Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/lXExFhoBeO8XnfAtZVkci1P3ibM.roa
File: lXExFhoBeO8XnfAtZVkci1P3ibM.roa (raw, json)
Hash identifier: kCIUj5WdqyENqATzMN2BZOz2iTtXoaMs6mtxhSNQL6Q=
Subject key identifier: 95:71:31:16:1A:01:78:EF:17:9D:F0:2D:65:59:1C:8B:53:F7:89:B3
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 0469
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/lXExFhoBeO8XnfAtZVkci1P3ibM.roa
Signing time: Thu 15 Sep 2022 02:35:00 +0000
ROA not before: Thu 15 Sep 2022 02:35:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131657
IP address blocks: 103.153.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1129 (0x469)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Sep 15 02:35:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=957131161A0178EF179DF02D65591C8B53F789B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:11:0d:8b:62:3f:e4:38:49:b3:49:6c:78:78:
b2:2e:9a:99:87:fb:5c:dc:ea:00:ad:4f:ff:7a:1f:
45:65:8c:4e:26:01:1d:41:a9:64:c8:a7:2d:d0:3b:
b0:8f:e5:6d:17:cc:a7:d8:a1:2f:ac:fe:90:8a:cf:
83:f5:4d:97:58:47:92:2c:fe:57:e3:81:a9:d1:75:
94:25:91:81:ae:22:68:1c:36:70:28:46:15:0b:27:
ce:66:4c:f0:dc:53:fb:e0:92:40:29:51:e2:07:09:
59:8e:af:0f:62:18:24:f7:5f:b7:d1:d7:5a:8f:5e:
41:e9:4c:f8:57:11:53:2d:b5:ba:32:fd:31:67:8d:
0e:6f:94:1d:ff:a0:21:e8:44:46:4b:2d:df:74:38:
8e:4e:b7:87:cd:d3:41:d6:fb:9f:9d:e3:b8:20:90:
21:ac:b7:a8:09:8b:c7:28:f0:78:c6:2a:2a:d8:40:
57:72:0e:56:30:30:61:c6:55:ad:6f:c4:57:b6:4d:
d4:c8:d6:de:45:78:d7:de:00:7e:9a:e4:7f:f3:6d:
35:f0:82:95:ab:24:7c:b7:93:dc:21:02:c1:ba:dd:
df:aa:03:ed:71:e6:79:cc:21:37:70:f1:7f:f7:af:
74:61:b0:ad:e6:c3:90:93:79:2f:a6:9c:09:c1:4c:
61:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:71:31:16:1A:01:78:EF:17:9D:F0:2D:65:59:1C:8B:53:F7:89:B3
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/lXExFhoBeO8XnfAtZVkci1P3ibM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/24
Signature Algorithm: sha256WithRSAEncryption
44:6f:f6:de:5b:d3:0a:09:3a:c2:58:a7:26:16:82:8c:45:13:
3f:7c:a5:b3:f4:9b:b4:12:58:4d:5b:59:c0:96:14:28:31:dd:
f1:19:13:48:f1:fc:d9:f5:78:11:ba:fd:12:b9:4c:3a:87:e7:
d5:de:24:1b:01:84:e4:ca:bf:24:11:36:42:79:a6:88:95:bf:
77:a4:89:e7:5a:fd:a8:dd:33:27:99:ab:be:cd:ee:94:30:dc:
8d:77:7c:8a:77:7f:7a:66:18:ef:3c:f8:5c:dc:88:7b:55:96:
58:b1:c7:fe:63:e3:eb:8b:bc:d5:d1:12:9e:e2:4b:f3:1e:72:
da:66:b4:ca:a7:e6:dd:04:c8:dc:e8:2f:3a:e9:e8:05:db:c9:
54:f4:b6:8b:5a:11:45:8b:84:e0:79:d8:9d:53:16:68:76:af:
10:bc:b0:7a:69:14:93:81:bf:33:6c:72:22:c4:c9:03:d0:90:
4c:44:7e:25:88:da:03:ed:dc:fd:1a:1a:c3:e7:f3:cc:bb:a0:
54:69:77:04:11:92:20:87:a6:0a:f3:50:c4:ad:f6:fd:66:3d:
fe:9c:f7:69:94:68:71:95:72:08:32:07:a6:f9:0c:5a:b7:55:
0d:29:96:18:7e:a2:81:76:0d:0d:e8:86:83:58:15:90:06:12:
ca:ea:13:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org