Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/mm53sPfliX0b_Hk--Y1KccRagKM.roa
File: mm53sPfliX0b_Hk--Y1KccRagKM.roa (raw, json)
Hash identifier: QBjnJOafoHAAOOMQjbcymOV2jEWzzEk9I5H+lUcxJlo=
Subject key identifier: 9A:6E:77:B0:F7:E5:89:7D:1B:FC:79:3E:F9:8D:4A:71:C4:5A:80:A3
Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Certificate serial: 5644
Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/mm53sPfliX0b_Hk--Y1KccRagKM.roa
Signing time: Tue 09 Nov 2021 09:18:35 +0000
ROA not before: Tue 09 Nov 2021 09:18:35 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38851
IP address blocks: 103.131.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22084 (0x5644)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Validity
Not Before: Nov 9 09:18:35 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9A6E77B0F7E5897D1BFC793EF98D4A71C45A80A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:07:bf:d8:68:1d:52:54:da:ab:a6:ad:bf:7b:
e4:15:11:aa:37:3b:0a:de:a6:7d:77:69:09:c6:a1:
41:6f:30:d9:05:2c:74:9f:ba:fc:96:7f:72:06:b9:
d1:2b:ac:06:d7:d6:0b:97:d1:18:b0:79:5e:9c:3c:
c9:1b:c8:bf:ab:8f:f6:0f:eb:a5:0e:b8:97:ac:36:
19:ed:1d:47:ea:24:64:45:ed:24:92:6e:c5:25:3c:
94:08:49:ef:b9:42:57:8c:7b:17:33:2e:35:8c:c5:
e8:60:a2:9b:aa:07:3b:da:07:04:e3:7d:23:d8:4e:
ee:23:01:7f:7d:ba:9e:63:45:24:a9:60:e8:36:3b:
ea:4d:c7:91:8c:97:1c:0e:de:8e:a9:b6:4f:f6:cd:
e5:52:f2:69:81:45:e0:17:10:33:ab:ad:8a:04:1c:
b6:9c:bb:d6:84:a2:a3:63:22:05:5b:49:18:92:a2:
df:95:90:a1:30:59:11:e1:e0:4a:fd:cd:db:8c:36:
4f:fe:75:d6:98:3a:1d:99:dd:d7:91:83:b7:96:e3:
21:6a:22:94:2c:0f:1c:a9:a4:9d:45:b5:c0:87:8f:
40:9d:51:09:cd:4a:3e:9b:e7:e1:3f:2e:2c:d7:54:
ba:be:b5:a9:85:33:82:c8:19:31:2b:1e:ea:58:0e:
81:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:6E:77:B0:F7:E5:89:7D:1B:FC:79:3E:F9:8D:4A:71:C4:5A:80:A3
X509v3 Authority Key Identifier:
keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/mm53sPfliX0b_Hk--Y1KccRagKM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.131.172.0/22
Signature Algorithm: sha256WithRSAEncryption
28:3b:af:c6:f9:f0:27:fb:ee:a8:4a:cc:32:c3:8a:3c:bd:0c:
af:12:15:4f:96:a9:37:4e:5c:9a:dd:4c:18:61:d9:b9:1a:bd:
76:77:dd:18:b2:d3:8a:ff:e1:e5:f2:f0:bb:c0:8c:b0:32:55:
e8:f4:00:0b:02:44:01:47:a1:64:21:bc:10:ff:71:aa:55:3c:
a4:19:42:a6:fd:51:41:c0:43:98:ec:ad:d5:b0:b5:b6:2c:62:
eb:bf:00:e9:95:0a:09:69:a6:f2:9f:1e:53:87:52:43:79:d1:
7f:3d:3f:62:75:1f:5f:ef:61:51:65:d4:f1:3a:a3:41:a8:8b:
68:55:0d:b4:48:25:f8:cf:f8:80:f1:50:6e:94:05:2e:5b:e9:
7f:33:fc:b0:6a:64:df:85:49:50:f4:37:c2:f6:b9:20:7b:a5:
f9:b4:97:71:bc:fb:86:b4:51:ee:95:5a:39:87:95:28:4d:71:
f9:95:7f:94:2e:48:46:4b:fd:7f:41:98:d9:47:20:7c:8e:89:
41:e9:e3:de:cd:1a:d9:7c:64:9e:34:67:b3:53:ad:1f:c9:a2:
78:05:46:f7:a6:ec:0f:96:0a:61:49:b1:78:dd:cc:c6:71:39:
4a:09:f7:d0:41:a5:92:0a:e3:23:74:bc:5b:b2:40:ad:36:fc:
66:75:06:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:14 2023 by rpki-client on console-fra.rpki-client.org