Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/8SNShsOh0wprpNvb4oizlK6JzL8.roa
File: 8SNShsOh0wprpNvb4oizlK6JzL8.roa (raw, json)
Hash identifier: bVweijiaGHVRQeFlRMfrvPMOJOlhTXKJvflzEgfeQ8k=
Subject key identifier: F1:23:52:86:C3:A1:D3:0A:6B:A4:DB:DB:E2:88:B3:94:AE:89:CC:BF
Certificate issuer: /CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Certificate serial: 0978
Authority key identifier: 38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/8SNShsOh0wprpNvb4oizlK6JzL8.roa
Signing time: Wed 29 Sep 2021 02:50:31 +0000
ROA not before: Wed 29 Sep 2021 02:50:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131657
IP address blocks: 103.122.188.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2424 (0x978)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Validity
Not Before: Sep 29 02:50:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F1235286C3A1D30A6BA4DBDBE288B394AE89CCBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6d:27:5e:3c:67:8e:26:d8:8e:46:87:79:e4:
4c:96:ea:7f:92:70:23:50:33:19:38:ab:8a:1a:bc:
3f:b7:95:17:bf:d0:83:ef:4a:01:82:95:00:b5:c7:
c9:3f:59:06:a2:22:00:ac:30:3d:4d:b8:1d:ec:ee:
43:d5:84:55:c4:58:ca:a9:ef:9f:38:14:d2:ab:d6:
da:61:51:19:f8:0f:24:51:96:bd:40:5b:35:17:25:
2c:7e:ad:3e:ef:98:6e:c4:ed:2c:a8:24:38:79:2a:
3d:fa:2b:a8:c8:f4:03:7d:1e:06:7b:0a:91:af:32:
88:4e:67:88:ba:e9:5e:93:9a:e1:30:9a:88:6e:1b:
4c:09:81:4a:a2:57:df:3d:94:b7:6b:fb:41:bd:35:
10:22:e0:56:2e:9f:41:35:75:b8:bf:51:ef:5e:be:
fc:64:ba:40:5a:7d:41:f7:0e:c8:36:ad:f3:08:04:
6e:fe:61:46:3b:d1:5a:dc:b9:35:df:1e:ce:06:d7:
26:f1:fe:d4:b4:71:4d:70:25:28:a3:fc:5a:16:cb:
22:ec:0f:db:46:58:d9:cf:39:d8:b6:51:bf:1c:d5:
5e:d3:e6:91:db:86:3f:fe:6d:fa:c0:69:5a:04:68:
56:4c:c6:01:b1:4e:57:e7:1b:ef:91:6c:12:44:25:
88:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:23:52:86:C3:A1:D3:0A:6B:A4:DB:DB:E2:88:B3:94:AE:89:CC:BF
X509v3 Authority Key Identifier:
keyid:38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/OFcT41n8ucqxLyDbP_GQ_KgeMj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/8SNShsOh0wprpNvb4oizlK6JzL8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.188.0/22
Signature Algorithm: sha256WithRSAEncryption
20:85:1d:bb:3e:a9:7f:21:75:f1:b7:3c:25:1d:90:5a:4c:65:
9d:3b:40:07:0a:34:75:14:fe:d7:6c:15:cb:19:aa:8d:74:ec:
81:f5:cb:09:f2:17:c5:63:b7:2b:51:c4:e9:3a:3c:b5:a0:21:
dc:46:e2:e7:cd:bc:a7:e9:b6:b9:24:c7:c5:eb:c3:a5:13:6d:
a1:97:0f:c1:c2:f7:5c:c5:5c:96:84:eb:1e:35:f7:66:58:cb:
c8:53:a5:38:ef:e4:bc:86:3a:ee:0e:d7:b8:0d:1b:c7:b3:f6:
1c:1a:4c:d8:fa:c7:a1:fb:50:f0:64:c4:d8:22:bb:4b:7c:b8:
05:46:e9:bf:26:41:54:1f:dc:a9:9e:25:ba:71:fe:00:5a:d5:
3e:41:88:e6:ff:f4:28:d2:b0:ef:89:35:17:ee:97:9a:04:f9:
f2:da:36:d9:17:f3:a7:07:10:3a:7b:e1:b8:33:c3:bf:c1:35:
bd:86:03:97:f0:14:87:c9:43:9d:20:fc:0c:90:cf:96:56:05:
41:a7:42:3f:50:d2:6a:46:61:1e:5a:01:20:75:4b:ea:26:d1:
92:62:13:48:2b:d1:70:96:8a:eb:74:9f:fb:a9:db:93:0e:06:
a6:47:5a:2d:b0:2f:4a:d9:62:37:78:b3:05:f6:b5:e0:b3:a0:
8f:a2:9e:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:02 2023 by rpki-client on console-fra.rpki-client.org