Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/mLQp4oUbU5GD2tpX_Lfrhadx6uE.roa
File: mLQp4oUbU5GD2tpX_Lfrhadx6uE.roa (raw, json)
Hash identifier: RU7ZF76MVPH5VIDsauhVfmzRPHisDZ1ZViLmsGkTxUw=
Subject key identifier: 98:B4:29:E2:85:1B:53:91:83:DA:DA:57:FC:B7:EB:85:A7:71:EA:E1
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 037D
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/mLQp4oUbU5GD2tpX_Lfrhadx6uE.roa
Signing time: Wed 29 Sep 2021 02:54:05 +0000
ROA not before: Wed 29 Sep 2021 02:54:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9678
IP address blocks: 103.98.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 893 (0x37d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Sep 29 02:54:05 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=98B429E2851B539183DADA57FCB7EB85A771EAE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:b5:a9:5e:d3:65:3e:3d:78:ad:59:42:f7:be:
8f:5b:a2:01:20:d8:ca:95:d9:8e:ca:c8:27:69:58:
12:6c:3c:58:21:7b:39:6a:a6:1b:5a:c5:c0:71:60:
64:b6:40:7d:3a:ee:76:84:78:93:7d:c1:b4:26:47:
e3:24:79:67:90:32:50:0e:c6:13:0c:53:6c:c9:c7:
ce:c9:e7:c8:f9:21:2a:68:f8:e9:d4:dd:15:ee:3f:
4c:44:2f:df:8b:3b:42:67:06:47:d8:cc:70:e7:c3:
2c:f4:a6:b8:25:c3:9a:d2:5b:cf:9c:cc:85:4e:20:
87:56:5d:2e:0b:f0:59:32:c1:a5:4b:3a:40:2a:8f:
58:64:5a:5e:b9:72:be:e9:5e:81:76:bd:98:e5:18:
df:a0:03:0a:b1:b3:0f:b8:13:37:a1:37:3c:ab:0b:
37:87:93:e9:63:81:e4:40:34:7c:3a:2c:f8:fc:30:
aa:b8:a6:a2:2b:d5:b9:e9:16:4b:21:6c:4e:52:e8:
7f:85:c8:bb:c0:b9:3b:8e:81:70:ef:0a:cc:7e:04:
70:c7:56:04:eb:ce:2b:8a:5c:35:29:fa:9e:27:88:
09:81:07:5f:d3:c3:a1:bd:bc:b7:60:88:b2:17:54:
19:32:02:b9:f2:9a:3f:6b:f2:f2:97:7b:e5:ff:2e:
1a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:B4:29:E2:85:1B:53:91:83:DA:DA:57:FC:B7:EB:85:A7:71:EA:E1
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/mLQp4oUbU5GD2tpX_Lfrhadx6uE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.98.72.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:17:34:19:e2:ac:88:38:e5:b8:d9:31:20:87:b7:c1:36:94:
7e:51:e8:da:1c:52:c4:11:16:07:6c:b3:2b:35:6d:78:1e:cb:
ae:2b:d4:97:75:da:9e:73:c0:a5:1e:c4:9f:b0:d7:90:30:70:
cf:27:dd:7c:74:7e:94:27:15:1f:b3:23:ce:e3:30:94:c4:3f:
f8:eb:f7:99:61:59:fb:94:84:cf:80:83:f2:26:46:45:66:dc:
54:4e:8e:19:b0:35:af:83:03:01:ea:ed:17:da:fd:ff:1e:fa:
d1:d5:14:f3:2c:c7:98:66:c8:58:7b:55:cb:15:ae:c0:a6:6c:
7f:fd:ad:60:50:f9:e6:11:79:31:02:83:67:5c:63:30:ef:85:
b3:9c:80:0a:1f:bd:4b:26:0c:45:46:d1:2a:c7:3c:b8:df:85:
ff:3d:c6:9e:e0:dd:85:56:2c:7f:23:a4:64:66:f4:8b:0c:e7:
fc:19:49:8d:07:d8:e6:2f:fd:e4:c7:37:63:45:c2:21:33:29:
99:00:b5:79:fe:e2:fc:fe:ab:dc:b9:e8:67:f1:a3:c4:d5:2f:
1e:47:48:b6:90:64:f4:06:f6:d4:bd:7a:e0:3f:3f:10:df:c0:
85:1e:d9:3d:b6:2b:ec:3c:96:98:2e:be:86:01:cc:66:9f:5b:
e6:1a:93:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:56 2023 by rpki-client on console-ams.rpki-client.org