Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/yMoJzTi5n4YNGQHG68KgX4u-vcg.roa
File: yMoJzTi5n4YNGQHG68KgX4u-vcg.roa (raw, json)
Hash identifier: 3jNB0wMApQeMfEo0ZV6Cyo/yfJZvhl8xeIP8xGCCZsU=
Subject key identifier: C8:CA:09:CD:38:B9:9F:86:0D:19:01:C6:EB:C2:A0:5F:8B:BE:BD:C8
Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Certificate serial: 5569
Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/yMoJzTi5n4YNGQHG68KgX4u-vcg.roa
Signing time: Mon 25 Jan 2021 08:45:03 +0000
ROA not before: Mon 25 Jan 2021 08:45:03 +0000
ROA not after: Tue 23 Nov 2021 09:15:57 +0000
asID: 38851
IP address blocks: 103.131.172.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21865 (0x5569)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2
Validity
Not Before: Jan 25 08:45:03 2021 GMT
Not After : Nov 23 09:15:57 2021 GMT
Subject: CN=C8CA09CD38B99F860D1901C6EBC2A05F8BBEBDC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:31:c7:b0:09:74:0b:6d:4a:5d:ba:44:ca:41:
55:26:0c:02:9b:cf:d1:97:b2:49:37:b6:53:35:08:
dd:c3:08:66:8a:ae:c9:99:22:b8:a1:51:d2:fc:6a:
ed:f7:a9:62:4f:bd:00:63:9f:e0:58:6c:0c:a9:91:
8b:8d:de:6d:7f:f3:b1:eb:a2:29:d8:dc:67:3f:76:
9e:6d:8a:44:4a:1a:28:e6:37:d4:25:8c:3b:81:f4:
9f:9b:56:65:3c:db:27:61:bf:01:96:81:a9:15:c0:
31:7e:4d:cb:a9:64:fe:bb:43:c9:c1:8e:4e:7f:57:
6c:fc:42:8c:b4:d0:58:58:87:23:b3:7f:1c:c2:5d:
e8:4f:7d:07:46:c8:25:1c:67:c7:9c:1b:f9:89:39:
91:fa:64:60:82:a4:4c:9e:4f:a6:3c:db:88:08:e2:
65:a5:4e:16:94:46:db:22:28:6d:dc:65:54:f9:bb:
a0:80:b3:6b:1b:02:6e:65:40:e0:51:73:6c:df:9c:
c1:0f:31:8b:d7:1d:d4:12:5d:a9:18:a1:38:72:c1:
0c:dc:58:82:c7:c4:76:ef:f8:6e:57:98:da:81:0a:
87:6c:b3:2b:98:dc:7b:b2:29:85:76:5c:e3:eb:b2:
cb:74:e2:84:f6:8a:5b:49:10:2c:e3:86:50:a7:08:
0e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:CA:09:CD:38:B9:9F:86:0D:19:01:C6:EB:C2:A0:5F:8B:BE:BD:C8
X509v3 Authority Key Identifier:
keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/yMoJzTi5n4YNGQHG68KgX4u-vcg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.131.172.0/22
Signature Algorithm: sha256WithRSAEncryption
77:7b:7b:97:35:e8:fe:69:9e:07:62:0b:73:98:09:b5:a0:14:
93:72:5f:68:f9:5a:4e:82:b5:3e:ef:b7:78:84:47:a3:57:8b:
e2:de:0f:13:9c:6c:22:27:2c:ec:56:d0:a9:62:29:33:69:81:
02:88:a2:25:0d:85:28:3c:4c:38:2a:88:1a:19:d2:8f:98:8d:
16:75:ea:f3:47:64:36:f4:8c:f0:90:6e:df:c0:68:87:84:89:
ee:bb:f3:42:88:30:43:53:38:5a:b2:a0:b5:12:3c:fb:d0:54:
1f:3b:11:af:35:30:d5:d1:f2:d0:f7:1f:0d:d1:df:55:f1:96:
68:02:85:7e:12:ee:b8:64:cb:c8:a6:f7:95:51:5c:d0:f5:01:
d9:82:db:ce:54:5f:4d:27:29:5a:ac:ae:69:d8:e2:a1:fd:46:
cd:62:0c:2d:88:fe:7a:98:8e:c3:2d:da:98:e9:37:5e:22:d5:
3c:c0:f2:89:cc:f3:15:68:25:3a:2e:0d:2e:4e:70:55:30:c7:
a1:86:13:d0:2d:ad:aa:0c:c2:77:1b:97:df:43:d9:e7:e5:38:
e6:44:8b:e0:6e:a7:74:a2:4d:a0:d0:21:0a:cf:77:cf:e4:3d:
5b:ff:f0:bf:c1:85:03:58:74:33:0f:69:ed:14:78:12:2b:56:
57:76:30:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org