Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/nYvGxdEy4TFOITf8TBQtWexWOQw.roa
File: nYvGxdEy4TFOITf8TBQtWexWOQw.roa (raw, json)
Hash identifier: Y16EIeAZ1jhe/veyR5Rjw4CBRtqmW0+5rYvafAO4MWI=
Subject key identifier: 9D:8B:C6:C5:D1:32:E1:31:4E:21:37:FC:4C:14:2D:59:EC:56:39:0C
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 0374
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/nYvGxdEy4TFOITf8TBQtWexWOQw.roa
Signing time: Wed 29 Sep 2021 02:53:57 +0000
ROA not before: Wed 29 Sep 2021 02:53:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 20473
IP address blocks: 103.153.176.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 884 (0x374)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Sep 29 02:53:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9D8BC6C5D132E1314E2137FC4C142D59EC56390C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7a:15:92:6a:f1:72:89:b7:bd:31:e3:c0:eb:
b3:2c:f1:b6:2c:06:d2:82:66:5e:e2:35:02:db:d5:
ab:06:3c:c2:8e:88:65:ff:a4:b2:4e:46:8e:7e:e6:
eb:ca:e3:26:c8:24:96:0e:80:24:1d:4f:ce:5d:27:
7b:33:f1:f3:4e:24:60:b4:d5:39:26:69:9b:6b:4f:
3d:c3:12:ce:69:36:da:e3:53:a9:72:74:71:d2:7e:
ab:a4:61:c9:c0:61:42:99:63:86:30:6f:b1:7a:1f:
08:f1:62:58:8c:66:76:52:3d:c0:8d:69:62:f1:65:
c9:c8:4b:e9:df:e8:3a:60:c0:37:f2:ad:6f:f0:ff:
0e:2b:6c:d2:11:9e:a5:28:dd:f3:cb:18:d3:53:58:
d2:68:a3:a3:5c:c3:5a:19:56:76:2d:84:3d:a0:84:
f1:ee:90:fc:fd:22:8a:b1:a9:6d:57:85:27:26:58:
f1:6f:46:08:1a:01:89:96:33:8f:80:0d:0d:71:e1:
d3:03:46:cf:10:df:1a:c5:6a:cd:c5:f1:31:a8:66:
39:b2:4d:f5:b7:ea:6f:a2:90:64:6d:d4:d7:f0:2c:
fb:c3:d2:10:0c:92:4d:b9:f6:83:57:19:a0:b6:6e:
52:33:06:a2:d9:29:35:43:1a:34:2e:ef:20:03:64:
d4:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:8B:C6:C5:D1:32:E1:31:4E:21:37:FC:4C:14:2D:59:EC:56:39:0C
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/nYvGxdEy4TFOITf8TBQtWexWOQw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/23
Signature Algorithm: sha256WithRSAEncryption
76:97:3a:d6:c4:d2:28:e8:69:47:4c:54:b0:68:46:c2:c9:cd:
d0:ba:bb:4c:fa:62:a0:38:bb:82:de:fc:b5:e3:0a:9c:e1:8a:
18:11:9f:ff:cf:21:20:01:57:3a:4f:6f:47:4c:c4:d4:f6:28:
87:a9:75:ee:e4:b0:57:6b:f7:7e:36:b3:cd:97:6f:e2:75:63:
08:db:c3:09:62:6b:49:2a:7d:3e:11:87:34:30:1b:cd:11:52:
c4:90:9e:fa:b9:95:96:88:e1:33:f7:e2:4e:6d:6f:60:38:e0:
b2:d4:87:80:be:ac:b6:88:cd:c3:72:2a:06:19:f1:c7:6b:8a:
5f:f3:82:14:1c:6c:f4:a5:fe:dc:b4:ac:d3:f3:f9:5e:33:26:
f4:cb:d1:5f:bb:ae:ad:e3:b9:0e:42:d7:e1:9f:e1:82:a8:20:
a4:fa:41:b8:f8:d8:87:8c:96:40:f2:9c:dc:06:6c:c5:89:c8:
2a:df:42:c7:7c:9b:cc:cf:f0:99:44:37:7e:52:23:8e:25:d9:
b6:da:5e:70:ed:bb:0c:58:f2:a4:4c:ff:b8:90:cd:eb:d6:92:
70:87:99:cb:ba:6f:28:d2:d0:37:d1:46:86:7d:58:c9:90:f6:
35:ab:2c:99:3a:20:ad:01:1d:09:7f:e6:51:ef:83:e8:a1:1d:
10:55:fc:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org