Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/QuHA7d4WQ_tQcSF9tim9N97sjS0.roa
File: QuHA7d4WQ_tQcSF9tim9N97sjS0.roa (raw, json)
Hash identifier: 6V8BG8Ng7Mr89eQEH1h5WAD3Cu6s3BdT2CuM1vcRmLA=
Subject key identifier: 42:E1:C0:ED:DE:16:43:FB:50:71:21:7D:B6:29:BD:37:DE:EC:8D:2D
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 07
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/QuHA7d4WQ_tQcSF9tim9N97sjS0.roa
Signing time: Fri 24 Jul 2020 08:35:29 +0000
ROA not before: Fri 24 Jul 2020 08:35:29 +0000
ROA not after: Sat 24 Jul 2021 08:03:22 +0000
asID: 131657
IP address blocks: 103.153.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Jul 24 08:35:29 2020 GMT
Not After : Jul 24 08:03:22 2021 GMT
Subject: CN=42E1C0EDDE1643FB5071217DB629BD37DEEC8D2D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f0:ec:d0:8b:86:92:3f:82:1c:48:9e:75:22:
10:bd:c2:38:4b:7d:3f:ea:7f:53:c2:dc:86:91:1e:
fe:29:95:85:c6:57:80:a7:87:21:2a:44:1d:80:4f:
ba:b4:66:4d:6e:df:12:cd:12:78:a4:1d:69:a7:85:
ba:c4:af:b9:39:a2:a0:bc:9e:96:d2:0d:3c:ce:08:
fc:8c:de:c1:e3:6e:98:7a:39:e6:a7:01:39:ad:2d:
49:d9:dc:4f:a4:0c:6e:02:bd:86:49:0f:d4:cc:e6:
06:70:39:38:f0:66:4c:04:59:6d:40:b9:c2:d6:19:
a7:8d:12:56:53:6f:ec:1e:05:c5:12:bd:74:37:06:
97:91:b0:f7:2f:92:83:93:44:b0:53:92:62:7b:11:
97:92:fc:8b:89:8c:5e:f6:0a:27:cb:a2:a0:78:9a:
9c:69:3f:39:3d:70:35:c7:c6:34:3f:fa:6e:0c:79:
20:2a:9c:53:24:96:20:91:20:08:2e:6b:e6:ba:ad:
f3:25:2f:60:c3:7e:5e:a5:93:ec:9e:98:c8:bd:ba:
a0:3d:d6:e3:50:70:0a:c8:9a:1f:0c:fe:1c:ca:c0:
81:d6:46:52:00:2e:80:40:5a:e9:d4:c9:8d:d0:8d:
43:d1:c8:55:42:8a:02:02:31:68:41:1d:af:61:c2:
f2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:E1:C0:ED:DE:16:43:FB:50:71:21:7D:B6:29:BD:37:DE:EC:8D:2D
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/QuHA7d4WQ_tQcSF9tim9N97sjS0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/24
Signature Algorithm: sha256WithRSAEncryption
54:38:fb:f5:61:0a:64:9d:6f:6f:43:7b:95:a0:61:40:ae:19:
70:01:44:34:b0:28:df:69:19:3c:85:90:e6:e8:28:f1:ac:67:
94:85:ba:37:46:eb:e3:58:ea:20:4a:17:f5:3a:c3:c2:d8:93:
d5:df:e8:2c:cb:da:1f:bc:71:fd:45:c5:d9:0f:a5:63:3c:fa:
c5:db:35:32:c3:2e:79:c9:52:9d:07:ea:81:af:2c:95:f5:52:
b4:32:c5:c9:cc:45:b8:53:6a:db:27:6c:da:a8:a8:51:44:f6:
f6:df:78:f2:38:76:83:48:b4:0e:f1:4c:c2:d0:98:a2:58:b2:
21:f7:78:8a:5f:a0:c4:c8:99:af:41:28:f6:a8:8c:36:46:6e:
2f:56:db:fd:e1:c5:6f:15:39:d0:62:d5:85:c5:a7:5e:eb:c5:
16:c2:d1:51:03:b6:34:d8:11:c3:8f:3c:fa:91:1c:df:01:20:
a7:30:c5:52:5c:d8:7f:ad:63:98:2f:80:4e:56:a1:7b:cf:52:
6d:6f:e4:1f:74:15:e2:5b:0a:0f:b4:c3:57:6f:bf:dc:49:b3:
98:f2:4f:87:61:ca:75:28:b9:b7:a2:c4:9a:b1:67:8b:71:fb:
14:d6:9a:cf:52:c0:ef:4a:3c:04:8b:c2:37:9a:8a:d0:a1:8d:
c1:2e:b3:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org