Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HWACOM/RYkB4t1A_1Q29QUBkXbGwAOrsv4.roa
File: RYkB4t1A_1Q29QUBkXbGwAOrsv4.roa (raw, json)
Hash identifier: EZqgz4tvQN4MNCBVqlzEP9k1snEzWzlSCrobJRxXkEE=
Subject key identifier: 45:89:01:E2:DD:40:FF:54:36:F5:05:01:91:76:C6:C0:03:AB:B2:FE
Certificate issuer: /CN=D39A02AE150862D15FB727C511B104D63EFB4686
Certificate serial: 0E7C
Authority key identifier: D3:9A:02:AE:15:08:62:D1:5F:B7:27:C5:11:B1:04:D6:3E:FB:46:86
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/05oCrhUIYtFftyfFEbEE1j77RoY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/RYkB4t1A_1Q29QUBkXbGwAOrsv4.roa
Signing time: Sun 07 Feb 2021 13:02:51 +0000
ROA not before: Sun 07 Feb 2021 13:02:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131616
IP address blocks: 103.124.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3708 (0xe7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D39A02AE150862D15FB727C511B104D63EFB4686
Validity
Not Before: Feb 7 13:02:51 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=458901E2DD40FF5436F505019176C6C003ABB2FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d4:57:b4:6e:ce:73:06:41:6a:22:12:58:a1:
c3:1d:63:e1:9a:db:8b:f6:0c:09:16:c3:aa:36:8e:
bb:30:f2:85:a5:40:d0:28:40:ff:74:77:be:3c:65:
9a:92:88:d9:95:f0:71:c9:37:e5:be:0c:da:54:ee:
0c:84:de:47:66:ff:3c:eb:02:1d:78:56:79:4e:6f:
c9:bf:51:cf:da:b3:d0:9e:8d:1c:d2:d7:49:91:85:
e7:6a:57:20:8c:11:da:69:87:e5:77:4f:40:5a:7d:
da:2d:8b:1e:a8:f4:74:49:84:58:b5:07:8d:04:b4:
3d:02:ae:9c:82:4f:3c:33:d4:9c:df:7b:bf:33:aa:
6d:44:c1:5c:9a:d8:75:7c:b5:de:cc:08:41:2f:93:
e7:5d:e2:4b:6a:03:9e:19:80:79:e9:22:1a:07:69:
f7:39:e7:51:c3:76:3b:c9:61:3f:32:63:06:b0:c2:
fd:ce:70:95:32:57:9f:0b:56:57:ad:62:ed:ef:a9:
e1:e9:9b:81:8e:7e:63:d4:1b:37:0d:9c:15:f6:1c:
8f:04:c5:33:a8:1f:4c:0b:d6:a0:92:6c:71:9c:b2:
6b:2a:81:37:f9:a1:db:f2:5d:ba:5b:6e:a7:09:a2:
85:b0:0e:b8:32:e1:ca:41:c1:a6:62:ca:cf:84:51:
f1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:89:01:E2:DD:40:FF:54:36:F5:05:01:91:76:C6:C0:03:AB:B2:FE
X509v3 Authority Key Identifier:
keyid:D3:9A:02:AE:15:08:62:D1:5F:B7:27:C5:11:B1:04:D6:3E:FB:46:86
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/05oCrhUIYtFftyfFEbEE1j77RoY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/05oCrhUIYtFftyfFEbEE1j77RoY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/RYkB4t1A_1Q29QUBkXbGwAOrsv4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.148.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:43:64:12:0b:7d:58:3b:14:b9:09:6f:26:0c:e6:e2:bc:3b:
52:36:d0:a4:aa:95:84:86:8b:2b:8c:58:76:cd:82:99:09:84:
db:53:29:6b:2b:52:3c:ec:b5:a3:e8:4f:c0:2e:68:b5:3d:0c:
f4:2e:76:58:c6:5e:e5:7a:e6:8a:ca:34:b9:ad:7c:43:1d:2b:
86:4c:75:0c:8a:49:f9:7e:1c:ca:68:69:4a:c4:37:d2:0d:51:
d0:1c:6f:f8:40:da:ef:fb:57:e7:6b:78:40:cc:29:40:9e:49:
3a:cd:e3:5b:14:f5:39:77:24:aa:67:28:5f:9b:0c:70:07:8a:
bc:5a:66:c3:83:86:b2:5e:fd:e1:4f:40:56:9b:d6:41:8a:2f:
c4:3e:a4:77:ff:43:d2:e7:6d:36:e6:ec:82:62:b2:78:db:ea:
ec:95:0a:ff:67:ad:94:9b:06:de:2f:bf:64:f6:31:05:15:69:
ae:29:74:6a:f3:21:aa:03:97:b7:bd:f8:47:9f:2d:52:9a:f3:
0d:90:90:c7:ef:d3:80:67:f9:6c:b5:cf:77:9d:f5:09:92:69:
e7:a3:d0:67:0a:9c:8b:d7:e1:b0:a3:70:8c:34:6e:f0:d3:37:
60:97:f1:25:25:35:e2:9a:62:1e:18:2e:1a:e6:10:bd:48:54:
6e:37:b8:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org