
68:71:e4:69:be:2b:0f:8f:61:49:27:bc:8a:ec:dd:
0d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:9E:0E:AA:31:82:E7:F8:61:D9:68:84:6D:94:FA:D9:6A:F6:FF:DE
X509v3 Authority Key Identifier:
keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/Cp4OqjGC5_hh2WiEbZT62Wr2_94.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.131.172.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:9d:90:28:37:3f:de:b6:ac:f2:55:4e:e0:05:ee:8f:ac:9c:
c7:71:45:3c:ad:29:3f:4f:d7:05:9d:ac:2b:1b:80:af:52:19:
32:b6:1b:90:4d:5d:99:77:75:84:06:34:d2:66:38:5f:2f:2b:
89:95:4a:47:09:73:80:f3:f1:90:59:da:d5:9a:76:10:c1:9a:
dd:0b:96:94:84:fa:30:e0:b0:fb:bf:e5:f2:bf:37:6d:e6:0c:
34:53:2c:9f:14:5b:4f:20:ff:62:f9:da:d1:26:99:bb:d8:48:
55:16:81:ac:ad:55:72:08:ad:28:95:ab:6b:4a:b7:18:5a:8e:
9a:06:c2:8f:d5:b4:1d:1c:f5:3c:e2:53:95:89:b7:cf:5d:80:
83:99:57:39:da:2b:ef:bc:57:ca:c9:3b:a2:0b:bc:92:a6:3e:
e2:6e:a2:0d:db:11:d7:20:bf:b5:6b:15:d5:ba:1c:5f:db:af:
8e:38:bc:07:f2:70:3e:4b:93:22:6d:24:be:61:b2:a1:9d:80:
f8:00:6e:80:93:e8:f5:8f:d7:bd:14:ea:c0:ca:9c:c7:fa:bb:
a3:13:a5:2f:91:e2:8e:3f:70:6a:c0:9b:a2:77:bc:6d:35:3c:
5a:45:29:9e:30:d5:68:3b:9f:3d:6f:02:33:56:cd:72:aa:a9:
c6:c0:46:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:16 2024 by rpki-client on console-ams.rpki-client.org