Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/rHJ80XI9i4WNZ1XTFnLtFusHnUQ.roa
File: rHJ80XI9i4WNZ1XTFnLtFusHnUQ.roa (raw, json)
Hash identifier: QKIT9ftiAZzX7JHErQYxblIZ7JBaG7L11D5QTxxlLcw=
Subject key identifier: AC:72:7C:D1:72:3D:8B:85:8D:67:55:D3:16:72:ED:16:EB:07:9D:44
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 02D7
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/rHJ80XI9i4WNZ1XTFnLtFusHnUQ.roa
Signing time: Sun 07 Feb 2021 13:13:22 +0000
ROA not before: Sun 07 Feb 2021 13:13:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9678
IP address blocks: 103.98.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 727 (0x2d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Feb 7 13:13:22 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AC727CD1723D8B858D6755D31672ED16EB079D44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:55:d0:de:7a:5b:e6:82:8d:84:a9:9e:85:46:
df:02:ee:72:fc:c3:41:5e:56:c8:e0:13:f2:0b:41:
94:7e:2a:e1:b7:cc:16:88:ce:29:ce:2f:80:67:4b:
54:49:a0:98:29:4e:69:67:3c:1d:85:e5:37:82:52:
52:36:ab:a0:b9:5c:bc:6f:0b:28:51:82:80:d9:00:
64:5b:54:a2:74:31:61:03:fa:8d:5c:e9:28:4d:bf:
24:18:35:2e:24:eb:d1:67:a1:c2:24:8b:96:bd:9c:
a2:a2:42:6e:01:f0:18:a1:6e:6f:08:07:ea:28:a4:
04:26:98:cd:eb:03:27:8a:d9:c4:05:45:de:b6:de:
0a:55:72:8c:a1:6e:53:44:56:99:d0:57:a7:c9:27:
f4:6f:ec:31:28:da:98:74:2d:fd:d3:aa:23:15:9b:
57:94:d2:34:21:c4:18:9c:44:41:89:b5:92:f3:9e:
d7:e5:14:e4:c7:ce:59:93:3d:83:12:63:40:de:3f:
03:cd:99:9c:18:42:c2:c4:98:90:3a:4c:fe:ae:b9:
ba:6d:70:98:7e:b3:80:fb:76:1f:03:11:b3:0b:a6:
9e:42:de:82:ac:e2:5e:0b:d3:74:4b:1e:ef:1a:82:
3d:c2:72:3f:9a:76:f8:7e:d9:36:21:a4:17:ce:93:
bd:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:72:7C:D1:72:3D:8B:85:8D:67:55:D3:16:72:ED:16:EB:07:9D:44
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/rHJ80XI9i4WNZ1XTFnLtFusHnUQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.98.74.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:42:6f:ce:6c:9d:c9:a7:33:3d:a9:c2:1d:54:6b:1f:9d:8f:
b6:0e:0a:fe:cb:a4:29:34:40:b5:0f:4b:e1:9f:af:53:7d:81:
fe:c4:f3:70:8c:4e:b1:c4:04:3a:32:be:1c:7f:72:bc:a8:75:
61:4f:26:c3:4e:50:ae:ec:1f:fe:7d:00:56:1b:fd:4c:f2:76:
56:4e:a4:fd:ba:66:bc:26:04:a4:ee:f2:3c:e5:95:a6:b4:51:
bb:a8:62:31:47:c2:10:f1:69:27:24:53:6c:d0:71:03:d9:ea:
9e:02:ef:ef:08:3e:6d:3b:e2:90:d0:b1:e3:5c:67:f6:ea:81:
62:e7:db:b4:ff:00:78:c7:6b:91:15:c5:ae:64:a2:e4:c0:21:
e1:8b:25:2d:8a:e4:d4:64:98:3e:9c:4a:ef:e3:56:48:39:be:
65:ab:fe:fa:c7:ba:e4:63:25:86:db:94:11:45:61:4f:f5:31:
fe:b2:51:fe:92:f2:70:08:26:6a:57:ee:7f:35:3a:d4:62:3f:
e5:bc:c3:bc:09:46:ce:e9:c8:8f:01:41:8c:1f:c5:c1:94:e6:
f2:5b:f6:ab:43:d4:1d:57:28:08:b0:c8:a2:53:b7:ed:68:7e:
cb:01:2a:51:2e:9d:4f:a6:c2:7f:df:25:1d:f7:12:d4:38:66:
95:b1:d5:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org