Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Mdg_G7KzvtDO45oPxlpwiUA3I_Q.roa
File: Mdg_G7KzvtDO45oPxlpwiUA3I_Q.roa (raw, json)
Hash identifier: kB2WY1t7oUup4OIFfIo5DOikkrRiT9QpDuyVj1MmGyc=
Subject key identifier: 31:D8:3F:1B:B2:B3:BE:D0:CE:E3:9A:0F:C6:5A:70:89:40:37:23:F4
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 1CB0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Mdg_G7KzvtDO45oPxlpwiUA3I_Q.roa
Signing time: Wed 29 Sep 2021 02:48:03 +0000
ROA not before: Wed 29 Sep 2021 02:48:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38841
IP address blocks: 106.1.156.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7344 (0x1cb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Sep 29 02:48:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=31D83F1BB2B3BED0CEE39A0FC65A7089403723F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:20:f3:09:fd:35:cf:65:38:8e:40:4d:d5:70:
4c:c9:cd:bf:ec:c0:ab:9b:1d:2c:a9:9f:44:79:2f:
70:67:48:39:f7:cc:cb:9d:f8:da:3b:d3:e2:54:fa:
86:05:62:87:7d:9a:b0:08:db:cc:4d:3a:a6:28:de:
14:ec:67:2c:b4:8a:ac:30:b4:2f:69:6e:8a:6b:17:
5d:f7:26:6d:58:db:0a:d7:e2:47:a5:08:93:03:aa:
1d:23:1e:b8:fd:db:c6:65:f7:7b:7a:6c:d5:58:84:
b3:67:26:5c:33:66:eb:b6:48:82:8c:08:a3:3c:16:
e2:f7:3a:0e:a5:ef:f3:21:02:ef:be:ba:16:99:88:
91:b0:00:af:4f:98:f0:1b:57:57:a1:02:ab:ad:83:
b8:bb:f2:a3:e8:1c:da:0e:69:a6:da:7a:b0:a2:42:
3c:57:d3:b0:35:16:b5:23:d9:53:40:3f:64:f4:80:
0b:74:4e:9d:38:c0:09:ca:3b:a5:33:e5:30:23:14:
75:6c:66:53:24:e3:47:06:fa:b8:41:4c:a4:b0:95:
5e:4d:d3:41:96:e1:0e:26:7a:57:40:ba:72:ce:21:
5b:9e:a8:7e:c7:26:dc:01:a9:a9:a7:32:33:6f:8d:
c7:56:a9:85:01:09:f8:ce:fe:7b:97:9c:c8:87:b0:
62:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:D8:3F:1B:B2:B3:BE:D0:CE:E3:9A:0F:C6:5A:70:89:40:37:23:F4
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Mdg_G7KzvtDO45oPxlpwiUA3I_Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.1.156.0/22
Signature Algorithm: sha256WithRSAEncryption
03:33:71:83:a0:23:44:14:6d:eb:f4:d0:54:be:01:cc:33:81:
57:63:03:db:a7:73:46:aa:33:b1:1e:9e:f8:d3:6d:e6:d3:67:
81:a5:f4:a6:76:5e:31:5b:b8:97:07:38:2f:45:f4:ed:28:49:
53:24:4a:8a:51:b1:c7:d5:b2:86:9b:6e:97:f7:9d:3c:84:41:
07:cb:64:d9:8d:b5:2d:81:1a:d0:8a:dd:f2:9c:40:3a:c3:98:
26:05:e2:24:f6:43:76:8a:35:c7:1e:99:bf:23:f1:d2:f9:c8:
50:4a:67:0b:9f:b2:c6:78:39:de:a8:af:33:28:73:11:42:87:
db:60:01:76:a7:22:fc:a7:de:27:49:41:78:d8:c6:2b:37:50:
77:b6:26:38:92:e4:2a:db:99:0e:57:f5:67:6f:4a:87:a8:2c:
71:a2:2f:67:22:90:92:5c:a5:a1:86:33:08:99:8c:30:a2:46:
23:24:2a:bb:a5:3e:13:52:a4:74:70:14:2c:8e:79:af:a7:dd:
9e:b0:2b:73:b8:b4:88:a9:ba:57:91:59:db:0e:01:1f:04:b8:
23:54:a0:7b:27:03:95:bb:8e:69:8b:ee:fa:c9:53:2e:b4:5f:
5f:eb:71:9d:d6:f4:b4:5a:a4:be:34:fa:d5:4d:99:f9:bc:ab:
8b:5a:6e:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org