Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/lN1qbVNZnFPgMiQPWsRZG7BkuVI.roa
File: lN1qbVNZnFPgMiQPWsRZG7BkuVI.roa (raw, json)
Hash identifier: hNlQepSjJ3Rtgt80i1iiDvRzeX3yVm3drvvfEIKzlaA=
Subject key identifier: 94:DD:6A:6D:53:59:9C:53:E0:32:24:0F:5A:C4:59:1B:B0:64:B9:52
Certificate issuer: /CN=324A7E6EBF678F98B87228EC8466C3690A43DDB6
Certificate serial: 0893
Authority key identifier: 32:4A:7E:6E:BF:67:8F:98:B8:72:28:EC:84:66:C3:69:0A:43:DD:B6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/lN1qbVNZnFPgMiQPWsRZG7BkuVI.roa
Signing time: Sun 07 Feb 2021 13:15:45 +0000
ROA not before: Sun 07 Feb 2021 13:15:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38851
IP address blocks: 103.197.174.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2195 (0x893)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324A7E6EBF678F98B87228EC8466C3690A43DDB6
Validity
Not Before: Feb 7 13:15:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=94DD6A6D53599C53E032240F5AC4591BB064B952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:84:c0:7b:99:56:62:ef:53:14:28:03:aa:ab:
6b:e3:7b:1d:9e:37:3e:00:3f:bb:c8:d7:96:fe:0e:
94:9a:4c:c3:bf:69:82:c4:1a:7b:c1:24:98:80:c5:
fc:5d:da:7e:ea:54:5e:c3:f4:11:f3:ee:42:66:48:
2a:98:8a:5d:9d:1d:bf:15:ea:59:94:35:5b:90:fc:
c9:42:87:a5:4e:80:50:6a:79:31:79:7f:9d:ed:2e:
ab:79:9d:bf:7f:a4:02:b0:42:a5:9d:29:56:3c:44:
cf:f1:f4:d6:10:95:a9:2c:2a:fd:6c:ee:99:de:e1:
86:18:6a:d2:c2:40:73:54:32:9c:a6:70:c1:fb:fe:
3d:e4:61:c2:b4:08:50:aa:26:5d:ce:48:3d:2c:45:
92:45:fc:72:61:d9:96:76:7b:59:39:a4:06:01:5d:
a6:7c:50:ea:f8:e5:19:ef:b5:2b:9c:3d:18:45:0b:
3d:25:31:d6:88:4b:b7:96:d1:21:78:fd:7a:f2:e7:
ba:fe:cc:e5:66:f5:29:85:ba:34:e3:59:fc:1f:75:
74:bf:62:84:a5:6d:e0:e2:32:18:1a:81:dc:f0:f5:
c3:2e:10:a6:d9:de:ec:ed:fc:a1:94:84:1d:4a:e9:
51:e4:6d:81:91:65:cf:d8:1e:fb:ae:c7:8c:65:fc:
1b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:DD:6A:6D:53:59:9C:53:E0:32:24:0F:5A:C4:59:1B:B0:64:B9:52
X509v3 Authority Key Identifier:
keyid:32:4A:7E:6E:BF:67:8F:98:B8:72:28:EC:84:66:C3:69:0A:43:DD:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/Mkp-br9nj5i4cijshGbDaQpD3bY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/lN1qbVNZnFPgMiQPWsRZG7BkuVI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.197.174.0/23
Signature Algorithm: sha256WithRSAEncryption
37:55:31:72:a3:1b:ed:7f:85:c7:5a:86:75:de:69:c6:14:40:
84:ab:22:f6:fa:e9:ff:f6:5a:25:91:2d:2f:f0:b0:9b:6d:e5:
a4:d7:84:b1:fb:3d:fd:0d:8b:67:2f:f5:1e:ed:59:2f:36:65:
f0:82:1d:2a:77:c7:c5:11:b7:96:03:dc:06:a7:f8:2f:a1:e5:
40:aa:4b:b8:c4:3d:77:17:9f:9f:e6:20:05:53:57:b0:72:37:
38:9c:b0:87:c7:be:18:f1:bf:31:56:16:b3:99:61:bc:8e:fe:
13:ce:f0:4b:4a:6a:d6:f3:7e:d8:04:88:65:91:d3:18:7c:97:
fc:6d:21:79:61:e2:ea:ef:19:17:66:10:63:c1:11:1b:22:df:
2d:79:50:0d:50:d3:59:e0:63:72:43:f0:ab:4c:08:eb:57:e7:
33:01:97:7b:dd:9d:be:5c:10:6d:f2:8c:07:05:f4:9b:48:f6:
a3:ad:f8:34:5d:41:e7:1c:86:7e:09:96:a3:1e:db:ca:9b:50:
e5:fa:04:a5:74:44:ea:71:17:b1:ba:ea:28:1b:4f:70:3f:30:
8e:8f:6b:b8:c9:f0:e9:5e:e7:4c:b4:f2:17:61:d3:c9:1f:a1:
fb:b4:eb:7b:89:cd:a2:9a:15:3f:65:7b:70:87:05:30:bd:8e:
69:6e:ee:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org