Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/0J1ziwbms2S7wdfyFcI7gtk2DFE.roa
File: 0J1ziwbms2S7wdfyFcI7gtk2DFE.roa (raw, json)
Hash identifier: oUnRIg5i21ejf3JNWy3Q03Ct9kEMNGV1v2Mh5kcX+TI=
Subject key identifier: D0:9D:73:8B:06:E6:B3:64:BB:C1:D7:F2:15:C2:3B:82:D9:36:0C:51
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 05
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/0J1ziwbms2S7wdfyFcI7gtk2DFE.roa
Signing time: Fri 24 Jul 2020 08:34:34 +0000
ROA not before: Fri 24 Jul 2020 08:34:34 +0000
ROA not after: Sat 24 Jul 2021 08:03:22 +0000
asID: 134823
IP address blocks: 103.153.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Jul 24 08:34:34 2020 GMT
Not After : Jul 24 08:03:22 2021 GMT
Subject: CN=D09D738B06E6B364BBC1D7F215C23B82D9360C51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:58:86:5b:6c:8f:1c:52:fb:f5:65:b4:27:39:
f1:56:1f:74:65:61:ac:33:39:d4:5e:45:15:5b:d5:
f6:c9:03:2a:08:7c:6b:f9:a0:8e:ca:de:3b:ac:03:
ed:cc:70:cf:3c:c7:0e:b3:72:ca:e7:51:14:84:a1:
5d:f5:74:34:42:12:2c:74:bc:dc:33:76:00:73:c6:
4f:bf:af:a6:41:85:56:a5:91:aa:0b:f8:14:b7:56:
a3:39:38:4d:52:c0:5d:bc:75:4c:a3:2c:b4:b4:e8:
15:ef:3c:7e:98:62:71:e8:cf:41:fc:1f:40:2c:4d:
60:30:64:8b:8a:32:71:f0:97:6c:9e:67:ab:c8:c1:
3c:24:46:a7:e8:38:12:cd:9a:2c:02:7c:19:3a:95:
d9:e7:6d:ba:a6:e3:ac:a7:8e:a2:50:89:4d:71:ba:
f0:84:c6:db:92:fd:5e:2f:26:1d:49:f3:de:01:ed:
fc:e7:da:4c:fe:3c:8d:d0:13:c7:c1:e1:88:bc:10:
3c:2e:03:64:4a:1e:e4:7c:63:18:cc:e3:40:ec:c0:
ca:3f:05:25:49:f7:cd:10:6e:6a:41:77:5c:1f:5f:
c7:7a:ff:f6:f0:b4:6b:7f:fb:36:68:ce:88:8e:1a:
16:52:e1:ab:60:bf:7a:30:3c:13:27:7f:78:12:7d:
03:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:9D:73:8B:06:E6:B3:64:BB:C1:D7:F2:15:C2:3B:82:D9:36:0C:51
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/0J1ziwbms2S7wdfyFcI7gtk2DFE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.177.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:98:61:a6:e0:1d:fe:20:81:7d:71:73:f5:9d:db:c1:55:e7:
97:ee:07:0f:b3:56:55:e3:49:c5:68:6e:81:1c:a6:60:97:6f:
fb:49:12:fb:81:70:8c:92:f5:54:42:0c:01:06:76:61:7e:28:
c3:f1:01:b3:f3:df:0e:32:69:a9:e8:4c:54:e7:74:e5:c1:db:
9e:fd:54:c5:b4:e5:47:c8:01:46:1f:3f:e4:e0:97:48:de:cc:
ca:30:5b:9b:ba:2c:bc:c6:14:e8:64:e9:d3:29:d1:12:8e:e5:
a3:01:ae:9d:74:74:62:29:b8:98:21:aa:90:50:ea:8f:40:b5:
f6:19:14:d1:75:d4:24:dc:80:6a:d3:9d:d1:eb:a4:4c:e8:3c:
8a:fa:ab:d8:c3:ef:94:c7:79:5c:f7:23:8f:29:a8:b3:77:c9:
7f:8c:e0:71:11:4f:7a:4b:d8:70:4d:82:c8:bc:fa:73:fc:4f:
bc:fa:ae:b5:57:b5:34:31:b3:aa:b3:b6:a0:72:1b:76:be:32:
09:14:16:0b:c4:d9:bb:08:46:cf:ec:26:6c:78:b9:08:48:4a:
54:1e:bf:9f:de:54:0a:43:a4:26:cc:97:9b:6d:ce:9a:33:df:
79:ba:39:f9:a7:29:fe:ec:ed:3e:d1:43:f6:2e:e6:50:15:e3:
eb:a8:98:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org