Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HWACOM/0NLpErCNW8eg855k83QU27qteDs.roa
File: 0NLpErCNW8eg855k83QU27qteDs.roa (raw, json)
Hash identifier: q+jkPFgUdeED3HstxhdgzoFtIPj4rjSfu6fEKzSctyQ=
Subject key identifier: D0:D2:E9:12:B0:8D:5B:C7:A0:F3:9E:64:F3:74:14:DB:BA:AD:78:3B
Certificate issuer: /CN=D39A02AE150862D15FB727C511B104D63EFB4686
Certificate serial: 0F1E
Authority key identifier: D3:9A:02:AE:15:08:62:D1:5F:B7:27:C5:11:B1:04:D6:3E:FB:46:86
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/05oCrhUIYtFftyfFEbEE1j77RoY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/0NLpErCNW8eg855k83QU27qteDs.roa
Signing time: Wed 29 Sep 2021 02:49:29 +0000
ROA not before: Wed 29 Sep 2021 02:49:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 63199
IP address blocks: 103.124.150.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3870 (0xf1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D39A02AE150862D15FB727C511B104D63EFB4686
Validity
Not Before: Sep 29 02:49:29 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D0D2E912B08D5BC7A0F39E64F37414DBBAAD783B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:91:05:9e:d0:c6:09:84:06:ed:f6:7e:6d:41:
27:97:72:78:1b:bc:a5:0e:31:dd:76:ea:ac:3c:ab:
ed:73:b5:61:4d:4b:8f:79:68:54:fe:ec:59:af:fb:
5a:28:7d:40:cc:29:4e:cc:9a:47:5f:ac:49:99:72:
59:6e:03:5c:18:5d:6c:4d:94:fb:6c:62:3c:34:72:
32:7d:c0:6b:9c:fe:da:b6:ce:30:29:51:bc:ac:bc:
56:d6:6f:d3:e0:d3:74:cc:ef:d2:85:eb:23:54:bd:
84:f2:99:59:6b:34:24:d4:8a:fe:b8:48:22:59:15:
d3:f4:5a:92:fc:05:9e:60:f8:58:40:cb:4d:ca:f9:
0d:c0:db:50:fc:b3:a8:ee:4c:b8:78:d0:b1:3a:8b:
86:58:3a:5d:d5:23:db:20:32:1b:b8:8a:54:a1:62:
b6:f8:02:9e:1f:1c:70:f9:9a:56:7e:f9:d9:51:e0:
eb:21:84:45:3b:83:99:c6:7a:04:e5:3c:b0:f8:9f:
28:bb:81:aa:f1:98:52:d2:08:a2:d7:4b:c5:7d:8a:
45:6c:df:f0:b3:a4:fc:01:b1:2b:9b:5a:36:fd:8c:
54:7c:c1:83:03:00:a2:e5:13:7e:1b:ff:79:16:7c:
95:dd:80:75:03:05:3d:d1:37:e7:9f:df:dc:67:8b:
39:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:D2:E9:12:B0:8D:5B:C7:A0:F3:9E:64:F3:74:14:DB:BA:AD:78:3B
X509v3 Authority Key Identifier:
keyid:D3:9A:02:AE:15:08:62:D1:5F:B7:27:C5:11:B1:04:D6:3E:FB:46:86
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/05oCrhUIYtFftyfFEbEE1j77RoY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/05oCrhUIYtFftyfFEbEE1j77RoY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/0NLpErCNW8eg855k83QU27qteDs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.150.0/23
Signature Algorithm: sha256WithRSAEncryption
c9:75:51:f2:f4:33:a2:e2:41:b6:a3:27:83:1b:44:a3:a5:97:
b8:6f:b6:33:35:bd:42:31:1d:f9:95:53:0f:90:a4:80:4c:0f:
ec:c9:3b:26:97:97:df:b6:9f:05:40:0f:7b:01:6c:51:8c:34:
98:2f:39:c0:c5:03:63:56:d3:d7:a9:ae:a1:ba:ad:55:67:1b:
cf:ea:8e:dd:c6:69:76:46:ef:c1:08:e1:a8:e1:a3:fa:91:96:
cc:43:6c:ea:3a:d3:4c:a6:57:52:16:c9:2e:c0:fd:da:a8:49:
1a:40:f3:46:1d:bd:8f:34:d9:ea:41:2d:38:85:ab:e3:ad:eb:
ad:14:3b:50:d0:27:1d:2f:71:09:bd:eb:97:d8:9f:b6:3f:15:
cb:4d:f1:ed:9d:ab:a1:a9:19:55:c2:c9:0a:2b:19:10:98:05:
9e:24:1d:5d:f6:b6:9a:18:bd:83:b5:0b:f4:6b:e7:b2:43:c1:
06:b5:0c:14:8d:ac:0a:d6:93:90:71:0f:74:eb:1c:57:59:05:
0a:f9:b5:cd:1c:eb:eb:7a:0a:95:10:b6:31:88:b5:be:ab:b1:
92:9d:cc:29:24:a5:ed:87:ac:d4:81:14:6a:8d:7b:84:46:46:
73:78:13:c2:fc:14:88:1a:6f:8e:14:da:b5:51:4b:3d:bd:f6:
0c:e7:3c:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org