Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HWACOM/KmPd0NvPAHWPLQ26PAasC7bS0bM.roa
File: KmPd0NvPAHWPLQ26PAasC7bS0bM.roa (raw, json)
Hash identifier: B9IyGxi0fcn/Vk4oCmW+ZVEB1PJG9iye590SyeFgnYw=
Subject key identifier: 2A:63:DD:D0:DB:CF:00:75:8F:2D:0D:BA:3C:06:AC:0B:B6:D2:D1:B3
Certificate issuer: /CN=D39A02AE150862D15FB727C511B104D63EFB4686
Certificate serial: 0E46
Authority key identifier: D3:9A:02:AE:15:08:62:D1:5F:B7:27:C5:11:B1:04:D6:3E:FB:46:86
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/05oCrhUIYtFftyfFEbEE1j77RoY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/KmPd0NvPAHWPLQ26PAasC7bS0bM.roa
Signing time: Thu 26 Nov 2020 05:21:36 +0000
ROA not before: Thu 26 Nov 2020 05:21:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 63199
IP address blocks: 103.124.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3654 (0xe46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D39A02AE150862D15FB727C511B104D63EFB4686
Validity
Not Before: Nov 26 05:21:36 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2A63DDD0DBCF00758F2D0DBA3C06AC0BB6D2D1B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:02:95:b5:4e:6f:1a:3b:42:1c:c9:92:73:88:
d6:66:c6:a5:aa:41:22:5b:52:b0:c0:7e:e9:ad:44:
85:93:06:7b:0e:08:7a:6a:e5:a6:40:f1:75:22:84:
05:87:30:10:76:c7:a4:71:67:34:4e:e8:d3:86:63:
f3:d6:b4:67:0d:12:87:f4:64:8e:3b:b9:c4:bb:4e:
b5:b9:1d:df:35:57:89:8e:32:69:a9:27:a3:d4:f6:
d0:a2:4b:26:38:04:7d:97:49:f3:d4:35:38:da:1f:
64:fc:07:df:d0:1f:5f:d8:55:4d:d7:6e:2b:2d:5d:
65:99:67:78:74:cc:0a:cf:b5:21:0a:74:22:80:0d:
98:da:f4:3c:13:bd:7e:70:53:b5:ad:cb:9f:b3:e4:
42:0f:91:b1:30:c4:12:1f:d1:e5:e1:cd:5c:d1:4f:
ea:e7:e7:51:9b:6a:5a:dc:97:01:e3:02:b9:72:49:
ae:1e:02:85:d5:72:ec:4a:3e:dc:c2:c3:ed:32:0e:
0d:a4:7a:76:9d:a0:bb:5c:91:6e:1d:23:91:8d:be:
c6:97:66:24:64:01:50:d8:b1:54:70:90:df:32:11:
0e:0d:b5:97:87:f2:c6:7a:8f:9b:25:69:e3:76:ad:
60:7c:64:b0:ee:55:af:fc:b1:ff:9c:b4:08:05:32:
38:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:63:DD:D0:DB:CF:00:75:8F:2D:0D:BA:3C:06:AC:0B:B6:D2:D1:B3
X509v3 Authority Key Identifier:
keyid:D3:9A:02:AE:15:08:62:D1:5F:B7:27:C5:11:B1:04:D6:3E:FB:46:86
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/05oCrhUIYtFftyfFEbEE1j77RoY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/05oCrhUIYtFftyfFEbEE1j77RoY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/KmPd0NvPAHWPLQ26PAasC7bS0bM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.149.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:3e:09:bd:94:9f:cd:61:9f:14:c7:8d:a0:db:d6:25:ba:86:
35:f1:b1:30:b3:11:73:b6:a5:67:ab:55:cd:45:c1:a1:4f:fc:
50:30:05:09:c8:f9:83:80:18:71:70:7d:dd:a2:21:39:44:37:
f9:b2:55:d1:70:dc:c8:b0:ae:6e:f2:19:f9:3e:94:55:f7:96:
27:ea:8a:33:51:66:1c:ac:0f:95:87:64:80:46:cf:7b:cb:d9:
1e:1d:71:94:3f:02:a9:8a:45:fa:cc:70:c6:b3:70:cd:4b:7d:
00:52:61:e0:5c:d8:a5:21:ea:5b:6d:ca:ef:17:14:11:6b:49:
d2:fb:28:df:51:98:36:e6:a7:60:82:d5:ba:85:0b:c4:65:67:
0a:15:0b:5a:45:d3:57:79:73:d7:8e:8f:8f:e0:63:db:77:c6:
af:b2:33:47:93:02:1b:43:73:dd:f0:96:76:fe:5c:6b:c2:98:
51:b8:a6:31:97:7d:40:1d:6c:73:e8:ba:89:89:4f:56:27:93:
9e:2e:3e:44:4f:66:a4:35:70:2e:d7:25:cc:ff:8e:8f:fb:0d:
f9:ad:ab:c5:38:8b:1d:ee:19:5c:b6:c5:60:41:94:f6:9e:58:
e9:61:41:51:92:45:40:ab:3f:db:44:cc:25:ac:60:7b:4b:9d:
f6:e5:c0:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org