Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/kxfd2s5mpXo7mmrIj5YSBo9j5Y8.roa
File: kxfd2s5mpXo7mmrIj5YSBo9j5Y8.roa (raw, json)
Hash identifier: R/0cUgAsLSlcaqBRpSsyOjdpZ6TJKq7Hbv6/hxgoSBM=
Subject key identifier: 93:17:DD:DA:CE:66:A5:7A:3B:9A:6A:C8:8F:96:12:06:8F:63:E5:8F
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 24
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/kxfd2s5mpXo7mmrIj5YSBo9j5Y8.roa
Signing time: Tue 28 Jul 2020 10:03:37 +0000
ROA not before: Tue 28 Jul 2020 10:03:37 +0000
ROA not after: Sat 24 Jul 2021 08:03:22 +0000
asID: 20473
IP address blocks: 103.153.176.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36 (0x24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Jul 28 10:03:37 2020 GMT
Not After : Jul 24 08:03:22 2021 GMT
Subject: CN=9317DDDACE66A57A3B9A6AC88F9612068F63E58F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a4:8f:8c:e1:ad:db:09:e9:dc:6b:cd:bb:64:
a0:32:48:06:10:e7:47:b0:64:63:5f:9d:35:4f:d8:
4c:fa:3e:9c:47:b7:bc:19:65:a5:f9:39:2a:84:8d:
48:35:35:2f:4a:29:54:8e:c4:dd:40:f6:45:0a:18:
64:1c:b4:ef:b3:b8:37:ce:c4:ec:38:11:ef:e1:b9:
8e:e9:b4:4c:c1:43:e7:35:39:a2:9e:10:cc:87:98:
75:c0:1c:e9:6e:3f:00:a7:04:ce:46:16:c8:19:2b:
bd:13:b1:59:34:02:9d:33:e6:bb:f1:a3:92:9e:ef:
fd:9d:2e:f8:dd:b5:5e:83:b6:5e:49:99:33:89:4d:
28:10:1d:0c:95:6f:ff:cb:9d:dc:56:b1:9f:c6:48:
60:b8:45:f3:16:6f:93:6f:e9:89:e8:c6:f7:54:cc:
57:27:7e:b5:bb:50:60:e5:be:40:79:a9:62:c4:17:
71:a5:11:8a:9d:85:3e:bc:58:04:e6:44:08:8b:03:
c3:76:cc:6d:98:26:a2:27:19:85:de:9a:88:c5:c9:
71:f1:ea:c6:a3:83:92:b0:4a:31:72:11:0a:4e:80:
3c:26:bc:07:43:98:d2:29:29:44:a5:59:93:1c:cf:
14:44:f2:d0:61:da:0b:27:8f:c7:50:b5:e4:c0:08:
8b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:17:DD:DA:CE:66:A5:7A:3B:9A:6A:C8:8F:96:12:06:8F:63:E5:8F
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/kxfd2s5mpXo7mmrIj5YSBo9j5Y8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/23
Signature Algorithm: sha256WithRSAEncryption
77:35:67:78:b1:09:26:1d:9f:6a:b1:28:19:88:44:da:87:d1:
e1:a1:f6:19:8b:50:5f:4c:64:e2:74:4c:60:4c:11:ff:82:41:
d3:03:9f:15:00:da:9b:d0:47:73:76:b8:cf:3f:54:92:e0:ad:
c7:75:4a:37:c5:a0:35:aa:d2:a9:8f:6e:f7:64:c3:49:ba:00:
f7:f1:46:5b:1c:ca:12:0e:6b:2f:7e:0f:e8:5f:6c:4a:41:40:
3b:90:8b:81:47:01:e0:0b:c9:10:e3:e8:b9:a0:0c:2d:eb:fe:
e5:e6:00:26:5a:44:f5:36:77:ec:bd:98:94:0a:3b:62:c7:36:
c5:2b:b4:8e:27:13:61:22:36:53:76:09:6e:ca:7a:cc:bc:d3:
96:39:3c:4f:4e:6d:88:64:4a:d9:00:91:c6:bc:67:d9:d7:4c:
67:4c:ae:98:a7:1c:00:89:56:59:d9:0f:16:47:44:18:1b:51:
cb:96:03:9e:b9:5d:9e:7b:bc:ae:fd:3b:bb:90:9e:a4:87:a1:
7c:bf:fd:16:1c:88:4e:f8:e7:4d:90:c2:93:11:62:72:81:f8:
c1:10:6c:fd:11:8d:a6:b3:e9:9a:be:6f:47:e0:aa:25:c5:a8:
79:71:63:0d:92:f9:82:38:dd:62:af:fb:75:64:35:0e:a3:2c:
3d:06:9e:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org