Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/RRIA5Fbz33ld7AkgZ2mT8B-uj-Y.roa
File: RRIA5Fbz33ld7AkgZ2mT8B-uj-Y.roa (raw, json)
Hash identifier: PO8EARZR3Qjfg5A04wb7nuPJq1oJOvAoWWk1UA2jqsg=
Subject key identifier: 45:12:00:E4:56:F3:DF:79:5D:EC:09:20:67:69:93:F0:1F:AE:8F:E6
Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Certificate serial: 5585
Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/RRIA5Fbz33ld7AkgZ2mT8B-uj-Y.roa
Signing time: Sun 07 Feb 2021 13:15:56 +0000
ROA not before: Sun 07 Feb 2021 13:15:56 +0000
ROA not after: Tue 23 Nov 2021 09:15:57 +0000
asID: 38851
IP address blocks: 103.46.188.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21893 (0x5585)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Validity
Not Before: Feb 7 13:15:56 2021 GMT
Not After : Nov 23 09:15:57 2021 GMT
Subject: CN=451200E456F3DF795DEC0920676993F01FAE8FE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f4:fa:bb:a3:2f:70:4e:52:b8:41:1b:bb:61:
24:19:54:4a:30:85:75:b2:92:57:eb:9e:a2:71:b9:
ff:c8:b7:d5:9a:4c:67:51:65:b9:b1:f9:b4:62:31:
5e:57:0b:0f:ca:23:cd:a6:e2:69:6f:d1:65:c9:50:
14:2b:47:a4:6b:a1:ad:57:51:08:59:39:b5:b1:87:
86:29:70:04:7b:91:15:9c:9f:87:ce:35:6b:fb:07:
15:a1:4b:ff:77:7c:1c:f1:df:1f:ac:20:6d:f0:6e:
77:89:b9:48:28:ff:2f:79:2f:7d:2c:1c:95:ea:b4:
0b:fd:61:d5:b4:fe:41:b2:a8:1b:55:16:42:8b:94:
bd:88:81:74:bc:d5:02:8b:cf:4d:4f:bf:b6:41:b1:
7d:cb:86:42:c1:46:91:86:b0:16:74:b8:89:42:95:
dd:0f:a4:5c:ab:dc:60:ed:b7:95:9f:cd:1b:5c:ba:
6b:73:3d:84:f4:af:d3:3c:c5:3f:40:68:d5:59:73:
69:81:b0:3c:bc:60:bb:ec:c7:6f:e2:b8:05:94:02:
8e:32:d4:2c:51:77:22:08:14:20:80:62:29:5f:34:
72:fa:f2:1c:bf:80:73:7b:bb:77:41:18:05:b5:59:
31:00:d2:b5:2a:f9:b5:50:0f:b2:33:b8:b4:23:7f:
53:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:12:00:E4:56:F3:DF:79:5D:EC:09:20:67:69:93:F0:1F:AE:8F:E6
X509v3 Authority Key Identifier:
keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/RRIA5Fbz33ld7AkgZ2mT8B-uj-Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.46.188.0/23
Signature Algorithm: sha256WithRSAEncryption
54:07:03:65:94:ee:13:9e:52:6e:04:61:60:96:81:59:da:71:
b5:97:f4:af:8c:69:c5:ea:a2:d4:f1:56:af:ae:d6:28:b2:d0:
00:51:c9:3d:91:a9:b2:6f:d4:f9:6f:85:2c:72:b8:6c:97:09:
f5:07:36:ed:d2:c2:40:1a:93:61:c2:3d:dd:cd:b7:a3:dd:b9:
bc:b9:f2:e8:f0:3e:a8:c7:d6:7b:64:59:4c:b4:ba:cd:38:a5:
57:3c:fa:b5:73:0f:e8:b2:8b:e5:4d:b2:69:53:c5:f4:06:d3:
62:10:94:c1:44:5e:d2:f6:af:fc:65:cd:e6:1c:a7:9b:44:df:
7e:4f:89:34:3d:2d:17:7e:b7:70:47:c2:a0:0c:42:c3:5b:b4:
75:48:71:6c:9c:2d:c9:fc:73:0c:e2:39:7b:5e:3c:09:fc:db:
a6:5f:3b:bb:dd:fc:a8:12:50:4f:fa:ea:ce:4a:b9:44:a8:32:
51:e6:a1:9a:64:2a:9e:a0:cb:c6:4e:d5:93:01:90:a4:6f:e3:
72:0e:44:f2:48:33:a5:46:b3:bf:f2:f7:9c:1b:58:a6:dc:80:
20:2e:49:02:21:32:0d:f2:b8:e9:83:5c:f8:70:5a:dc:53:c6:
ed:c0:b5:3c:90:23:d9:6f:13:dc:48:6b:88:df:70:c7:de:73:
d0:e4:8e:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org