Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/hGg0zOoZdSLAfhaB_TcoZmqZMqI.roa
File: hGg0zOoZdSLAfhaB_TcoZmqZMqI.roa (raw, json)
Hash identifier: iwLFgLKbG6zyaOoK5ZFnvd32djQK7m06oWNXVRQHczc=
Subject key identifier: 84:68:34:CC:EA:19:75:22:C0:7E:16:81:FD:37:28:66:6A:99:32:A2
Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
Certificate serial: F9
Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/hGg0zOoZdSLAfhaB_TcoZmqZMqI.roa
Signing time: Tue 21 Feb 2023 02:32:28 +0000
ROA not before: Tue 21 Feb 2023 02:32:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38047
IP address blocks: 103.182.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 249 (0xf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
Validity
Not Before: Feb 21 02:32:28 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=846834CCEA197522C07E1681FD3728666A9932A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f4:31:56:e2:90:35:e1:ac:42:9b:98:f2:44:
e8:6e:5b:92:35:30:f2:ed:3b:fa:50:96:52:2d:9b:
8a:97:51:ea:9e:59:8e:93:b5:8b:68:9f:8f:d1:4f:
c3:9f:0a:5d:96:07:7e:05:65:c6:74:4e:80:71:80:
81:16:ae:ca:4a:60:c0:8f:6a:a4:04:e4:fb:07:b2:
ad:b9:9b:86:92:0f:c0:3e:71:95:9d:6c:48:1c:29:
8a:63:3c:f5:b2:3d:a7:14:41:8b:2a:84:06:3d:27:
d1:f8:45:fd:0d:01:8d:a2:f6:ec:c4:10:06:6b:1e:
86:b8:fb:73:26:6e:21:cc:be:4a:44:b1:1c:11:77:
29:9d:3e:48:09:05:37:24:07:62:99:93:9f:51:3e:
63:57:21:04:fe:34:2f:a0:7c:10:21:0f:55:6e:e0:
22:57:d8:46:96:e0:5f:35:40:10:a4:8f:c3:9c:56:
47:3b:89:4d:a2:1d:8a:fe:3c:92:98:5e:bc:a7:a5:
de:4e:d8:44:49:19:73:d4:50:e4:29:16:30:5e:ba:
e0:03:a9:b3:9f:48:ef:af:d4:b3:2f:65:33:d5:68:
71:2c:13:e4:6e:4f:6b:70:07:c4:7f:76:78:c5:09:
9b:68:ef:33:81:56:38:86:60:b6:06:b7:26:57:0e:
16:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:68:34:CC:EA:19:75:22:C0:7E:16:81:FD:37:28:66:6A:99:32:A2
X509v3 Authority Key Identifier:
keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/hGg0zOoZdSLAfhaB_TcoZmqZMqI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.182.226.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:03:0e:c0:34:6e:52:31:ff:1d:3d:fa:08:19:88:2d:07:fd:
67:a4:e0:c0:4f:ad:01:5d:98:52:cd:89:d1:48:69:7e:dc:18:
6f:38:b7:e7:e8:01:ce:9a:97:8e:35:e6:7f:02:7c:af:89:44:
76:64:ea:b0:13:98:a5:9f:dd:b3:81:b7:c9:8e:ae:bb:34:14:
5f:31:ab:83:5b:f2:b8:a4:58:39:c0:38:e4:26:7f:d5:7b:4e:
78:cb:3a:6e:56:33:aa:b1:d8:ec:62:80:0b:b8:50:f8:e9:cc:
3e:9a:c9:10:fb:e3:c7:03:9b:ed:3e:f6:d3:87:e3:fb:0d:d5:
8c:fa:f5:a0:c7:9b:f6:53:ba:c1:c8:16:c4:12:d1:56:83:aa:
00:d5:a7:9a:22:73:55:c6:0f:06:77:93:69:4e:df:81:bb:65:
de:42:61:d7:66:c3:d9:1c:30:dc:c8:ba:94:b3:f3:97:9a:9c:
bb:33:61:d3:19:2b:3b:d9:b2:a1:f3:e0:cf:50:cf:b1:ee:a9:
e1:d7:90:0c:fe:84:bc:d2:23:27:fe:85:a8:54:de:d3:7f:9b:
00:c1:61:c9:df:f0:f0:7d:e1:94:22:b0:77:b3:a8:b9:fa:b0:
8f:c9:1a:79:46:ec:9a:d8:30:c2:ff:e0:f0:bf:38:b2:de:86:
90:09:02:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org