Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/hWd8RIZxlOZh_K95HxAwdD1qv2U.roa
File: hWd8RIZxlOZh_K95HxAwdD1qv2U.roa (raw, json)
Hash identifier: f7XfARApmdPjyZi9vgN0ffkzDaoez2CSUzSjrO8oMpY=
Subject key identifier: 85:67:7C:44:86:71:94:E6:61:FC:AF:79:1F:10:30:74:3D:6A:BF:65
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0998
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/hWd8RIZxlOZh_K95HxAwdD1qv2U.roa
Signing time: Wed 29 Sep 2021 02:36:50 +0000
ROA not before: Wed 29 Sep 2021 02:36:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38851
IP address blocks: 103.234.76.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2456 (0x998)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Sep 29 02:36:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=85677C44867194E661FCAF791F1030743D6ABF65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0f:99:34:01:ac:68:89:6f:44:2a:46:57:64:
79:2a:d2:f9:9d:bb:5f:df:52:ac:48:a7:ae:a4:11:
39:40:f0:a4:7a:10:87:6b:43:f4:aa:7e:93:91:89:
e7:99:87:1b:f3:e0:c5:4e:19:8e:b5:56:54:2c:d2:
cb:e2:02:e7:d1:2b:be:4d:da:e3:fb:28:ee:09:70:
e6:75:19:2e:3b:fd:d9:1f:50:18:c6:fd:b8:39:40:
06:5f:8f:54:1f:e3:bb:09:b4:9a:8e:f9:f4:23:f6:
ca:bf:97:89:ea:26:4b:05:a9:30:d5:0d:63:65:ab:
f2:f3:0c:a1:d6:d4:84:46:78:90:0d:41:b1:50:1b:
b2:5c:79:1e:86:09:84:35:1c:0e:76:14:e1:81:3f:
53:9d:11:16:fe:72:89:cc:07:fb:65:a0:e0:c0:87:
dd:f9:31:63:29:43:6c:bc:d4:ff:b1:f8:fe:ee:ad:
85:a4:a9:e1:1c:ea:cc:62:79:01:66:e1:5d:e8:91:
71:1e:c2:87:e3:52:a1:4c:fc:48:c8:d7:21:6e:72:
bd:7c:5a:d4:9d:16:ed:a3:23:8c:dd:ff:a9:57:e2:
ce:53:b8:88:a5:37:7d:1e:ac:67:91:4c:36:ce:b5:
d4:11:29:36:3d:bd:11:f7:15:6d:65:b5:8d:cd:8f:
ee:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:67:7C:44:86:71:94:E6:61:FC:AF:79:1F:10:30:74:3D:6A:BF:65
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/hWd8RIZxlOZh_K95HxAwdD1qv2U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.76.0/22
Signature Algorithm: sha256WithRSAEncryption
84:9a:2e:62:a9:ca:b9:e1:60:31:39:2a:fb:0b:ae:84:fb:9b:
0c:8c:1b:7f:d4:e1:da:91:0f:69:94:79:f2:b6:e7:57:0b:c8:
cd:2f:6e:ee:3c:fe:53:1e:0b:31:fa:91:5b:72:c8:75:ef:e0:
9c:b8:fd:c7:f0:7d:cf:f9:e5:92:03:ba:ea:21:20:80:61:33:
9d:3b:ae:33:6e:09:8a:50:1b:50:62:97:32:6a:30:ee:c2:2a:
24:79:27:c8:fe:00:ea:e5:2f:c7:e9:c5:a5:db:09:82:0d:60:
69:fd:2e:a7:b9:eb:87:b5:81:da:fd:96:ad:8f:28:d2:5f:e0:
d3:a8:07:2b:97:2a:ca:59:f0:b6:17:65:0a:60:bc:ef:64:b7:
4b:12:5e:c5:06:e8:e1:a2:71:f7:78:41:41:32:0d:ac:93:8a:
59:70:4c:86:9c:f6:e2:ce:1a:4f:79:30:59:ea:51:66:a4:74:
fd:4d:9c:e1:1d:dc:26:42:72:f3:89:77:35:78:ef:5d:22:9d:
15:4b:cc:67:37:23:b9:cc:28:e2:a7:2d:93:25:0c:1f:3d:fe:
9a:80:fa:cd:e8:ad:39:4c:d6:fc:73:75:d7:1b:7e:ad:d1:4e:
0e:02:d9:57:49:e4:ab:5d:5f:fa:94:e4:38:3c:c3:b9:0e:c4:
22:e9:4b:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org