Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/md91vqBQpP91vmEW-1aJTyUrZ7E.roa
File: md91vqBQpP91vmEW-1aJTyUrZ7E.roa (raw, json)
Hash identifier: rlZbekurIMciEXxcpDEoPQ6+9K4LLEMaQTQc+bPXolE=
Subject key identifier: 99:DF:75:BE:A0:50:A4:FF:75:BE:61:16:FB:56:89:4F:25:2B:67:B1
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 0373
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/md91vqBQpP91vmEW-1aJTyUrZ7E.roa
Signing time: Wed 29 Sep 2021 02:53:56 +0000
ROA not before: Wed 29 Sep 2021 02:53:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17418
IP address blocks: 103.153.176.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 883 (0x373)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Sep 29 02:53:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=99DF75BEA050A4FF75BE6116FB56894F252B67B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:6f:f0:3c:2c:96:85:5a:35:a4:b0:7c:0e:ad:
8e:c5:a5:44:92:c0:bf:8e:da:97:4e:84:b6:a7:bb:
94:3e:cc:03:2c:85:fc:11:7a:91:2c:59:c2:07:ab:
5c:7b:f7:45:46:0c:9e:27:e0:71:9b:b1:c9:e3:61:
f2:c5:ae:e5:8d:97:27:e1:13:65:26:50:3d:d9:3e:
e3:18:e5:5b:1b:ad:db:42:99:4c:72:c1:36:79:05:
aa:31:b3:bc:4f:ca:92:87:d0:23:cf:62:e4:f4:5d:
3b:ef:00:5f:e7:f4:cc:b7:38:c1:64:79:59:ff:55:
c6:dd:e5:d1:bc:44:6d:9a:b5:ce:cd:6a:8e:4a:fc:
d9:5d:8b:0a:87:5e:1f:d5:dc:56:08:82:13:b1:c1:
6f:7f:bb:ee:c0:f6:3d:77:40:11:74:f9:63:a3:ed:
ec:3b:ae:fa:20:4c:39:ab:f8:b5:8a:dc:ce:e9:6d:
ff:85:ec:e9:64:50:f4:8d:98:63:cc:a5:27:b9:49:
0f:ee:6f:4f:0b:5b:fd:83:70:fa:46:01:ab:90:88:
a4:46:c5:95:9c:30:2c:e2:34:ff:7e:48:97:b1:8c:
86:ec:bc:9a:99:a5:17:70:92:0f:b2:eb:9a:39:ad:
05:14:cc:9f:b0:17:8d:85:c7:34:a4:bd:fd:44:50:
a6:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:DF:75:BE:A0:50:A4:FF:75:BE:61:16:FB:56:89:4F:25:2B:67:B1
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/md91vqBQpP91vmEW-1aJTyUrZ7E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/23
Signature Algorithm: sha256WithRSAEncryption
67:55:14:6c:a9:39:2c:f2:0a:f8:f0:94:73:96:dc:05:ed:8f:
45:70:a2:3b:d3:80:cc:9e:c3:59:0e:af:ce:5d:e2:f3:ef:f4:
a7:62:6d:8d:94:43:32:6d:91:d3:87:00:34:fe:df:8e:93:22:
4b:75:ef:94:bf:19:1b:63:58:03:1d:b1:2b:86:e8:08:b5:70:
d3:d2:d6:b4:0e:e4:93:ae:d3:02:5f:0d:7c:bf:e7:40:03:7b:
af:13:01:e7:d1:c0:9d:91:50:c2:09:90:30:f8:25:2f:13:9f:
40:1b:dd:25:38:54:ad:84:68:e1:a9:91:38:95:d7:19:f7:4b:
cd:f8:bc:05:2d:50:1e:50:ea:cb:3f:0e:80:e1:07:fa:33:c3:
8a:75:c7:07:07:af:b9:47:c2:a5:a2:ab:07:5c:c5:53:f8:9a:
ea:ba:07:e2:40:3d:f1:04:51:b0:7b:0f:d3:76:56:82:9e:61:
6e:71:c0:5d:3c:45:a8:a9:2b:00:25:11:87:87:25:28:22:92:
be:c5:b0:95:3a:71:a2:c4:4f:e4:17:70:49:db:18:d2:65:f4:
97:99:a7:bb:1e:4e:41:f7:55:7f:fe:64:44:1c:84:a3:26:c5:
69:d6:61:a2:7f:25:1c:1f:75:d2:34:54:58:41:98:61:55:0c:
b8:7a:47:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org