Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/KD1Rrdu8a54eJg7ktFXm9ZDSWI8.roa
File: KD1Rrdu8a54eJg7ktFXm9ZDSWI8.roa (raw, json)
Hash identifier: J/Csvbmg+qb50aD7g9ef2LAQAV18NzCAdH2BybqbATs=
Subject key identifier: 28:3D:51:AD:DB:BC:6B:9E:1E:26:0E:E4:B4:55:E6:F5:90:D2:58:8F
Certificate issuer: /CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Certificate serial: 0977
Authority key identifier: 38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/KD1Rrdu8a54eJg7ktFXm9ZDSWI8.roa
Signing time: Wed 29 Sep 2021 02:50:31 +0000
ROA not before: Wed 29 Sep 2021 02:50:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131657
IP address blocks: 103.122.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2423 (0x977)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Validity
Not Before: Sep 29 02:50:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=283D51ADDBBC6B9E1E260EE4B455E6F590D2588F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:40:c1:72:ec:bb:10:28:de:bd:70:19:ea:0d:
a0:76:cc:ca:f3:bb:1d:f7:62:52:d8:85:16:e0:68:
73:17:05:9b:b6:b5:6c:52:70:1f:2e:67:12:0f:78:
44:80:1f:06:97:f0:8c:12:51:cf:27:37:b4:c8:e5:
47:ae:03:f6:50:e2:6c:24:07:ec:87:1c:d4:4c:2a:
88:59:79:96:27:fa:8d:04:01:3a:e1:3f:49:6b:42:
28:78:c6:2f:ad:99:d1:04:22:3b:04:b0:ec:20:29:
45:f0:3f:45:fa:fe:02:8a:b7:98:41:9e:5c:2e:9c:
b4:1a:98:93:9f:b6:80:aa:6d:37:f9:85:2d:5e:bc:
10:0d:f9:4e:be:71:f0:09:fe:23:a0:42:30:41:e0:
08:2e:12:80:88:31:a1:7d:cf:53:fa:2f:72:cd:f6:
fe:6d:3c:bf:63:e9:d6:a7:2b:d9:9a:df:9a:07:73:
e9:38:87:f3:23:fe:6a:2f:78:50:5e:5b:5c:c1:91:
7a:3b:0b:38:e5:48:5f:8f:a5:d2:88:f5:e9:c2:2a:
93:ea:e5:9b:1d:c1:0d:19:48:15:ec:60:5d:ca:ec:
aa:26:e5:48:1b:9f:31:32:d3:e1:dc:0d:a7:7c:fd:
d8:e0:30:6a:5e:ac:0c:ef:2d:89:2c:03:85:31:b5:
f5:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:3D:51:AD:DB:BC:6B:9E:1E:26:0E:E4:B4:55:E6:F5:90:D2:58:8F
X509v3 Authority Key Identifier:
keyid:38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/OFcT41n8ucqxLyDbP_GQ_KgeMj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/KD1Rrdu8a54eJg7ktFXm9ZDSWI8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.188.0/24
Signature Algorithm: sha256WithRSAEncryption
55:99:f0:f6:f2:72:08:13:19:93:85:04:55:b5:95:61:33:7e:
bb:81:50:b5:88:62:1d:7c:fe:6f:db:0d:0d:03:fd:37:25:4f:
54:8c:48:55:05:ae:61:8f:90:bf:72:8a:20:f6:1e:15:e4:ce:
e9:a4:ee:23:9e:cc:79:7b:12:38:eb:45:50:d3:c7:37:cc:8c:
1e:af:de:19:d7:8a:0c:4f:90:83:53:e6:dd:99:b6:25:95:99:
9a:51:35:e8:ab:89:19:9f:1b:26:57:bd:f6:37:65:3a:d0:70:
dc:09:1c:6e:2f:15:6c:b9:71:fd:8a:61:35:22:0b:e8:67:79:
f5:aa:14:2e:c6:d1:93:96:21:c1:af:9c:07:66:9c:86:d3:03:
2e:a5:0d:fb:14:cf:9b:e8:43:64:08:81:96:c4:9a:8d:d4:b7:
3a:a2:1c:33:f7:e4:25:62:e3:4b:1f:57:2a:c4:92:a3:74:ab:
fe:fc:12:4c:39:40:e5:fa:1d:f0:25:87:3f:0d:85:7b:49:76:
da:31:35:93:fa:3e:27:3e:8f:bf:2d:3c:66:ee:5a:96:2c:32:
e1:d4:59:29:bd:f5:6e:c1:69:75:cd:6a:60:4d:32:fa:18:33:
7a:96:c9:9b:33:95:46:62:1c:10:cd:5f:d6:9a:a3:c5:95:38:
89:b4:b5:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:54 2023 by rpki-client on console-ams.rpki-client.org