Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/jhMvSN7SZC0bNqe7zqaACC49sDc.roa
File: jhMvSN7SZC0bNqe7zqaACC49sDc.roa (raw, json)
Hash identifier: Ro+Mky2B6tflUuX9HIwGfist9NfXf2d7DFbe7nervok=
Subject key identifier: 8E:13:2F:48:DE:D2:64:2D:1B:36:A7:BB:CE:A6:80:08:2E:3D:B0:37
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 048D
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/jhMvSN7SZC0bNqe7zqaACC49sDc.roa
Signing time: Sun 06 Nov 2022 13:11:50 +0000
ROA not before: Sun 06 Nov 2022 13:11:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 134823
IP address blocks: 103.153.176.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1165 (0x48d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Nov 6 13:11:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8E132F48DED2642D1B36A7BBCEA680082E3DB037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:51:e0:9e:f0:4e:e0:d1:8b:bf:bd:40:3c:9a:
54:19:43:e2:ef:d1:1e:af:a4:5d:f8:17:9b:a0:e6:
ca:1c:02:7a:3e:e8:1c:56:6d:10:8b:7a:69:ee:a6:
04:42:b8:12:c2:27:0f:b9:b2:9f:1e:37:ee:51:dd:
43:d8:79:00:74:38:f0:4e:a1:5c:64:85:81:e1:b1:
79:53:e9:ad:47:18:47:f7:ce:bf:40:76:d9:9b:b8:
60:b0:9f:c8:2b:e7:18:17:00:72:77:94:9a:d0:3b:
60:a4:25:31:35:e6:3a:e1:d3:8e:cc:ef:8c:f6:58:
a7:95:73:ac:f1:00:43:eb:a3:d6:b2:e7:2b:0e:8b:
75:96:9d:7a:df:e4:b2:31:72:8d:66:2c:1c:22:bd:
6f:51:e7:9c:89:19:c5:ff:66:df:ac:58:00:06:28:
66:75:44:3e:46:17:6b:cf:7e:90:6c:9a:4e:9a:e8:
06:d0:5e:a7:b2:78:14:5d:94:d2:7f:d5:c8:cc:68:
6b:ee:0d:69:2d:51:00:91:29:c6:20:bb:c4:22:c2:
d6:1c:67:bf:e0:bd:f8:3e:ec:0c:57:95:60:cd:02:
71:6e:01:80:68:ec:07:7e:b5:ba:85:49:db:35:01:
0b:7a:01:c9:d3:28:31:bc:e9:db:89:cb:33:66:bc:
90:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:13:2F:48:DE:D2:64:2D:1B:36:A7:BB:CE:A6:80:08:2E:3D:B0:37
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/jhMvSN7SZC0bNqe7zqaACC49sDc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/23
Signature Algorithm: sha256WithRSAEncryption
55:c1:3f:84:28:eb:f8:04:f2:1e:42:5b:dc:a5:4e:22:c5:1c:
6b:d2:2a:c7:0e:cf:93:a8:d6:33:64:95:7b:fd:73:77:d2:2e:
a6:5d:9c:f1:7d:1e:7a:0c:6d:6a:ff:76:97:68:67:5e:ba:b1:
44:d9:63:8e:76:64:de:7f:5a:70:77:1e:b0:96:19:0e:76:8c:
9f:57:12:06:a9:4b:86:28:48:0d:58:d8:91:48:4d:7e:51:4b:
48:b3:25:1f:aa:24:0d:53:7d:39:a8:de:48:16:df:cd:81:69:
a1:5c:ca:06:40:b8:97:e2:65:8b:97:f0:43:5b:93:38:01:c2:
98:21:10:64:54:08:52:1b:0a:81:4b:e4:3d:37:cc:40:73:d0:
4c:f7:30:33:18:69:bb:73:91:8e:8d:6d:98:1a:c5:e4:08:82:
97:7b:f4:4f:ca:4d:a5:6e:04:21:ae:56:a4:9b:2b:08:c7:f7:
3d:8f:52:b5:65:40:38:08:85:b7:f2:42:10:95:3e:f1:a0:a9:
e2:97:42:f5:20:b1:fc:f4:22:45:c7:f4:21:7f:0d:a4:d4:e1:
94:08:4e:28:a1:d7:a9:ed:38:9f:24:42:27:e1:c8:00:c6:7b:
8a:13:2f:b3:02:24:42:37:dd:ac:68:b1:c6:23:ee:58:31:35:
1d:c5:de:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org