Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/F-ifS2pzYzLtt-y9g3MMHYSkXjY.roa
File: F-ifS2pzYzLtt-y9g3MMHYSkXjY.roa (raw, json)
Hash identifier: MmftjgNm9ITmY8/ZSvQALeoWzhc42Y4Lh98otM9Zf1s=
Subject key identifier: 17:E8:9F:4B:6A:73:63:32:ED:B7:EC:BD:83:73:0C:1D:84:A4:5E:36
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 02C7
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/F-ifS2pzYzLtt-y9g3MMHYSkXjY.roa
Signing time: Sun 07 Feb 2021 13:03:03 +0000
ROA not before: Sun 07 Feb 2021 13:03:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 134823
IP address blocks: 103.153.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 711 (0x2c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Feb 7 13:03:03 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=17E89F4B6A736332EDB7ECBD83730C1D84A45E36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:07:9b:79:b2:35:45:bb:d9:d1:0e:73:7d:03:
fb:7c:31:66:65:c7:d4:4b:98:63:a1:72:2c:bc:ba:
2b:6b:73:f2:7a:3f:dd:93:4b:ab:7c:a2:b7:c2:6c:
fe:51:61:20:c5:87:0f:40:11:02:9b:fe:c1:56:1d:
48:50:fa:26:07:f6:30:31:b8:2e:89:6f:5c:66:f3:
b5:bc:bb:da:2e:21:02:0a:fc:71:f0:f1:f3:36:75:
68:b8:3d:02:28:2d:14:1f:a3:05:0d:8f:cb:39:aa:
0b:29:0d:b7:72:d1:24:33:54:6f:d8:0f:f2:cd:2d:
28:e0:82:1f:ba:b8:02:d8:c4:cf:28:b7:95:22:16:
2d:c2:1c:a6:33:6f:95:84:e0:c5:a0:61:6f:9e:a9:
ee:0b:da:c0:9f:f6:6a:00:7c:c0:e1:a3:5e:36:48:
d2:ce:d2:63:e9:b4:52:5d:07:aa:3b:c3:17:03:13:
ee:82:55:05:33:7b:68:0f:4b:4d:2d:d2:0b:5d:c4:
c8:bf:f2:b6:ab:d4:56:2a:8b:c3:d8:73:c4:8b:5f:
64:95:36:d7:eb:84:a2:b0:d5:55:48:fe:fa:35:a2:
6e:44:27:39:06:f6:b4:0a:6f:ba:6e:48:52:14:ee:
33:ea:2d:ce:5a:01:58:e5:a4:d8:31:d4:78:d0:bf:
17:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:E8:9F:4B:6A:73:63:32:ED:B7:EC:BD:83:73:0C:1D:84:A4:5E:36
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/F-ifS2pzYzLtt-y9g3MMHYSkXjY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.177.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:37:17:91:af:a0:d2:b3:ce:b9:70:86:b7:29:44:06:52:7f:
3b:84:dd:f9:7d:38:5d:84:ba:f7:5a:3b:64:51:0a:9c:c0:ee:
cf:d7:1c:ed:f6:06:01:4d:85:3b:c5:fc:e0:a1:27:2d:a5:68:
2a:90:4a:98:56:4b:30:17:1c:ba:61:07:bf:85:3e:71:e5:59:
c4:ea:60:80:70:03:cc:45:56:fc:e8:c1:65:ac:90:0d:6e:a4:
2d:24:c6:6b:1a:3a:6d:4d:37:bd:40:0b:43:ba:13:57:dd:93:
6d:5b:fc:6c:ef:e7:21:cf:80:c9:b6:de:66:bf:46:fd:92:30:
86:43:00:64:af:e2:b5:14:d9:ee:95:92:7e:1f:5a:28:55:74:
45:8f:df:a6:df:c7:bb:df:36:7b:1e:43:31:e5:53:da:45:32:
06:9c:29:72:1a:db:95:23:2c:f9:03:80:38:8a:42:63:7e:99:
af:dd:fa:65:42:25:6e:9e:6a:b1:d7:4f:09:da:ec:f8:2f:93:
85:a5:bf:32:46:17:03:bd:97:44:de:88:07:e2:09:e7:a3:06:
0b:2d:ef:8c:8f:f5:a3:25:6f:e3:36:05:75:4b:c5:a1:0e:4d:
7a:f7:94:6e:bc:2a:8b:1d:14:b5:31:23:03:22:46:a9:36:64:
17:9e:72:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org