Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/GBdDOULEC3WjbjyQcPRT01QiuPQ.roa
File: GBdDOULEC3WjbjyQcPRT01QiuPQ.roa (raw, json)
Hash identifier: JS+HPJXp4BhylARltEQcPZzXIkZ+uHjnf5uRYTkHUa8=
Subject key identifier: 18:17:43:39:42:C4:0B:75:A3:6E:3C:90:70:F4:53:D3:54:22:B8:F4
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 02D3
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/GBdDOULEC3WjbjyQcPRT01QiuPQ.roa
Signing time: Sun 07 Feb 2021 13:03:53 +0000
ROA not before: Sun 07 Feb 2021 13:03:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9678
IP address blocks: 103.98.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 723 (0x2d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Feb 7 13:03:53 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1817433942C40B75A36E3C9070F453D35422B8F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:97:aa:0a:3a:0b:e1:28:5b:45:79:36:ce:6e:
30:ee:59:cc:67:88:cd:7c:a8:20:f4:7b:0d:e7:c6:
4f:99:8d:6b:ba:82:bb:4f:cc:b6:e0:8c:14:15:15:
10:a2:b5:c8:f6:d6:4b:48:16:34:d2:93:4b:6c:50:
5e:11:b6:51:65:c1:99:6e:5e:a3:42:46:bb:d8:34:
23:ce:07:a0:54:e6:23:ce:2b:01:25:ef:3d:21:8a:
5f:dc:a9:58:8a:35:7f:0d:17:16:d1:ba:f9:96:17:
be:16:d7:7a:d8:c5:8c:c3:ec:a3:e9:ae:53:f5:8a:
94:19:e0:ef:be:26:60:48:73:13:72:c2:71:47:a3:
86:32:59:bf:37:96:58:42:7b:dd:25:3c:ea:ba:6d:
20:db:64:6d:6e:ca:90:91:3a:9a:29:57:8f:95:c8:
b4:5a:7d:95:5e:d0:f7:9c:9d:0e:cd:9b:49:62:b6:
e7:c0:d8:a2:ae:bc:3d:d2:5d:1c:e4:65:13:d0:90:
2b:3f:0e:50:f8:c0:50:93:8d:35:3b:91:c0:e0:b0:
00:28:61:c4:83:0a:fb:16:35:68:f2:0c:64:23:75:
f1:44:fb:c6:08:b8:87:f9:8b:d5:55:6c:36:5e:cf:
6c:78:95:b9:51:4b:95:f7:f2:19:b3:c8:51:d2:4c:
c1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:17:43:39:42:C4:0B:75:A3:6E:3C:90:70:F4:53:D3:54:22:B8:F4
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/GBdDOULEC3WjbjyQcPRT01QiuPQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.98.72.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:c2:0c:6f:86:1f:92:e1:a8:a5:a5:40:fb:a2:2b:04:6f:7a:
66:ea:9f:e3:2f:11:ea:e7:23:c8:f2:f0:e1:2a:97:4d:3b:84:
9d:3b:23:67:d6:31:2d:d8:31:80:8b:8b:0d:6f:c1:58:2a:4d:
c0:64:bb:fd:2d:90:4b:f6:11:e7:67:48:0e:57:e5:33:f0:f8:
b6:2c:c9:ca:cd:d1:c2:04:3e:93:2f:df:da:59:06:21:af:bd:
da:16:9c:4a:11:92:1a:64:db:0f:d1:94:6c:56:37:37:5e:8c:
48:b3:3b:6d:05:74:3d:63:30:05:b2:a1:f6:9f:53:6e:d9:7e:
72:24:06:6b:31:ee:69:8b:16:c7:40:9e:89:86:29:c3:ec:2d:
a6:1d:3b:4b:56:5b:75:81:97:16:d8:ad:cc:84:8c:19:e4:aa:
bf:53:5e:23:9b:47:15:64:b9:28:80:e2:fe:2b:17:9d:66:a9:
34:2e:e6:07:dc:9b:f1:71:ed:ee:8a:83:e5:d2:42:66:fd:e3:
51:5e:b7:4a:76:56:34:6f:ad:5d:b5:3b:b4:15:33:04:18:0c:
cc:25:3b:0d:ef:bc:f5:50:0a:a4:98:06:99:27:9b:4a:13:8f:
4d:13:f8:84:05:11:34:37:bf:8d:46:65:44:6a:d1:c4:9f:23:
b1:f3:e5:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:07 2023 by rpki-client on console-fra.rpki-client.org