Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PNI/MlYBtT6kRw4rYGa37zKrkEecHAc.roa
File: MlYBtT6kRw4rYGa37zKrkEecHAc.roa (raw, json)
Hash identifier: Yk9rqNbMtKivdT/NQCFlIyEIcM2qsPTK1sqzdwE1Bzg=
Subject key identifier: 32:56:01:B5:3E:A4:47:0E:2B:60:66:B7:EF:32:AB:90:47:9C:1C:07
Certificate issuer: /CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Certificate serial: 0585
Authority key identifier: 31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MlYBtT6kRw4rYGa37zKrkEecHAc.roa
Signing time: Wed 29 Sep 2021 02:37:31 +0000
ROA not before: Wed 29 Sep 2021 02:37:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131642
IP address blocks: 103.148.72.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1413 (0x585)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF
Validity
Not Before: Sep 29 02:37:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=325601B53EA4470E2B6066B7EF32AB90479C1C07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:54:36:38:a4:b3:4b:a2:e0:c7:46:fc:71:3d:
b7:f2:1c:3f:f3:47:9a:e4:d8:83:e6:23:2f:c5:df:
99:b4:f3:8a:62:49:a3:79:57:99:d9:70:36:bb:27:
d5:d1:b9:d8:79:70:e7:e6:99:b5:9a:36:54:ca:a5:
a9:1c:a5:6d:03:2d:94:d6:a5:6c:02:68:bc:66:aa:
d2:52:5c:b4:6c:f8:7f:8a:f5:3b:55:70:93:5f:aa:
88:a5:3f:13:2d:c1:cf:85:86:f1:ca:0c:01:0c:2c:
6c:f5:34:b4:8e:55:0f:22:51:a8:a6:93:df:46:ab:
d1:9e:1e:bf:be:67:96:70:ed:38:7c:e2:ba:ac:90:
7e:b3:0d:be:a4:48:e0:e9:eb:d6:57:76:41:f3:b0:
b9:1a:5b:f0:32:16:c9:18:bf:78:bf:a3:ea:bb:a3:
5e:45:08:d6:d2:81:ef:bf:a3:33:f2:26:35:d5:32:
e3:b0:4f:64:0f:f5:53:ec:cd:f7:df:aa:59:90:46:
89:ca:8b:84:63:c2:4a:5a:49:61:73:7a:c7:75:c9:
f9:b4:91:28:bb:4d:ce:0e:ef:c8:bb:43:27:b1:64:
46:62:c8:0c:4f:4b:50:29:c0:80:18:75:f6:d1:88:
39:b6:62:b8:01:ec:ef:24:1b:a1:bb:8f:bd:21:16:
ef:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:56:01:B5:3E:A4:47:0E:2B:60:66:B7:EF:32:AB:90:47:9C:1C:07
X509v3 Authority Key Identifier:
keyid:31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MlYBtT6kRw4rYGa37zKrkEecHAc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.148.72.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:70:78:7d:53:25:8b:cf:47:64:41:d6:53:d7:8a:b4:fb:87:
41:37:de:09:06:90:f2:36:90:7b:4b:8c:61:4f:7d:cc:7b:32:
98:df:37:d2:77:06:7a:dc:f6:b0:17:22:a0:a5:8d:c6:78:d2:
bc:91:21:83:10:05:3f:ce:b2:86:37:51:3c:7f:c1:e4:3d:fa:
c1:8c:82:cb:b0:42:f3:a9:f0:10:3f:0c:af:bd:ae:14:a1:50:
d2:a2:23:8e:e4:ed:fc:ec:87:50:a1:9e:b5:2f:8b:48:91:e2:
d5:70:40:76:65:49:81:04:58:a1:99:bf:72:44:20:9e:f7:ff:
14:f5:06:0b:dc:11:87:4c:13:49:da:34:18:e1:fb:2b:3b:45:
9d:f4:18:97:43:94:42:52:f3:53:4c:15:26:38:0b:d8:e0:c8:
43:a3:ba:d8:b7:02:c7:af:18:79:59:e8:fc:5e:89:2a:3a:2a:
ef:cf:f4:85:d5:8a:da:d4:3d:32:d1:e4:9f:0d:27:ab:8c:5e:
9f:02:35:88:f1:5a:5d:e2:8b:be:90:ec:e9:27:ae:a4:a5:6e:
85:87:39:c7:99:e0:61:8b:14:ee:f6:ab:f2:91:f8:d5:b4:81:
da:04:d4:9c:ce:d5:76:d5:b9:ca:a7:84:40:dc:ba:48:71:4e:
d0:4a:d8:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org