Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/-bz3IJqKvj2e4lz2RbNCncRwn1w.roa
File: -bz3IJqKvj2e4lz2RbNCncRwn1w.roa (raw, json)
Hash identifier: omtaZCIP95Ji93h3jAOpo+lGTGaEbsecwp7844A8C1c=
Subject key identifier: F9:BC:F7:20:9A:8A:BE:3D:9E:E2:5C:F6:45:B3:42:9D:C4:70:9F:5C
Certificate issuer: /CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Certificate serial: 0762
Authority key identifier: 38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/-bz3IJqKvj2e4lz2RbNCncRwn1w.roa
Signing time: Tue 29 Sep 2020 09:58:07 +0000
ROA not before: Tue 29 Sep 2020 09:58:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 134823
IP address blocks: 103.122.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1890 (0x762)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Validity
Not Before: Sep 29 09:58:07 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F9BCF7209A8ABE3D9EE25CF645B3429DC4709F5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5e:89:ab:65:f7:ca:a2:18:ec:5a:8e:c5:27:
fc:eb:be:4b:d9:17:2c:04:47:c6:e5:8c:14:68:63:
8a:44:77:51:8d:73:70:b1:6f:cc:12:ca:e4:45:91:
bd:6e:9d:41:91:87:16:94:0e:f8:bf:c2:d7:94:35:
40:aa:4f:e8:80:c3:82:c2:30:64:93:6d:7d:0c:55:
95:69:b2:55:4a:8d:02:6a:c5:e6:a7:8f:3c:71:2c:
ec:bc:10:41:8e:fd:b1:79:63:2d:f4:1a:91:32:fe:
20:89:7a:ad:4a:d6:27:a4:c2:8e:99:cb:9b:3a:66:
61:1b:98:5c:cc:d3:ad:fd:92:d7:05:0c:49:cc:25:
99:71:e6:66:3f:cc:5c:b7:df:b6:00:ca:88:68:65:
72:07:37:6c:e6:d4:d2:de:ff:49:b5:66:0e:65:5c:
61:ac:3d:f6:27:ab:49:a1:2f:ba:72:e2:a6:73:00:
83:c2:1c:35:be:78:2f:f6:c2:72:1f:0d:4f:fd:63:
3f:a1:96:ce:17:b3:59:52:59:0a:aa:03:ec:e1:74:
67:73:09:70:21:64:c0:4f:2a:50:17:e0:4b:27:6e:
cb:b7:91:6c:fc:9d:ce:f3:3f:70:ac:0c:0c:ed:dd:
f3:95:88:72:79:36:9f:28:81:a9:3b:61:15:d6:3f:
9f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:BC:F7:20:9A:8A:BE:3D:9E:E2:5C:F6:45:B3:42:9D:C4:70:9F:5C
X509v3 Authority Key Identifier:
keyid:38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/OFcT41n8ucqxLyDbP_GQ_KgeMj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/-bz3IJqKvj2e4lz2RbNCncRwn1w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.191.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:b9:25:b9:ff:ac:df:4a:7b:0c:2e:57:b5:65:05:44:97:5c:
f7:0c:9b:d4:42:ea:e0:79:b3:60:3b:1e:33:d7:ee:6f:92:3f:
9d:ed:8e:f9:94:3c:fd:40:83:59:5c:12:52:ab:4e:b4:25:e9:
c1:fb:74:a2:a7:86:5c:01:15:b1:9c:04:0c:88:7c:69:57:d7:
d6:92:5c:88:db:2f:b9:9c:58:3c:cd:35:9f:b2:9d:ab:ef:71:
6c:bc:9a:d7:13:cc:98:5c:4c:29:68:c3:63:2c:db:47:3b:0b:
35:2d:4b:6c:8c:57:7a:d8:d2:0b:0d:5b:17:7d:55:c2:9f:e7:
df:6e:7e:9d:73:6f:de:c9:8b:37:e7:0e:d9:f2:cb:cc:5f:02:
03:fa:77:09:72:78:05:cb:04:4b:5b:bf:aa:ad:70:68:c1:fb:
fb:59:8f:6e:c2:30:15:04:64:71:b1:c4:53:75:6a:46:05:2d:
ef:a5:31:19:09:dd:70:5d:0c:8b:fa:e5:ec:3e:8e:1a:bb:47:
8d:3b:22:36:3b:68:c2:3a:6e:79:21:df:19:b4:b2:00:7b:06:
ea:89:2a:95:e4:b4:c1:66:6b:c9:6e:50:0a:b7:8a:31:42:fb:
dc:0c:f9:f0:3a:3c:90:16:37:14:8d:ac:cd:9e:66:6f:75:53:
35:5c:9f:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:54 2023 by rpki-client on console-ams.rpki-client.org