Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/Hfwj2DUGEgidRBCPAW3JS2OOyH4.roa
File: Hfwj2DUGEgidRBCPAW3JS2OOyH4.roa (raw, json)
Hash identifier: /aqXjTb60krti0ABbcl3rK6s1zgdkjJ73Aur0EVUdoY=
Subject key identifier: 1D:FC:23:D8:35:06:12:08:9D:44:10:8F:01:6D:C9:4B:63:8E:C8:7E
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 0370
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/Hfwj2DUGEgidRBCPAW3JS2OOyH4.roa
Signing time: Wed 29 Sep 2021 02:53:55 +0000
ROA not before: Wed 29 Sep 2021 02:53:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 396982
IP address blocks: 103.153.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 880 (0x370)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Sep 29 02:53:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1DFC23D8350612089D44108F016DC94B638EC87E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ae:fb:87:64:75:5d:01:64:ec:9e:f2:1c:28:
03:4f:a8:e0:21:d3:33:ea:46:67:1d:ba:a6:c9:1e:
9f:56:d1:22:4e:26:25:5d:e0:e7:b1:4d:5c:6d:1f:
2f:3e:98:8b:f8:8d:59:73:50:5c:59:c0:83:94:bb:
8d:77:38:94:1d:f4:a4:ee:0f:63:b9:e5:54:23:ec:
23:5d:f7:c1:88:9e:45:a9:c7:1b:9a:11:10:35:b7:
18:a4:14:cd:05:4a:15:da:be:93:ac:3e:46:f5:67:
1f:b9:40:ef:2f:ce:8e:1f:3f:ca:af:13:de:43:a3:
bd:9c:18:12:65:d7:60:85:2c:12:91:2c:d6:56:b9:
b6:84:f9:3c:88:1d:74:6e:39:21:d5:3f:3e:1d:db:
d3:7a:73:a1:10:be:02:6b:a8:23:55:fb:00:f8:3e:
e2:28:33:74:29:88:dd:bc:ad:c7:26:f8:91:91:97:
15:7e:0d:b6:5c:ab:2c:28:df:a9:dd:0e:94:df:00:
31:51:08:93:e9:ff:76:9b:ad:a8:9c:89:5d:89:91:
06:9c:bb:6b:1d:d3:ac:3c:f1:36:43:68:6a:b2:c5:
0b:e5:40:cd:f2:d3:75:35:f1:c0:1a:82:68:f9:00:
75:bf:cd:f9:43:b0:66:43:54:22:af:01:21:e4:df:
f4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:FC:23:D8:35:06:12:08:9D:44:10:8F:01:6D:C9:4B:63:8E:C8:7E
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/Hfwj2DUGEgidRBCPAW3JS2OOyH4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.177.0/24
Signature Algorithm: sha256WithRSAEncryption
49:bc:4d:2b:91:b1:b1:ea:c6:88:6e:64:63:9e:35:22:62:b1:
44:15:dc:a7:1a:a8:f9:17:a9:a8:f3:b7:91:c6:2d:63:a2:0f:
46:3d:29:ef:41:02:1e:71:4b:67:db:a9:22:a7:e9:ec:03:79:
0e:fd:c7:66:20:98:54:ff:e8:ef:55:0e:f3:ba:a9:d3:04:e6:
7b:3e:46:1f:54:e0:ea:44:1d:ca:42:34:e3:71:91:4b:6f:1a:
a4:c0:d1:03:75:e5:85:dd:d9:34:f8:0f:b0:e1:6b:5f:d9:e0:
a6:6d:51:e9:1a:95:08:e7:ae:80:0e:68:e0:82:43:4d:fe:46:
aa:6a:7e:5f:af:fd:bb:64:b9:54:42:8d:18:8a:6e:3b:83:7d:
11:90:dd:6c:4e:64:99:30:8f:83:df:69:92:a1:c2:b3:71:fc:
d4:ff:c5:80:48:02:ab:72:88:20:98:0f:9d:ae:c6:6e:4b:65:
fc:47:06:f1:01:0e:5f:95:4c:5e:04:05:77:33:a0:7f:1c:e0:
ca:73:56:bd:3a:45:25:c6:ec:4e:47:b8:4d:38:9c:a3:2e:fa:
1a:85:d6:5a:e9:a0:dc:22:6f:32:aa:65:ea:cb:e8:4a:ad:ad:
6b:5e:ac:73:80:e8:d7:4c:ba:9a:97:f9:81:7b:d8:a7:33:d9:
8e:c4:66:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org