Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/R20u2uryFsrxaMOwR_5DxrX_2l0.roa
File: R20u2uryFsrxaMOwR_5DxrX_2l0.roa (raw, json)
Hash identifier: rqzxlFTAbRr2f2V9WlVRmfJTVm5VgRUfe0DHaNRqUnc=
Subject key identifier: 47:6D:2E:DA:EA:F2:16:CA:F1:68:C3:B0:47:FE:43:C6:B5:FF:DA:5D
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 037A
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/R20u2uryFsrxaMOwR_5DxrX_2l0.roa
Signing time: Wed 29 Sep 2021 02:54:04 +0000
ROA not before: Wed 29 Sep 2021 02:54:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9678
IP address blocks: 103.98.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 890 (0x37a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Sep 29 02:54:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=476D2EDAEAF216CAF168C3B047FE43C6B5FFDA5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6d:e3:25:19:dc:97:93:bc:36:61:24:b6:8c:
8e:43:c7:47:fa:37:7c:c8:27:bd:12:56:03:17:f3:
be:40:06:ae:f2:77:bc:e9:46:5c:33:14:ea:40:f9:
54:96:66:c0:d1:9e:69:22:24:a7:b3:ae:ee:fc:e2:
8e:33:13:c2:b5:ab:77:4b:c5:7f:50:47:8c:12:38:
0c:b3:42:6d:85:5e:dd:0f:ad:e8:0b:3c:7b:2d:05:
66:08:7d:ee:8a:d8:6b:60:47:39:7d:b1:69:5e:2a:
28:11:d5:47:b6:3b:af:cd:2f:89:0c:4b:65:88:ca:
ad:b2:fa:84:12:4d:35:38:5a:ae:2a:bd:9f:04:e7:
da:d9:1d:f3:fb:64:47:17:da:34:43:f2:29:d6:df:
59:34:ba:c3:e2:51:5b:1a:63:38:e3:ca:7b:05:4f:
12:86:a6:50:c2:c6:1c:ba:6a:5c:a5:35:16:0c:cb:
55:67:99:80:15:15:76:6e:87:91:af:c1:6d:30:03:
f4:3b:62:25:a0:ee:72:04:fe:47:d2:6a:7d:d7:c4:
5c:8a:87:bd:a8:73:93:1e:bd:b4:0d:58:03:17:de:
3a:47:75:bc:2b:57:de:eb:6e:9e:40:e1:b1:5f:9d:
05:86:5f:29:47:c2:ac:a1:37:85:b7:80:4a:19:27:
c1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:6D:2E:DA:EA:F2:16:CA:F1:68:C3:B0:47:FE:43:C6:B5:FF:DA:5D
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/R20u2uryFsrxaMOwR_5DxrX_2l0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.98.75.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:65:e7:0e:5f:9d:11:18:83:da:77:17:a0:c5:f3:af:22:6c:
ee:e4:c5:67:c7:62:64:1c:cd:49:38:48:6b:e7:c8:1c:65:4b:
31:01:29:4e:06:26:b3:3f:f3:4f:82:ce:ad:7b:e1:46:14:4f:
0a:e9:5e:d1:31:8b:a1:de:5c:5b:dd:35:1d:33:13:7a:d3:bc:
cc:c4:d7:6a:a7:d2:24:af:47:c0:94:0f:ef:53:dd:c1:25:ba:
a0:33:a0:68:23:7a:e2:c4:cf:43:0b:62:bb:7c:04:72:23:ec:
c3:20:f7:3a:24:c1:58:72:9e:be:87:af:cc:94:49:5d:37:0d:
1d:84:54:e9:7f:a0:6a:3d:21:a7:5f:b4:40:10:22:0c:a2:2f:
a0:25:13:50:44:52:fa:ec:cd:f3:3f:88:7c:c4:fe:6d:4d:b3:
9d:6d:be:77:30:b7:8d:f1:97:ca:85:40:bb:00:0b:9a:6e:29:
10:1c:de:a4:66:80:8b:a3:9d:91:40:21:7d:aa:0f:e4:f2:17:
6a:6c:03:4c:e9:93:9c:fa:39:d2:95:dc:88:4d:fa:1c:e3:87:
15:f0:85:ae:bf:4b:3d:fb:99:d5:92:2c:ba:c7:5f:b7:0d:f2:
35:31:89:ff:21:d6:06:29:df:8a:fb:02:69:af:f0:eb:91:f5:
1f:f7:28:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org