Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HWACOM/U9Y7VsJSEVuEo55WzoGwunEYQNU.roa
File: U9Y7VsJSEVuEo55WzoGwunEYQNU.roa (raw, json)
Hash identifier: 2yWCvtuRQa1rzsJJhUXbfKl6WlnYx/2jmE9glbq0jwA=
Subject key identifier: 53:D6:3B:56:C2:52:11:5B:84:A3:9E:56:CE:81:B0:BA:71:18:40:D5
Certificate issuer: /CN=D39A02AE150862D15FB727C511B104D63EFB4686
Certificate serial: 0F1F
Authority key identifier: D3:9A:02:AE:15:08:62:D1:5F:B7:27:C5:11:B1:04:D6:3E:FB:46:86
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/05oCrhUIYtFftyfFEbEE1j77RoY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/U9Y7VsJSEVuEo55WzoGwunEYQNU.roa
Signing time: Wed 29 Sep 2021 02:49:30 +0000
ROA not before: Wed 29 Sep 2021 02:49:30 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 63199
IP address blocks: 103.124.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3871 (0xf1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D39A02AE150862D15FB727C511B104D63EFB4686
Validity
Not Before: Sep 29 02:49:30 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=53D63B56C252115B84A39E56CE81B0BA711840D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3e:ea:f8:0a:87:dd:f2:68:85:01:81:eb:88:
28:84:b6:6e:d4:72:93:2f:5f:76:23:2e:95:29:d3:
e5:b4:11:eb:85:06:4c:25:46:7b:5f:13:dc:82:65:
eb:01:60:6d:22:2c:ae:dd:82:1c:6e:a8:58:ef:a5:
48:5a:80:03:a0:3d:9a:17:e3:37:f9:28:8a:e9:c5:
a0:e1:87:47:09:1c:2f:98:df:f3:2a:96:c3:d4:68:
5e:75:4d:de:c7:54:3c:04:6e:64:35:cc:b6:80:06:
5c:8c:95:26:04:17:bf:2d:b5:a3:2c:1a:c7:49:6d:
04:25:ff:95:d3:eb:64:d6:d7:62:4a:08:8d:73:8c:
c2:7b:fe:20:6b:a1:ed:64:7f:be:7d:02:dc:d2:dc:
8f:0b:41:49:f2:69:15:0f:53:6c:43:c2:4c:08:20:
6f:a8:12:f0:ce:7b:90:54:54:9b:c5:4c:7c:c2:61:
0f:24:57:ec:81:8a:ab:07:ff:b7:5b:b0:70:09:25:
2e:3b:aa:91:f9:9c:df:f5:6b:eb:43:6e:c3:ae:47:
06:db:a9:b2:b4:40:66:cf:7a:53:04:b9:b0:b9:ef:
37:6a:14:e8:da:08:69:fa:ee:aa:19:8e:9c:fb:5c:
8f:fd:dc:5f:11:7c:87:f4:b8:bc:45:c4:47:17:a1:
55:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D6:3B:56:C2:52:11:5B:84:A3:9E:56:CE:81:B0:BA:71:18:40:D5
X509v3 Authority Key Identifier:
keyid:D3:9A:02:AE:15:08:62:D1:5F:B7:27:C5:11:B1:04:D6:3E:FB:46:86
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/05oCrhUIYtFftyfFEbEE1j77RoY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/05oCrhUIYtFftyfFEbEE1j77RoY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/U9Y7VsJSEVuEo55WzoGwunEYQNU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.149.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:fe:b4:f1:6e:fc:7f:af:c4:61:ca:94:2a:02:e5:05:8a:22:
34:46:9f:60:4e:e7:aa:79:84:bd:aa:ee:3c:3c:a2:73:d5:ba:
b7:36:ce:84:d0:54:43:c0:22:89:84:98:b3:de:37:a4:9f:60:
6c:2e:9a:8e:0f:85:fc:0a:a9:8a:9c:94:fc:52:98:8c:ec:b0:
9a:1a:c1:c0:8a:95:e5:76:c6:86:12:f4:d6:72:53:6a:e4:8e:
1b:93:a6:f8:79:6d:ab:8c:70:67:07:32:e7:e3:0c:88:05:ad:
a2:c1:09:6e:55:6d:ba:9b:46:5f:34:ef:5e:e6:33:5b:47:f5:
99:ad:a2:72:a6:28:d4:79:aa:e9:af:2f:a5:bd:c4:76:5e:c1:
9d:28:17:e3:82:f2:3d:e2:be:d1:7a:e8:e3:cc:12:f2:22:47:
b7:35:c5:b7:19:35:df:8d:11:1f:27:2c:8e:ec:fb:b4:0b:0c:
dd:59:7a:5f:95:e2:ab:9d:11:2c:15:df:2e:cd:5d:8c:11:f5:
ae:f3:84:c2:6d:85:b9:17:89:ed:88:08:cc:a5:5d:a5:ec:cd:
ec:14:68:d7:44:cb:48:4a:99:c9:6e:a3:66:9f:ab:cd:1f:b1:
02:3c:1a:30:60:c3:7a:96:ab:af:dc:63:16:28:ef:bd:6a:2d:
48:65:c6:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:51:56 2025 by rpki-client