Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ysTPim5CSJd2S7osAn4Rv3FOSCc.roa
File: ysTPim5CSJd2S7osAn4Rv3FOSCc.roa (raw, json)
Hash identifier: jZqzskw70pc8ncmJ/aksGO5YINEaA8k9Y2TYJ9lX+nM=
Subject key identifier: CA:C4:CF:8A:6E:42:48:97:76:4B:BA:2C:02:7E:11:BF:71:4E:48:27
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 0376
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ysTPim5CSJd2S7osAn4Rv3FOSCc.roa
Signing time: Wed 29 Sep 2021 02:53:57 +0000
ROA not before: Wed 29 Sep 2021 02:53:57 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 134823
IP address blocks: 103.153.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 886 (0x376)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Sep 29 02:53:57 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CAC4CF8A6E424897764BBA2C027E11BF714E4827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c3:dc:1e:1d:51:16:13:d9:5d:09:af:15:cb:
56:b6:61:52:b2:68:6c:b6:68:56:cd:1f:79:7b:71:
79:a8:ce:48:f9:68:f1:e0:e8:cb:8e:69:7a:63:8e:
59:44:b1:92:51:41:f3:82:fa:1c:5d:90:b5:99:69:
58:46:14:9f:d2:cd:1e:09:8b:34:ce:23:45:0b:fb:
a1:2d:fc:34:0d:e2:e1:23:ce:5a:04:50:ef:df:91:
fa:a7:3f:aa:2e:5d:a9:fa:24:eb:da:58:25:6d:bd:
2e:c6:8f:82:41:f8:bd:47:c4:76:bb:17:6c:6f:23:
d9:c4:4a:05:c4:5e:ad:b7:c1:0d:48:08:6d:eb:13:
f6:ab:23:c2:37:ff:14:5e:db:31:da:16:9d:6f:f4:
1d:ba:bc:36:5b:a7:60:5c:c4:00:3b:cd:1d:73:56:
bb:6b:f1:4e:af:7e:41:d8:d3:b7:b1:3f:49:3a:72:
b1:21:fc:b4:5e:3d:b9:02:72:eb:4e:81:a4:f5:7f:
16:3a:5a:4e:35:f5:4c:71:fc:9d:c1:2e:3a:78:ff:
31:34:9f:60:27:92:30:60:fa:ca:1a:3f:26:e8:c0:
e7:6a:55:b1:db:64:2d:9c:b4:4c:de:bf:b9:ec:ab:
16:e6:c0:99:45:03:5a:68:00:8c:a8:10:ae:2a:59:
6a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:C4:CF:8A:6E:42:48:97:76:4B:BA:2C:02:7E:11:BF:71:4E:48:27
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ysTPim5CSJd2S7osAn4Rv3FOSCc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:bd:ca:57:33:bb:05:3d:06:8e:79:46:10:4b:e4:e8:c3:e3:
15:cb:41:c3:5c:e7:d2:8e:a9:4b:a8:4d:af:cf:66:fa:d2:9e:
16:97:57:3e:da:e3:ed:4e:dd:3b:c9:88:32:5c:ff:2d:09:65:
98:c0:06:b1:5b:79:27:3b:c9:b6:4d:6b:ee:64:b0:14:68:d6:
e0:69:89:e6:e9:88:d4:21:35:42:20:37:c8:9e:28:f7:d2:e9:
d4:2e:2c:60:f8:6a:2b:d2:05:8d:98:98:eb:c1:e0:43:aa:8c:
78:83:65:36:f8:fe:e6:1d:51:ca:fe:c6:aa:41:2a:4a:63:db:
86:f0:d8:4c:69:fb:c6:51:b5:d1:03:59:40:15:02:8c:ae:96:
31:1d:1f:b4:64:6c:38:38:50:18:2b:3f:da:36:ad:a3:39:02:
70:74:16:a3:b9:32:cb:66:55:26:3e:c0:5a:e7:dd:e2:d1:28:
19:97:54:ce:31:13:89:4f:d1:28:b6:2f:be:29:a1:e7:27:ab:
e4:bc:2c:46:07:bb:2f:5e:89:e1:9f:60:31:05:db:fe:e4:96:
68:e4:5d:1f:7b:d5:dc:da:05:8d:90:7c:6c:7f:31:0f:b9:32:
b3:cd:b6:2c:da:05:37:8a:e7:79:2b:0d:96:02:fa:50:21:75:
36:97:54:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org