Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/Lk8kLZwAuctq2T3eyn3cRc53TTw.roa
File: Lk8kLZwAuctq2T3eyn3cRc53TTw.roa (raw, json)
Hash identifier: tjYVvM0gUUORWeibk8RfBSAAH1z1aBbAGUZh2njeACc=
Subject key identifier: 2E:4F:24:2D:9C:00:B9:CB:6A:D9:3D:DE:CA:7D:DC:45:CE:77:4D:3C
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 0190
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/Lk8kLZwAuctq2T3eyn3cRc53TTw.roa
Signing time: Sat 03 Oct 2020 17:58:15 +0000
ROA not before: Sat 03 Oct 2020 17:58:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9678
IP address blocks: 103.98.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400 (0x190)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Oct 3 17:58:15 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2E4F242D9C00B9CB6AD93DDECA7DDC45CE774D3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:de:a9:bb:bb:b2:4d:0c:85:1d:e6:4b:21:9b:
ef:a8:e5:88:6a:b3:fd:5c:04:65:a7:ce:89:7d:62:
ce:4e:53:c3:97:90:8f:91:c0:64:66:86:35:b3:e0:
cf:0a:b7:2f:fc:de:aa:cc:7b:fb:d9:c8:29:4c:0a:
79:37:fe:fa:da:0b:23:af:e8:7a:75:dc:9a:d0:35:
7d:a2:64:20:af:91:30:8c:c6:87:0a:a9:bc:5c:d8:
44:1f:26:9d:90:06:fc:b4:5a:0c:b0:4b:b5:f3:7e:
f2:46:13:38:26:7b:f9:87:28:d5:e4:88:50:33:0d:
30:8f:96:51:56:c7:de:f7:28:87:95:d9:a5:fb:91:
26:ad:a3:b4:16:c5:ab:f1:c2:53:15:8c:5d:de:31:
15:ae:45:92:51:84:2d:c9:87:d2:ec:83:d7:93:e4:
eb:d1:de:e2:ed:ab:89:cf:7a:96:2b:f4:72:c1:5a:
f4:26:6e:20:29:ef:02:ce:6a:4b:59:da:41:40:ba:
63:b6:96:40:16:3c:21:82:e1:80:62:06:8c:b2:5c:
75:fd:c9:3a:af:e4:eb:cb:4f:f3:1d:84:26:a5:24:
87:ad:a5:33:30:d9:d7:0b:4d:bd:ec:4f:5b:02:6c:
ff:56:29:46:4c:e7:75:64:22:97:87:16:dc:64:ee:
7e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:4F:24:2D:9C:00:B9:CB:6A:D9:3D:DE:CA:7D:DC:45:CE:77:4D:3C
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/Lk8kLZwAuctq2T3eyn3cRc53TTw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.98.72.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:02:bb:1e:f4:78:35:8a:10:80:da:05:8a:fc:1d:e6:dc:59:
05:8a:d1:97:fd:47:7b:9c:04:a8:3b:26:22:fd:74:33:14:74:
19:3a:bd:77:07:8e:1d:66:f4:9a:a2:1a:46:7f:d5:de:f7:db:
53:83:b8:71:24:f4:94:d3:84:33:74:96:b4:c3:35:8f:04:8f:
ba:cb:0c:04:fe:04:8f:2f:bb:30:57:68:1a:5e:ef:c3:57:a4:
09:eb:df:31:46:bd:97:7d:51:82:ee:81:91:e0:3f:b7:39:7a:
42:d8:30:57:e5:c4:a4:b7:37:f4:bc:e2:00:48:66:78:ed:a1:
5f:f2:ea:9c:47:a3:13:3f:e3:07:57:11:c5:3c:54:e7:46:a6:
4e:e0:b4:01:2a:19:e0:a5:33:95:58:02:3f:9f:10:b9:93:03:
69:04:fd:f8:17:68:86:77:73:5e:15:f2:f4:9d:78:41:7b:b7:
74:b4:fd:79:4a:1a:66:55:50:9a:9b:79:78:cf:15:30:88:8d:
17:67:58:d4:70:a0:76:31:1d:9f:3b:60:83:92:64:4f:01:1b:
89:78:76:da:35:4b:ab:4f:9c:d2:0f:6b:eb:b1:24:17:4c:30:
9f:5e:72:9b:73:9e:c0:85:8f:5f:a4:69:69:1e:a5:53:b6:17:
91:9d:a6:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org