Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/9YmJt1SOjX_RKfWQ7s-b8GXlLJ0.roa
File: 9YmJt1SOjX_RKfWQ7s-b8GXlLJ0.roa (raw, json)
Hash identifier: +e7UivINeXqI/dk+J4kQuRoyZ04oP7EdTQO4mcCqah4=
Subject key identifier: F5:89:89:B7:54:8E:8D:7F:D1:29:F5:90:EE:CF:9B:F0:65:E5:2C:9D
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 02C3
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/9YmJt1SOjX_RKfWQ7s-b8GXlLJ0.roa
Signing time: Sun 07 Feb 2021 06:04:56 +0000
ROA not before: Sun 07 Feb 2021 06:04:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131657
IP address blocks: 103.153.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 707 (0x2c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Feb 7 06:04:56 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F58989B7548E8D7FD129F590EECF9BF065E52C9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:30:b5:9f:2d:3a:11:46:56:60:2e:d3:f1:63:
76:85:46:8c:33:49:9d:2a:38:f4:97:36:a9:ca:3a:
5f:72:f7:72:92:66:c1:43:cf:4f:0b:df:95:aa:55:
a7:81:38:1b:e4:8e:5c:63:ef:6f:22:8d:08:3e:89:
26:f5:6e:8d:1f:b3:35:a9:cf:21:6d:cf:ea:5c:fc:
5f:27:b3:62:b0:68:d0:15:1f:84:47:22:6e:84:ea:
c1:2a:c0:5a:c4:04:99:ef:3a:38:d4:ee:87:49:fc:
61:6b:bc:aa:b5:71:c6:a6:02:c0:31:a4:bc:b5:0d:
32:64:40:ea:3f:b7:5b:16:b7:06:0c:20:e3:92:33:
28:08:ac:75:09:2e:12:89:4d:97:df:68:72:cc:1b:
78:f3:84:25:d9:f3:fe:5f:86:ab:c0:02:aa:be:a4:
4d:37:f2:c1:cb:f8:c7:cf:4d:bf:9e:48:99:d2:61:
5a:44:2c:c9:78:63:41:55:98:ba:1f:0c:21:ef:94:
fb:77:37:6f:91:5b:79:1e:e9:4d:8c:03:d6:7a:f9:
65:a2:0a:d3:5d:01:33:38:88:75:ba:0f:18:08:ec:
bb:ef:02:b2:dc:91:fb:b7:03:8d:ef:5e:a8:62:61:
19:22:47:a3:2d:ff:3e:b3:8a:5c:28:11:f2:b9:55:
74:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:89:89:B7:54:8E:8D:7F:D1:29:F5:90:EE:CF:9B:F0:65:E5:2C:9D
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/9YmJt1SOjX_RKfWQ7s-b8GXlLJ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.177.0/24
Signature Algorithm: sha256WithRSAEncryption
05:7b:2e:62:ff:6b:07:32:99:2d:b8:a3:47:24:6d:22:a7:2d:
0e:a3:e9:e4:5e:90:4b:21:f7:9e:8a:a1:3a:ab:f0:ba:bb:3c:
31:c2:8d:41:1c:71:bb:b0:94:43:a3:42:64:e1:e1:64:ec:dd:
12:bd:bb:22:1a:55:34:c4:ad:60:77:7f:c3:ed:ca:48:a2:9a:
1e:7c:6c:f8:69:af:92:37:83:32:eb:7d:d2:d7:5c:7a:26:22:
84:1f:9d:6a:c1:9d:53:f9:28:26:53:87:be:ef:96:15:8a:cc:
ab:06:0d:93:b1:7a:a3:e6:b7:01:37:b3:b3:43:a8:70:39:21:
b2:c3:66:3b:0f:ef:00:46:96:10:31:a8:15:0f:d8:9a:27:9b:
2c:c0:43:c2:5c:c4:0d:72:17:d4:df:d8:fb:ad:a6:a2:4f:c2:
3b:6d:37:4f:1b:19:bd:73:76:5a:27:84:0f:d3:6e:04:a4:bc:
33:d3:a0:5d:d6:df:31:d1:ee:e6:d9:d2:02:65:17:21:1d:6a:
6c:ed:7e:9c:1c:0e:98:1d:f9:48:56:d4:9f:8b:6d:b1:38:10:
88:69:85:43:7e:a6:70:df:81:e7:38:38:00:b9:a4:19:d0:66:
90:50:f5:8b:d7:cc:f1:5c:6b:a1:5b:f5:23:8e:85:c7:0b:64:
b1:b7:ed:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org