Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HWACOM/8r5iQSDmx2vEt1Z3vK-7r83uyLw.roa
File: 8r5iQSDmx2vEt1Z3vK-7r83uyLw.roa (raw, json)
Hash identifier: CdSGqN+F6JCm39f1k/+B5cqQjTfSk0VkyrNoUifzNVs=
Subject key identifier: F2:BE:62:41:20:E6:C7:6B:C4:B7:56:77:BC:AF:BB:AF:CD:EE:C8:BC
Certificate issuer: /CN=D39A02AE150862D15FB727C511B104D63EFB4686
Certificate serial: 0F20
Authority key identifier: D3:9A:02:AE:15:08:62:D1:5F:B7:27:C5:11:B1:04:D6:3E:FB:46:86
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/05oCrhUIYtFftyfFEbEE1j77RoY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/8r5iQSDmx2vEt1Z3vK-7r83uyLw.roa
Signing time: Wed 29 Sep 2021 02:49:30 +0000
ROA not before: Wed 29 Sep 2021 02:49:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131616
IP address blocks: 103.124.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3872 (0xf20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D39A02AE150862D15FB727C511B104D63EFB4686
Validity
Not Before: Sep 29 02:49:30 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F2BE624120E6C76BC4B75677BCAFBBAFCDEEC8BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:4e:af:7d:de:40:81:9b:f9:dd:66:22:d2:e7:
d6:7d:8e:2d:97:da:98:eb:d4:55:1f:c5:6e:31:7c:
c0:dc:6b:7d:41:5f:8b:62:67:12:a7:88:27:f9:d2:
b1:91:21:0f:3e:b1:8e:df:b8:12:a1:dc:c8:77:28:
d3:3a:6b:d7:b2:0a:a0:7c:7d:49:f1:9f:45:bb:7a:
d6:b2:2e:11:26:b3:25:8d:c2:e6:4d:ce:5e:b8:d2:
5f:53:db:bb:ae:9d:d7:b3:74:41:7e:4b:23:de:1d:
9a:f6:ed:d2:cd:8c:fd:ac:fa:be:43:4a:26:f0:aa:
7f:7d:77:36:3a:b0:66:41:f0:24:58:97:63:e4:e3:
51:0c:c8:4c:a4:6b:22:ea:9f:24:cb:c3:20:a3:4e:
0b:f8:f7:36:13:67:4b:3d:89:7b:64:ba:f6:a4:fa:
28:ee:df:e6:5e:d1:ea:3a:a0:83:47:20:37:fc:54:
31:33:4d:41:88:4c:2b:5c:fe:32:60:57:c8:76:de:
72:7c:ca:23:7a:28:9d:fe:eb:5c:5a:0f:75:57:1f:
2a:6c:50:cb:ac:4d:fa:63:c9:e6:09:b1:d3:cc:f1:
dd:36:b1:bb:92:8d:9f:a0:ea:72:b7:59:26:b8:72:
b1:09:b5:3d:e7:b3:81:4b:13:41:91:90:8a:28:d3:
c5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:BE:62:41:20:E6:C7:6B:C4:B7:56:77:BC:AF:BB:AF:CD:EE:C8:BC
X509v3 Authority Key Identifier:
keyid:D3:9A:02:AE:15:08:62:D1:5F:B7:27:C5:11:B1:04:D6:3E:FB:46:86
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/05oCrhUIYtFftyfFEbEE1j77RoY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/05oCrhUIYtFftyfFEbEE1j77RoY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/8r5iQSDmx2vEt1Z3vK-7r83uyLw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.148.0/24
Signature Algorithm: sha256WithRSAEncryption
52:55:65:ab:95:64:e9:1d:90:b0:30:06:e3:36:a1:17:d8:bf:
9f:6e:a8:12:5e:37:5e:91:2e:3a:64:54:d6:39:84:bc:61:66:
04:24:cf:ff:06:ba:75:b7:d9:1b:23:4f:ac:3e:b3:3b:f2:4d:
e8:f4:38:36:b9:ee:0e:09:b0:3b:6c:89:36:40:f3:14:d5:a9:
da:a6:c4:3e:27:22:dd:de:b7:cf:7f:19:8f:3a:13:83:93:c0:
5b:41:a5:ba:c4:68:31:d7:7d:a5:fb:d6:3c:14:96:5f:ee:1a:
d4:96:8d:26:ea:79:d0:6f:f1:70:fa:3b:4c:7a:40:28:d9:ba:
a4:c2:5a:17:99:bd:26:af:07:fd:1d:5d:2a:1e:13:c2:0b:a7:
22:c9:48:b7:e4:f5:0a:57:fe:70:83:39:3a:a3:d1:18:d8:ed:
4f:ef:a5:bb:d1:94:5d:9c:eb:ee:9f:5a:6f:be:80:e6:48:5c:
64:05:5b:c1:c9:79:45:fd:1c:e2:78:c5:73:ea:28:f6:24:58:
6c:09:bc:41:35:d5:7a:d7:a1:21:bd:31:8b:1e:20:ef:47:77:
43:1d:84:0c:26:40:33:ee:90:87:f9:b6:2d:f2:16:cf:38:d5:
9a:f9:31:1d:f9:a3:a0:07:81:ac:77:df:15:75:60:a6:e4:d0:
55:9e:73:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org