Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/DoIlIhA2RHEJXPz2_jB0Pn6qX28.roa
File: DoIlIhA2RHEJXPz2_jB0Pn6qX28.roa (raw, json)
Hash identifier: epPFOYBPig3S+LUBRtA4nfQHFhPmTOSnt9Plf4WbIgA=
Subject key identifier: 0E:82:25:22:10:36:44:71:09:5C:FC:F6:FE:30:74:3E:7E:AA:5F:6F
Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Certificate serial: 5644
Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/DoIlIhA2RHEJXPz2_jB0Pn6qX28.roa
Signing time: Tue 09 Nov 2021 09:18:34 +0000
ROA not before: Tue 09 Nov 2021 09:18:34 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38851
IP address blocks: 103.131.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22084 (0x5644)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Validity
Not Before: Nov 9 09:18:34 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0E82252210364471095CFCF6FE30743E7EAA5F6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7b:e2:54:2d:5e:18:a1:35:53:75:81:2f:d6:
0d:72:bd:4d:e8:73:b5:b1:0c:11:14:39:bb:72:0b:
47:36:0b:5a:76:8d:58:41:03:e6:8e:aa:15:f0:c4:
ea:7d:b6:bd:98:84:43:7f:f0:09:8b:89:59:97:25:
c1:bb:57:e2:8c:25:de:58:4e:c5:8a:03:ea:75:61:
29:72:94:c9:0e:5e:09:97:d6:18:ac:e7:16:43:97:
1e:67:47:64:48:79:04:d0:10:80:ae:45:a6:e0:e6:
bd:4b:85:f0:7d:dc:15:ed:20:91:ca:bb:46:71:d6:
51:37:f5:98:47:a5:b5:a5:7a:8d:b5:09:36:08:f9:
b4:26:2e:88:13:a1:3c:1e:b1:37:0d:f2:22:f2:fb:
86:fb:36:57:bd:7b:a5:37:aa:4b:9a:46:90:e8:e8:
bc:ce:d3:49:e3:6a:a8:31:75:7e:fb:d4:93:1b:db:
b6:0d:8b:b3:9b:05:39:2a:29:de:45:2e:3a:8b:c6:
80:ea:75:af:bd:40:a4:f3:16:cf:ba:da:b5:e5:ae:
4d:f9:b4:c9:de:d8:d1:68:78:63:22:8f:1e:db:c3:
3b:18:38:6f:e5:b3:5a:05:ba:78:9b:05:f7:76:b1:
fb:a0:d8:eb:8b:00:9f:5a:b2:f6:e2:24:02:4a:ff:
7a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:82:25:22:10:36:44:71:09:5C:FC:F6:FE:30:74:3E:7E:AA:5F:6F
X509v3 Authority Key Identifier:
keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/DoIlIhA2RHEJXPz2_jB0Pn6qX28.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.131.172.0/22
Signature Algorithm: sha256WithRSAEncryption
af:e6:40:3d:3e:45:a2:a9:1b:62:f5:93:eb:e0:27:4b:a0:ab:
06:74:34:29:8b:de:18:05:ff:e1:ce:29:52:c7:82:f0:aa:22:
b8:ef:ca:17:c9:20:1c:43:1f:f0:fb:9a:c2:a4:92:9c:d4:c9:
34:0e:b1:19:70:81:38:1b:6d:2b:3e:5e:69:e5:ad:ce:63:ac:
d9:46:22:fa:73:04:b1:5a:94:3e:c3:f2:e5:34:77:5d:8a:f0:
9d:6b:d1:44:44:81:4e:d5:6d:dc:4b:2e:aa:c1:0b:a4:72:31:
47:14:a3:cf:ca:7c:50:fc:a3:33:1b:8c:a0:da:8f:fd:93:0d:
93:27:03:7d:88:bc:88:d4:33:01:4f:b8:75:7f:b6:b6:7a:18:
e4:c1:ba:a1:f4:7d:a3:b3:0c:5a:60:55:b3:2b:44:82:4a:f8:
72:c1:8d:60:a1:a5:74:14:4b:d5:b0:06:a2:8f:8d:86:06:db:
56:7e:40:83:8c:76:6d:86:0e:6e:c5:83:0d:b5:f5:ee:8a:9e:
96:c2:93:b9:ca:24:4e:08:5c:de:77:8a:49:57:94:1e:30:81:
71:66:fd:ea:2a:c9:5b:58:4f:36:13:b8:36:5b:c4:c9:b0:8e:
1b:59:61:af:de:ad:da:16:27:4f:4a:10:02:6c:68:dd:78:7f:
5b:ca:93:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org