Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ETIME/hQxghhL2XeX_1JuhsBOFTliPJ5Q.roa
File: hQxghhL2XeX_1JuhsBOFTliPJ5Q.roa (raw, json)
Hash identifier: rsm8dQWgCIMYw4KrNa/GVSBR84FRriguoPOnJ1mpF8I=
Subject key identifier: 85:0C:60:86:12:F6:5D:E5:FF:D4:9B:A1:B0:13:85:4E:58:8F:27:94
Certificate issuer: /CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F
Certificate serial: F5
Authority key identifier: E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/hQxghhL2XeX_1JuhsBOFTliPJ5Q.roa
Signing time: Tue 09 Nov 2021 09:57:23 +0000
ROA not before: Tue 09 Nov 2021 09:57:23 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 134823
IP address blocks: 103.158.228.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 245 (0xf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F
Validity
Not Before: Nov 9 09:57:23 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=850C608612F65DE5FFD49BA1B013854E588F2794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cb:a0:ed:59:1d:4d:ab:3b:36:d9:1c:31:5f:
be:35:19:66:f4:1c:bc:7c:1a:ec:6e:9c:78:92:25:
25:62:27:3e:7d:bc:57:f0:fb:f5:51:28:e9:c3:b9:
d1:97:db:4f:7e:44:a1:49:b5:c0:5a:9c:c8:da:94:
49:43:25:62:c4:24:dc:3b:f1:c3:12:96:f4:7f:7f:
82:73:13:57:a9:d0:07:ab:1a:19:bc:f3:70:f0:a4:
93:5b:7c:f6:e3:26:d6:28:27:90:35:50:be:36:5a:
ab:1d:83:80:71:e6:79:a8:2a:51:a8:47:2e:ae:90:
f8:86:df:5b:3b:d7:2a:ff:ed:fb:79:9d:9e:a7:21:
69:ba:b0:f2:1e:b8:33:c2:f4:82:b8:bc:9b:a7:49:
4a:91:9a:b1:b7:f5:e2:e0:57:57:41:ee:b5:24:96:
ed:53:16:04:93:8a:c5:be:f9:1a:9c:d6:b7:58:3a:
58:67:c6:ab:f2:ca:3a:e2:fa:32:37:17:c3:18:1f:
73:91:23:72:73:3a:99:ee:96:c1:34:9d:be:62:a3:
a9:cf:42:f9:f5:6e:3f:87:c5:c3:07:60:fe:4d:4c:
6b:d1:a6:88:77:b8:c2:2f:a3:62:73:ae:89:35:16:
79:f9:d7:f3:3c:1a:a5:ae:ab:64:2f:4f:e5:d5:bb:
6d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:0C:60:86:12:F6:5D:E5:FF:D4:9B:A1:B0:13:85:4E:58:8F:27:94
X509v3 Authority Key Identifier:
keyid:E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/4OqIWn5pccmTQnd-fd26ZdDrEx8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/hQxghhL2XeX_1JuhsBOFTliPJ5Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.158.228.0/23
Signature Algorithm: sha256WithRSAEncryption
73:5c:68:74:af:41:c0:06:2d:38:a5:41:64:af:c4:a9:25:23:
35:e4:fa:47:51:0e:77:02:77:7c:f0:1b:68:f9:2c:4d:71:7c:
9f:40:a2:3e:39:6c:5c:47:09:a7:ec:70:5f:98:1d:8c:26:1b:
60:02:ef:56:12:bf:96:f0:9a:10:73:24:89:ad:ed:c0:71:09:
27:32:41:07:83:d0:c2:ad:b4:b6:8d:ce:2e:4e:0f:03:09:5d:
44:5d:5f:1f:16:ec:be:e9:dc:32:37:b5:7e:34:20:53:7c:b5:
08:43:27:79:4b:f3:54:22:14:ef:7b:f5:59:7a:9f:33:74:5b:
62:83:c1:bc:6e:d9:b0:b8:ce:db:3e:60:f7:20:68:b5:81:da:
72:fc:87:f6:fe:fd:37:fb:d9:22:0a:55:f9:fb:2e:0b:00:5e:
b3:fa:e6:d3:d9:bb:e8:17:e2:ea:59:26:fd:02:0b:dd:4e:ad:
05:78:f7:5a:c2:61:96:04:4e:cb:57:f9:7b:6e:d2:0f:15:fe:
b1:c3:d3:3a:28:5d:8c:64:04:6b:73:32:2e:cc:fb:48:8a:c9:
d7:df:83:16:b6:c0:0b:d3:5e:f8:b1:bd:ed:74:cc:f9:1d:3b:
dc:d7:55:bc:19:b1:f0:a0:f2:cb:24:bc:38:d1:5f:f3:70:4c:
a3:fa:69:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:06 2024 by rpki-client on console-ams.rpki-client.org