Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/N-1FY372BJU3AzMdkWTUY_m3Pr8.roa
File: N-1FY372BJU3AzMdkWTUY_m3Pr8.roa (raw, json)
Hash identifier: OBF4bG77SaiJSrnmrYfG5ueOoUhBVxMGVzSvBLm+8CA=
Subject key identifier: 37:ED:45:63:7E:F6:04:95:37:03:33:1D:91:64:D4:63:F9:B7:3E:BF
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 037C
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/N-1FY372BJU3AzMdkWTUY_m3Pr8.roa
Signing time: Wed 29 Sep 2021 02:54:04 +0000
ROA not before: Wed 29 Sep 2021 02:54:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9678
IP address blocks: 103.98.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 892 (0x37c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Sep 29 02:54:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=37ED45637EF604953703331D9164D463F9B73EBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:58:a7:7e:df:79:8b:84:7c:52:ef:50:f4:42:
5b:ea:ff:15:50:e7:27:7e:fb:7d:71:9c:3b:ce:3e:
1e:32:0e:74:94:c9:99:08:f8:88:3c:a7:be:d9:aa:
d1:58:06:02:a5:ad:f1:42:a2:28:93:3c:15:e1:58:
2e:8a:f7:fb:0d:f4:db:e4:fc:83:fe:3d:81:2e:75:
ab:57:1f:49:92:0f:8f:01:48:41:4c:38:dd:48:f1:
67:e9:77:bd:e0:23:07:3c:bd:cb:2d:f1:15:65:55:
6f:b8:35:69:8a:ce:2e:87:63:5e:02:21:af:c9:ed:
3e:c9:59:d7:b3:49:ec:97:0a:57:84:d7:6c:5a:02:
a3:69:73:4f:36:d1:aa:4c:88:31:3b:e4:bc:12:9b:
b4:92:96:c9:a6:0e:4d:d5:b9:f4:e1:3b:dc:8c:02:
ab:6d:46:5f:b6:12:a2:39:ac:8d:5e:9f:c9:c0:32:
0e:f5:fc:c4:c1:e0:4a:89:f6:80:c7:e4:d5:9f:11:
06:2a:ad:72:65:6f:c5:3a:04:a4:b3:a1:e5:dd:ca:
94:69:be:bf:7b:b4:e3:9d:53:ac:48:71:34:cd:aa:
bd:77:7b:a1:68:e0:bf:27:8a:c4:38:e0:db:97:47:
df:61:66:90:fa:0d:51:86:a2:ac:34:f5:6f:cf:32:
ae:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:ED:45:63:7E:F6:04:95:37:03:33:1D:91:64:D4:63:F9:B7:3E:BF
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/N-1FY372BJU3AzMdkWTUY_m3Pr8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.98.73.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:12:e0:7c:d9:e2:35:c1:d7:64:01:97:3a:58:4d:ac:51:ef:
a3:8f:55:99:dc:f6:44:9c:89:c5:da:f5:bf:68:54:44:35:c6:
03:82:8b:17:79:8f:bd:a0:fd:08:cb:11:7c:70:9a:72:00:95:
8f:3b:2d:ac:46:e4:b2:21:a6:73:6b:67:f9:69:8f:1e:4a:71:
f1:a8:a4:64:e6:97:ec:a4:a3:d6:e6:e3:fe:8b:34:62:8b:e1:
44:fb:14:69:30:66:19:2d:0d:8b:8f:10:a9:e4:51:b8:00:43:
c6:a5:dc:43:13:b2:9b:bd:90:a4:80:e5:85:e7:53:eb:df:e9:
fa:be:fa:f9:c7:fc:fb:67:86:25:44:aa:a3:ae:63:7f:a8:2d:
b2:9b:24:e6:74:c5:3a:37:8c:31:08:df:e1:51:3c:1d:51:90:
29:21:53:3c:3a:3e:23:98:5d:8d:aa:b5:71:90:b1:a4:2b:2f:
62:f3:3e:a5:8b:3d:a8:98:ed:69:a3:c6:81:fd:fc:f0:35:78:
7c:f0:58:1e:31:e5:a9:73:5c:3a:70:0d:98:7f:6b:de:03:0c:
30:55:17:83:7c:87:9d:ce:fc:d9:9d:5a:0c:a0:05:9f:39:d1:
30:b2:3d:03:c4:e4:b5:f7:61:31:85:45:f7:5f:5f:c0:cf:79:
97:3a:27:4c
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICA3wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF
RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yMTA5Mjkw
MjU0MDRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDM3RUQ0NTYzN0VGNjA0
OTUzNzAzMzMxRDkxNjRENDYzRjlCNzNFQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDlWKd+33mLhHxS71D0Qlvq/xVQ5yd++31xnDvOPh4yDnSUyZkI
+Ig8p77ZqtFYBgKlrfFCoiiTPBXhWC6K9/sN9Nvk/IP+PYEudatXH0mSD48BSEFM
ON1I8Wfpd73gIwc8vcst8RVlVW+4NWmKzi6HY14CIa/J7T7JWdezSeyXCleE12xa
AqNpc0820apMiDE75LwSm7SSlsmmDk3VufThO9yMAqttRl+2EqI5rI1en8nAMg71
/MTB4EqJ9oDH5NWfEQYqrXJlb8U6BKSzoeXdypRpvr97tOOdU6xIcTTNqr13e6Fo
4L8nisQ44NuXR99hZpD6DVGGoqw09W/PMq71AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUN+1FY372BJU3AzMdkWTUY/m3Pr8wHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh
VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO
L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL04tMUZZMzcyQkpVM0F6TWRr
V1RVWV9tM1ByOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn
YkkwDQYJKoZIhvcNAQELBQADggEBAD0S4HzZ4jXB12QBlzpYTaxR76OPVZnc9kSc
icXa9b9oVEQ1xgOCixd5j72g/QjLEXxwmnIAlY87LaxG5LIhpnNrZ/lpjx5KcfGo
pGTml+yko9bm4/6LNGKL4UT7FGkwZhktDYuPEKnkUbgAQ8al3EMTspu9kKSA5YXn
U+vf6fq++vnH/PtnhiVEqqOuY3+oLbKbJOZ0xTo3jDEI3+FRPB1RkCkhUzw6PiOY
XY2qtXGQsaQrL2LzPqWLPaiY7WmjxoH9/PA1eHzwWB4x5alzXDpwDZh/a94DDDBV
F4N8h53O/NmdWgygBZ850TCyPQPE5LX3YTGFRfdfX8DPeZc6J0w=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org