Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/pQFt7xn7x-5ujAbNyYWMhyIkn18.roa
File: pQFt7xn7x-5ujAbNyYWMhyIkn18.roa (raw, json)
Hash identifier: gXUfFRhT+xvyfYBLc6Jud2C+z9g8quFKpiV6Q1tI2LE=
Subject key identifier: A5:01:6D:EF:19:FB:C7:EE:6E:8C:06:CD:C9:85:8C:87:22:24:9F:5F
Certificate issuer: /CN=324A7E6EBF678F98B87228EC8466C3690A43DDB6
Certificate serial: 0935
Authority key identifier: 32:4A:7E:6E:BF:67:8F:98:B8:72:28:EC:84:66:C3:69:0A:43:DD:B6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/pQFt7xn7x-5ujAbNyYWMhyIkn18.roa
Signing time: Wed 29 Sep 2021 02:36:33 +0000
ROA not before: Wed 29 Sep 2021 02:36:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18046
IP address blocks: 220.158.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2357 (0x935)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324A7E6EBF678F98B87228EC8466C3690A43DDB6
Validity
Not Before: Sep 29 02:36:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A5016DEF19FBC7EE6E8C06CDC9858C8722249F5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:cc:9a:9f:61:37:a2:3e:d0:e3:30:f6:44:d3:
41:6d:48:1e:08:df:4e:32:a0:00:b0:09:82:cf:40:
14:17:0e:27:e3:b0:62:65:09:4a:38:18:59:e9:35:
14:e0:56:cd:7d:19:ab:90:f5:18:6d:48:a2:7a:d3:
67:ea:f6:87:57:94:81:78:2d:a8:31:2f:a2:59:1d:
ac:18:55:0e:67:1f:55:27:67:38:07:e4:79:10:a1:
f6:92:24:4b:f5:39:67:3a:1e:a3:3d:7f:1d:80:78:
2c:40:d0:7b:67:d8:f6:60:51:ad:ac:a8:40:a0:47:
06:aa:6d:2f:79:78:89:ac:0c:f2:fc:f4:22:5b:c1:
96:8a:4a:b7:0b:f4:4c:14:8c:b9:aa:7b:48:dd:e2:
f6:a2:1e:fd:4b:29:87:bf:69:06:6e:69:87:d0:52:
b7:05:9c:cf:04:16:bb:c6:a3:dd:1a:76:1e:e5:69:
97:94:47:84:79:ae:e8:62:d6:6d:82:07:e0:a9:1d:
de:5d:04:36:3d:a1:a2:fc:d8:d8:70:0c:31:a4:4a:
8a:af:71:1c:1a:43:3b:23:b2:3f:78:2e:5e:6e:5f:
ef:ea:6c:a6:de:11:bc:30:04:56:04:75:4a:0e:f9:
e5:79:79:bb:05:fa:0d:86:b8:e2:2a:be:c7:5f:3d:
fe:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:01:6D:EF:19:FB:C7:EE:6E:8C:06:CD:C9:85:8C:87:22:24:9F:5F
X509v3 Authority Key Identifier:
keyid:32:4A:7E:6E:BF:67:8F:98:B8:72:28:EC:84:66:C3:69:0A:43:DD:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/Mkp-br9nj5i4cijshGbDaQpD3bY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/pQFt7xn7x-5ujAbNyYWMhyIkn18.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.158.228.0/22
Signature Algorithm: sha256WithRSAEncryption
07:c7:1c:7c:6b:77:5d:09:f8:82:08:be:eb:3b:06:51:0c:80:
bf:e3:32:f1:8e:61:8e:e4:7e:4c:1d:36:62:32:eb:3d:2b:4a:
db:87:ac:6c:e9:d4:bd:b4:18:10:c8:a4:d0:43:6a:cd:35:c2:
5c:3f:4b:46:7e:52:48:87:d9:09:94:58:35:8a:5c:cd:ba:36:
9b:b4:95:7b:7e:63:f8:cc:22:ea:85:8c:3a:e1:92:ff:b2:97:
94:04:71:65:b0:f5:be:43:03:b2:6b:37:05:5b:91:2f:87:d1:
99:3b:8e:d8:18:a9:a4:ba:c1:4b:9d:ba:ba:bf:46:00:9f:c6:
a1:14:0b:fa:ee:ae:b7:99:7f:08:de:c7:9f:d1:6f:c9:43:af:
2f:4c:0d:23:67:66:0c:94:5e:38:f4:0c:be:7f:0b:39:84:95:
af:d3:05:9d:e1:78:44:1d:eb:46:b6:b4:8e:71:cc:19:3c:b7:
a2:7b:fd:41:53:dd:e9:06:32:73:c4:bc:d0:1b:4c:50:b1:76:
56:7c:38:da:52:ec:fc:67:b9:d7:f4:33:65:82:66:dc:e0:30:
74:07:2d:07:e7:d6:55:1e:3f:d7:6a:a5:5a:96:22:c2:14:2a:
80:ff:d1:e2:2c:75:8e:14:4b:7c:2c:d7:d8:7a:e7:95:f3:3c:
14:c7:d5:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:07 2023 by rpki-client on console-fra.rpki-client.org