Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/ah4w4gGfw4tFGNZ8xpvJrPB2mR8.roa
File: ah4w4gGfw4tFGNZ8xpvJrPB2mR8.roa (raw, json)
Hash identifier: ezZB+wPOL+ThBHrhVmheoLqh9DSIKwk3sKdfsD3m9AQ=
Subject key identifier: 6A:1E:30:E2:01:9F:C3:8B:45:18:D6:7C:C6:9B:C9:AC:F0:76:99:1F
Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Certificate serial: 5563
Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/ah4w4gGfw4tFGNZ8xpvJrPB2mR8.roa
Signing time: Mon 25 Jan 2021 08:42:41 +0000
ROA not before: Mon 25 Jan 2021 08:42:41 +0000
ROA not after: Tue 23 Nov 2021 09:15:57 +0000
asID: 38851
IP address blocks: 103.46.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21859 (0x5563)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Validity
Not Before: Jan 25 08:42:41 2021 GMT
Not After : Nov 23 09:15:57 2021 GMT
Subject: CN=6A1E30E2019FC38B4518D67CC69BC9ACF076991F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:87:4f:1c:88:d3:21:3f:6f:34:10:b0:0f:51:
6f:fc:01:01:75:48:68:07:35:75:ec:bb:32:c0:d0:
eb:b2:d3:7f:53:fc:77:f0:2c:a3:7f:63:d2:dd:fd:
fd:11:14:77:a8:47:6e:30:f6:c4:68:52:d7:de:1b:
52:86:b5:29:a3:79:0c:68:71:34:d1:6c:cc:86:ee:
77:8e:2e:2c:9f:5c:bf:51:b4:81:22:dc:88:3a:39:
81:21:66:02:a6:f7:15:93:80:c7:83:6c:68:5f:a7:
47:47:2f:f6:01:7a:db:fb:99:41:ec:f0:10:b8:d9:
4f:b5:b6:cb:1a:91:21:36:42:9f:fd:e5:d2:16:c4:
ae:6b:35:d6:6e:dc:ad:ad:20:2f:cd:4c:69:3c:4e:
75:03:ef:e0:a5:cc:b4:7f:d1:26:34:6c:40:d6:71:
7b:da:bb:28:44:3f:e4:bd:80:4d:12:cd:66:0e:4f:
37:a4:2c:bd:d0:64:1b:a5:e8:40:2a:7d:4c:a3:5d:
0e:a0:a4:94:42:81:9c:0e:bd:07:13:14:65:c2:b9:
e0:3b:dc:80:d0:8b:9a:c5:ae:8a:b4:73:c1:20:be:
07:7c:9c:64:3e:57:07:d2:ec:32:7c:e1:55:c0:50:
b1:12:04:71:57:54:c9:ae:07:9d:78:d3:f1:c1:5c:
64:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:1E:30:E2:01:9F:C3:8B:45:18:D6:7C:C6:9B:C9:AC:F0:76:99:1F
X509v3 Authority Key Identifier:
keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/ah4w4gGfw4tFGNZ8xpvJrPB2mR8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.46.188.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:19:92:de:78:35:6d:ea:a5:3c:db:99:c4:c1:4d:f5:7e:68:
62:8e:c1:c6:ea:ce:f9:0d:8a:be:da:3d:b0:8a:2f:d0:87:47:
be:78:da:99:7e:77:d2:20:33:c1:cd:29:ce:a3:2f:bc:b5:25:
7d:43:d4:fb:a4:a1:68:b6:a8:12:4c:1f:76:55:77:d6:4f:0e:
a8:b0:bb:fd:8f:63:7e:f2:32:49:c1:52:7b:be:1b:91:c6:2c:
80:e5:4e:74:14:49:12:76:ba:fc:0e:44:56:ab:39:a1:db:4d:
a5:74:2a:a9:ca:14:23:78:58:8f:4a:7b:47:7f:63:db:53:ad:
69:cd:d3:d2:df:af:e7:f6:54:a7:7c:a0:d9:10:39:c9:e8:e2:
bc:76:16:24:35:9d:8d:c8:7d:7d:ff:ec:01:e4:41:79:52:38:
f6:0b:84:71:f9:4c:7b:26:59:7a:4f:bd:b5:4d:74:06:15:6b:
1e:43:eb:a5:d2:0d:25:b7:30:43:b9:2a:87:13:64:c7:45:85:
c1:53:f9:b0:fa:5d:ba:d0:ec:cc:05:e5:42:a0:14:27:cd:b3:
16:46:75:6f:05:ee:69:13:02:99:7f:9b:ff:cf:61:86:87:18:
6e:eb:5d:31:99:6e:0b:8b:10:a4:f3:f6:8f:d8:17:97:21:88:
0f:b1:dd:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org