Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/IHNXN4oMDn7TBvKLV1p_qcd30SA.roa
File: IHNXN4oMDn7TBvKLV1p_qcd30SA.roa (raw, json)
Hash identifier: FDS9CNCpM+bE8vEIya0sgY5N7oSamDvk9nT50TuAoaY=
Subject key identifier: 20:73:57:37:8A:0C:0E:7E:D3:06:F2:8B:57:5A:7F:A9:C7:77:D1:20
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 02D9
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/IHNXN4oMDn7TBvKLV1p_qcd30SA.roa
Signing time: Sun 07 Feb 2021 13:13:24 +0000
ROA not before: Sun 07 Feb 2021 13:13:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9678
IP address blocks: 103.98.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 729 (0x2d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Feb 7 13:13:24 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=207357378A0C0E7ED306F28B575A7FA9C777D120
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e3:bd:1e:21:87:b9:b0:79:72:63:e7:d3:23:
7e:26:83:41:4d:4f:99:bc:e4:10:22:49:a0:8a:c9:
7c:a0:70:2a:da:bf:fc:ab:85:70:d1:2a:d7:0a:ff:
e6:d5:27:10:b3:f7:4b:4f:01:1d:fa:a0:30:76:dc:
f2:58:24:f0:f9:25:f2:0e:36:20:0b:bd:98:6e:39:
81:31:96:13:59:30:fd:de:c6:9e:2b:47:4f:b7:52:
34:4d:88:dc:47:72:19:2c:c8:76:81:ab:fd:1a:ed:
a2:19:9b:de:f7:58:c5:be:ce:d3:95:16:c2:0f:8b:
e4:7e:3b:0c:68:a4:12:2c:53:c4:78:68:ee:cf:c1:
9d:74:c1:1f:ee:69:d2:37:32:92:42:25:af:e4:fb:
d5:79:f6:53:9a:b8:8e:d5:90:a5:ea:b0:90:b1:c4:
d8:a5:1a:8e:75:ff:1e:16:a5:29:5b:35:93:11:29:
20:78:af:7f:e3:05:0b:dd:4c:ba:4e:ab:04:a5:c4:
9b:e9:70:cf:02:27:d2:d8:a3:70:5b:58:cf:34:2a:
d7:43:40:cf:da:2f:23:27:03:0d:f2:b8:9a:de:0d:
e3:76:74:fe:94:45:6e:4a:11:6e:a6:a2:90:9e:d5:
99:9c:cb:7a:48:40:1f:a4:97:24:37:96:fd:b8:e8:
60:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:73:57:37:8A:0C:0E:7E:D3:06:F2:8B:57:5A:7F:A9:C7:77:D1:20
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/IHNXN4oMDn7TBvKLV1p_qcd30SA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.98.75.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:b5:9a:b2:11:6c:a6:75:b4:a8:78:d8:f4:3e:44:f4:c1:b7:
8c:f8:0b:35:9a:94:48:08:00:6b:c9:2b:de:67:7a:1d:89:01:
af:11:9a:e6:1a:37:64:ed:18:d1:8e:51:79:1b:7c:a6:bd:d2:
5b:09:51:a3:ad:5e:20:03:f2:18:71:ba:96:ae:56:9b:00:b7:
47:3e:1b:3f:26:64:45:57:ff:40:20:7b:42:77:27:f8:fd:3a:
28:58:8e:6a:2c:e1:8c:8c:06:9d:9e:98:d7:bb:d9:de:07:0e:
90:18:ca:45:ee:ed:1f:bc:97:1d:96:6c:61:8c:8b:fc:38:48:
89:14:4f:37:77:4f:64:62:8f:8f:c0:ee:0d:a2:46:e6:49:43:
07:e8:17:f2:8a:67:59:53:c9:cf:a3:1a:6b:87:03:00:de:8f:
2a:33:2e:78:58:8b:d9:9f:a1:e5:17:bc:12:7a:37:cb:60:48:
62:52:52:de:9e:17:2e:a5:72:1f:2c:4a:4a:44:bc:7b:c4:37:
11:45:e6:33:0b:d8:b3:2d:ad:e6:90:b7:d1:55:ad:d8:22:08:
86:eb:18:b7:30:a1:f0:9d:c6:17:da:f0:c1:93:14:ed:12:d9:
44:33:fa:bb:73:3d:73:54:f9:d4:9c:9a:f1:e8:eb:6d:94:af:
2d:c2:88:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org