Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/B911a_cL_WohXZlgKSszB1Bi69w.roa
File: B911a_cL_WohXZlgKSszB1Bi69w.roa (raw, json)
Hash identifier: HY5EBqHt50beoUUmbERIt+QyBChPooA3iQaGbRW8qyY=
Subject key identifier: 07:DD:75:6B:F7:0B:FD:6A:21:5D:99:60:29:2B:33:07:50:62:EB:DC
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 0471
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/B911a_cL_WohXZlgKSszB1Bi69w.roa
Signing time: Thu 15 Sep 2022 02:35:05 +0000
ROA not before: Thu 15 Sep 2022 02:35:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9678
IP address blocks: 103.98.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1137 (0x471)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Sep 15 02:35:05 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=07DD756BF70BFD6A215D9960292B33075062EBDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:78:cc:37:b2:88:5d:97:62:86:89:b3:6b:e3:
c1:20:b6:80:9a:98:de:74:9d:9c:0b:c8:ef:b7:5b:
19:11:85:24:90:63:6a:fa:65:e3:d8:5c:82:bf:07:
f6:3e:96:be:73:86:b4:4e:4e:12:e8:63:c9:d6:c5:
e6:38:88:8d:9f:6c:5a:a6:2d:f8:43:b0:01:ca:c0:
38:20:4b:5b:17:b0:c2:cb:ce:4e:46:46:92:0e:ff:
65:04:8a:30:a0:e6:ab:39:2a:73:84:87:56:6a:fe:
83:21:a8:ae:cd:be:0d:2a:b1:69:74:6e:5c:11:24:
55:f6:5c:ea:3b:67:66:10:c1:89:cf:bb:44:1a:19:
72:85:e5:47:42:9c:f9:c3:61:2c:9a:7a:ba:12:91:
d6:39:3b:cb:2a:24:07:68:61:31:b0:cd:62:c1:cd:
c9:7a:0d:40:3c:5e:e8:2d:89:1d:e1:e8:e4:31:60:
01:0c:36:53:06:6b:8b:9d:09:b0:73:7c:b9:03:75:
4d:30:62:25:fb:6a:63:4f:b4:71:2d:b5:5f:c3:fd:
33:23:16:9f:ce:96:57:80:fc:62:1c:d0:8d:34:a9:
ef:88:dc:88:0c:17:69:2d:9f:e4:87:43:f2:a9:53:
68:40:ab:c5:65:f3:19:ea:e9:4a:3c:b2:0a:e4:46:
ca:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:DD:75:6B:F7:0B:FD:6A:21:5D:99:60:29:2B:33:07:50:62:EB:DC
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/B911a_cL_WohXZlgKSszB1Bi69w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.98.73.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:95:0a:48:12:e6:de:56:58:f8:98:a2:cb:61:1c:1b:61:c4:
9d:5e:a7:e4:2f:44:27:f3:cc:f7:1d:c4:66:35:9b:d2:87:e9:
6f:bf:85:38:d3:52:f2:3d:51:e2:47:5f:d5:5d:c4:93:3b:63:
a4:10:dd:7c:a4:77:a8:7f:3d:b3:49:0d:d0:58:15:16:aa:55:
9e:95:7a:1f:d5:54:7b:67:37:35:5b:a3:29:8b:49:96:59:ce:
95:84:3e:c0:bb:d7:c4:42:02:fc:9a:21:69:3e:d4:dd:7f:d8:
e9:c8:1d:a6:0e:50:c4:fa:75:e3:1a:f9:5e:ad:35:c5:be:5b:
6c:c8:0b:81:63:6d:c5:d2:98:2b:29:05:40:c1:a0:c2:c3:1d:
91:49:9a:31:bb:d2:df:ce:8e:a6:fa:40:c8:55:aa:f4:51:ea:
3d:f7:58:f8:4f:ba:02:df:15:db:eb:4a:cc:c4:0b:14:9d:f8:
25:de:cd:d3:4a:f6:94:50:a0:cd:87:8a:5b:24:9e:3b:03:7b:
6c:bf:4a:e7:4c:b5:b9:54:b4:bb:95:04:9c:b3:4c:c1:db:27:
2b:a2:73:3f:e7:5b:0e:be:38:d6:9c:f8:f9:4e:99:78:0f:39:
38:7a:33:82:00:77:09:dc:91:72:01:ef:bb:d6:df:7d:81:3c:
a9:ba:b4:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org