Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/hthCJLfXGmcDRQ-DVgj9kcHgBWk.roa
File: hthCJLfXGmcDRQ-DVgj9kcHgBWk.roa (raw, json)
Hash identifier: Dp4egliJ0nZ9Qh3fVTVwGpHdkUclj0msSw4881OEHL0=
Subject key identifier: 86:D8:42:24:B7:D7:1A:67:03:45:0F:83:56:08:FD:91:C1:E0:05:69
Certificate issuer: /CN=830BC4410162A58D0DB17E0A351551FBB3D751A1
Certificate serial: 0969
Authority key identifier: 83:0B:C4:41:01:62:A5:8D:0D:B1:7E:0A:35:15:51:FB:B3:D7:51:A1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gwvEQQFipY0NsX4KNRVR-7PXUaE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/hthCJLfXGmcDRQ-DVgj9kcHgBWk.roa
Signing time: Wed 29 Sep 2021 02:40:24 +0000
ROA not before: Wed 29 Sep 2021 02:40:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131619
IP address blocks: 103.116.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2409 (0x969)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=830BC4410162A58D0DB17E0A351551FBB3D751A1
Validity
Not Before: Sep 29 02:40:24 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=86D84224B7D71A6703450F835608FD91C1E00569
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:35:5f:8b:d1:ba:e7:a7:0b:30:d8:af:01:72:
f3:28:11:25:37:0e:12:fa:cf:f6:8b:22:4b:41:74:
c4:49:25:23:43:5f:49:5e:9e:2f:83:a7:9e:fd:04:
c7:67:df:2b:b8:dd:be:c0:de:53:2a:6c:60:6a:d4:
fa:d4:31:cd:7d:84:b4:01:1d:64:28:98:8c:ed:4b:
47:8e:ac:4d:f0:eb:a9:1a:5d:e3:cd:0b:da:16:5b:
66:34:fa:97:7f:a1:80:2f:7b:3b:0d:34:33:06:90:
1d:70:4b:be:d7:71:53:4a:16:a1:dc:e4:63:4e:67:
35:cc:06:19:e9:4d:e8:bd:70:1a:c1:b2:44:4b:5a:
17:ff:d0:46:66:eb:2f:5d:60:a0:31:b8:24:1f:fa:
d3:74:22:17:27:56:82:27:0e:1c:da:9b:ff:cd:c2:
09:dc:9e:80:c2:12:41:53:fc:56:41:6a:b1:80:e0:
a1:b6:e1:96:49:0c:9c:75:07:bd:40:1c:3c:fd:0f:
ca:0d:89:ee:5c:07:f6:e9:1a:fd:26:d9:d6:03:be:
6f:cc:b7:74:25:84:55:c3:30:46:28:40:9e:8d:e6:
1f:0f:b5:c7:2a:b8:b3:9f:d3:2d:08:ce:6a:a7:50:
ce:b1:55:3e:0f:d3:ef:7b:f5:d3:19:9b:25:27:d5:
c8:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:D8:42:24:B7:D7:1A:67:03:45:0F:83:56:08:FD:91:C1:E0:05:69
X509v3 Authority Key Identifier:
keyid:83:0B:C4:41:01:62:A5:8D:0D:B1:7E:0A:35:15:51:FB:B3:D7:51:A1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/gwvEQQFipY0NsX4KNRVR-7PXUaE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gwvEQQFipY0NsX4KNRVR-7PXUaE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/hthCJLfXGmcDRQ-DVgj9kcHgBWk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.116.98.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:83:93:ad:14:2f:3a:2e:63:81:a9:5b:cf:c8:76:46:5f:4b:
f9:98:66:22:af:c3:23:ce:4f:8d:99:b4:dd:84:61:1d:de:5a:
8b:9e:76:2e:69:65:84:16:29:a1:34:35:30:71:6d:fe:1f:1c:
c6:e2:2b:9f:5d:88:b5:98:46:cc:6c:3a:e5:bd:d0:ca:e6:f3:
89:1d:e1:fa:ef:43:38:c2:b5:8d:ef:29:72:f8:2a:53:cd:9c:
49:36:0c:b0:0e:5d:af:56:c2:fb:e3:95:a0:1c:ec:4e:d6:7f:
1e:ee:aa:ec:17:c9:60:2c:d2:cc:04:60:22:fa:79:64:de:ae:
f2:a6:e6:fc:e6:4a:d7:10:58:64:69:5e:82:0a:ae:70:7d:02:
11:a6:06:fc:8f:e9:54:a2:c5:6c:09:60:cf:1d:10:fd:dc:b2:
8b:13:16:3d:a1:e4:ce:5c:29:e6:a2:f0:7c:ff:dc:65:ff:b3:
97:b8:4d:67:e7:f4:8f:d6:fe:64:ad:21:19:f4:1e:78:82:74:
48:9f:37:2f:c3:46:51:7f:7a:c9:20:de:e9:2c:d7:14:fd:14:
79:12:96:f6:cb:f3:f6:a1:50:c5:b6:d5:2d:56:28:06:e9:42:
9d:5e:fa:9e:90:f6:4a:84:be:38:3e:f6:b0:9d:91:60:0d:51:
1f:6d:01:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:07 2023 by rpki-client on console-fra.rpki-client.org