Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NORDATW/h_UdD5duOy48Tql13u-ezCekR0A.roa
File: h_UdD5duOy48Tql13u-ezCekR0A.roa (raw, json)
Hash identifier: ltm5RmV6maXe4Xk8Wd2N50NV/NLIAM/uK4pdTYp7jRY=
Subject key identifier: 87:F5:1D:0F:97:6E:3B:2E:3C:4E:A9:75:DE:EF:9E:CC:27:A4:47:40
Certificate issuer: /CN=159D5F897276F0DEC857E7E2DEDD649876E8A482
Certificate serial: 0910
Authority key identifier: 15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/h_UdD5duOy48Tql13u-ezCekR0A.roa
Signing time: Tue 29 Sep 2020 10:05:13 +0000
ROA not before: Tue 29 Sep 2020 10:05:13 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131618
IP address blocks: 103.138.194.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2320 (0x910)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=159D5F897276F0DEC857E7E2DEDD649876E8A482
Validity
Not Before: Sep 29 10:05:13 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=87F51D0F976E3B2E3C4EA975DEEF9ECC27A44740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:1c:04:01:fb:05:76:35:f2:c1:2a:a7:1a:e5:
76:20:42:eb:74:1c:b9:56:1c:9e:89:a6:72:34:12:
df:84:aa:a2:61:c9:ad:2b:29:83:d5:04:99:98:47:
ae:da:27:8a:6a:70:4d:7c:85:3a:88:af:26:86:ec:
59:3d:ae:87:47:5c:c0:f3:41:ca:65:10:7d:ba:d8:
f8:eb:a1:bc:b2:ad:c5:4c:57:1c:70:07:97:bf:8a:
5f:6b:a6:a8:2e:07:ec:44:87:84:ab:4a:e4:ba:54:
f5:56:4e:f4:19:7d:41:68:b8:4f:6d:00:ba:51:25:
23:c0:34:c0:89:57:0d:71:68:76:87:29:65:05:e1:
04:c3:74:93:ba:a3:a1:83:e4:8f:99:3c:d4:70:92:
8d:ed:4c:ee:82:5a:b0:ee:e0:db:c7:75:10:02:81:
1f:6e:86:34:53:b9:12:37:b3:73:8f:e4:c7:32:85:
5f:2f:17:e6:7c:bd:d3:6e:c7:eb:87:8e:11:41:3d:
d1:09:8b:1d:cd:1d:c4:cf:32:ae:03:7f:3f:56:d9:
af:84:8b:b9:c2:86:8f:55:f4:16:54:f2:87:03:32:
66:55:38:ce:0e:ec:07:47:c9:77:2c:3d:8d:ca:94:
76:d7:67:dd:30:06:e9:ea:4d:d8:29:33:bf:50:7d:
7f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:F5:1D:0F:97:6E:3B:2E:3C:4E:A9:75:DE:EF:9E:CC:27:A4:47:40
X509v3 Authority Key Identifier:
keyid:15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/h_UdD5duOy48Tql13u-ezCekR0A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.194.0/23
Signature Algorithm: sha256WithRSAEncryption
80:df:2d:b4:b0:e2:f2:4d:ae:b8:3c:23:e8:7e:e9:5b:96:3c:
f9:30:c0:2e:ba:d9:d6:b9:7f:e5:d2:33:9f:00:f6:bd:33:8d:
77:1d:33:b2:97:90:87:87:bc:ba:a5:16:de:5b:8f:d1:cd:fe:
b4:0f:e9:fa:fd:d0:73:f9:3b:99:5f:24:e1:5d:a9:2f:0f:9c:
5d:cc:fc:a6:95:cc:ef:fd:5f:9e:82:8f:57:e2:e1:47:63:d2:
68:e0:86:97:a1:f4:36:82:12:4f:37:b9:30:bc:8c:56:b0:56:
fe:d2:13:b2:3d:b1:76:c7:ed:ff:05:42:b4:fd:00:bd:e3:e4:
23:56:85:29:51:bf:43:b3:cd:79:70:9b:fc:16:51:76:57:c4:
7b:a2:0b:f3:0d:64:81:0d:02:ab:d9:92:22:70:2b:54:a5:70:
f9:78:a0:cd:aa:6d:6d:51:12:d3:34:58:03:bf:90:e7:38:0e:
5d:b6:e0:1c:7b:a6:e3:91:ce:35:56:1b:c9:bc:35:d9:62:61:
7b:73:0e:c6:3e:87:13:80:25:0a:3c:f1:33:01:9d:10:09:8b:
5c:74:ac:ca:a7:82:3e:63:22:f0:5b:87:2a:d5:ba:97:8e:6b:
37:2b:8e:1d:f2:1d:bd:e5:88:28:fa:00:35:14:2d:33:33:d2:
fb:4a:c4:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-fra.rpki-client.org