Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/5JuN3bJsoNP2PyiGA3Y4VGDSu5w.roa
File: 5JuN3bJsoNP2PyiGA3Y4VGDSu5w.roa (raw, json)
Hash identifier: uRfZvf+uwZpUZOv9B5xiAxRevQq1ldEObEJXnVpoqAE=
Subject key identifier: E4:9B:8D:DD:B2:6C:A0:D3:F6:3F:28:86:03:76:38:54:60:D2:BB:9C
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 02BF
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/5JuN3bJsoNP2PyiGA3Y4VGDSu5w.roa
Signing time: Sun 07 Feb 2021 06:04:29 +0000
ROA not before: Sun 07 Feb 2021 06:04:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131657
IP address blocks: 103.153.176.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 703 (0x2bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Feb 7 06:04:29 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E49B8DDDB26CA0D3F63F28860376385460D2BB9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:44:dd:e7:68:7b:a1:dd:96:c8:28:70:96:63:
d1:b0:d1:61:21:dc:c5:13:6a:aa:08:f6:d1:20:41:
2e:a6:8c:ce:8a:92:ff:7c:7b:f8:a8:b7:35:37:e2:
40:63:ae:25:93:7b:be:f5:6f:49:20:18:33:7b:b5:
39:da:b7:d4:9e:19:29:cf:12:5d:4b:0c:2a:83:53:
60:8b:06:02:9a:b2:49:6d:e1:74:cf:06:6e:ee:ea:
92:db:98:68:35:18:22:d6:9c:fc:aa:e6:c9:9e:b5:
08:09:3d:c4:c5:63:3e:59:2d:47:07:6b:6d:88:cc:
30:6b:db:95:ea:ff:7c:a8:f4:be:07:0d:d7:3d:29:
67:48:cc:5e:38:72:6b:50:72:2d:8b:94:25:a4:41:
33:c2:90:96:c1:bd:cf:08:b5:15:3d:65:dd:a8:30:
6b:92:a5:f6:db:bb:de:da:49:34:eb:e8:c9:1d:b6:
e0:c1:41:69:ad:3d:2f:31:c3:b0:b8:4b:98:9a:e4:
71:0b:47:9b:0d:08:7f:24:91:a9:bd:d6:de:a5:11:
4c:c7:09:7f:85:b5:f4:72:88:dd:9c:be:02:80:d2:
02:87:f8:db:c3:63:c4:38:c8:ad:68:f3:26:da:28:
e7:aa:eb:38:86:92:0a:c5:17:4b:65:25:8a:82:15:
e3:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:9B:8D:DD:B2:6C:A0:D3:F6:3F:28:86:03:76:38:54:60:D2:BB:9C
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/5JuN3bJsoNP2PyiGA3Y4VGDSu5w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/23
Signature Algorithm: sha256WithRSAEncryption
c6:aa:d2:ca:30:dc:97:f9:56:48:b3:f7:e8:b6:42:90:90:32:
ef:0c:e9:a5:c8:5c:f5:d9:97:ca:fa:03:17:9b:81:a5:51:d0:
d9:2c:b5:bf:6a:e7:19:50:4c:b1:e2:af:17:e3:e3:2d:ad:8a:
66:29:06:c6:cc:6b:28:f2:29:d1:c4:23:46:fa:4f:89:48:40:
b6:0a:5b:d4:a3:37:19:cd:1a:93:54:e1:b2:bd:ae:a8:90:7c:
24:e5:9d:86:70:d2:33:fa:45:24:79:1d:38:4c:50:8c:0f:e4:
fd:87:0c:95:fc:50:cd:70:a8:84:a3:3e:ec:d0:6c:bf:91:01:
79:04:91:de:5f:64:0c:9d:f9:47:24:9e:41:64:0f:b4:5d:cd:
cf:ba:d0:f1:37:e2:a7:e3:73:5f:0b:61:b2:b0:ed:53:26:c9:
9b:09:28:07:b8:d5:8c:3c:06:11:cc:91:57:8d:34:65:2a:67:
68:33:14:03:5d:a7:b4:ef:6a:a8:b6:da:b6:0e:b5:5c:61:cf:
9d:91:4c:ad:00:c9:51:95:9d:50:cc:92:0a:c4:04:49:98:70:
3e:01:92:99:05:33:65:df:f8:88:56:fa:61:08:d2:53:82:d0:
6d:40:fa:97:bf:6b:bc:77:4b:74:59:9c:fd:c0:d0:b2:8a:5c:
6f:be:c4:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org