Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/DvHvpwoRQmLTAdJUhtrJoiB8U2k.roa
File: DvHvpwoRQmLTAdJUhtrJoiB8U2k.roa (raw, json)
Hash identifier: KfwC06FkyIsKt9WGKFTyyH0WNURwShaF9jZZ5HxjfWI=
Subject key identifier: 0E:F1:EF:A7:0A:11:42:62:D3:01:D2:54:86:DA:C9:A2:20:7C:53:69
Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Certificate serial: 0922
Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/DvHvpwoRQmLTAdJUhtrJoiB8U2k.roa
Signing time: Wed 29 Sep 2021 02:50:24 +0000
ROA not before: Wed 29 Sep 2021 02:50:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 48024
IP address blocks: 103.122.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2338 (0x922)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Validity
Not Before: Sep 29 02:50:24 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0EF1EFA70A114262D301D25486DAC9A2207C5369
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fe:8a:f3:40:da:94:c1:b5:3a:fc:99:d0:58:
3d:bf:46:32:d2:5a:43:8b:70:0a:91:47:45:05:bf:
70:21:fe:b2:62:d0:09:0e:f2:12:18:0c:9d:b2:ce:
f9:aa:0b:f2:02:dd:15:21:1b:a6:02:97:f3:99:6e:
b1:ce:3c:9e:df:73:cf:14:76:79:62:c8:4d:03:ee:
64:25:e7:20:ad:6b:03:8b:21:a0:d7:e7:a1:73:82:
37:69:3e:54:c6:10:ea:26:63:5a:f3:4a:fd:3e:8d:
f6:79:4d:ba:33:d3:66:9d:16:b5:e0:44:a7:b0:35:
66:dd:fa:99:96:f6:09:65:e4:6a:26:35:22:67:35:
f2:70:e8:a1:12:5d:94:e7:8d:cf:11:60:f3:3f:8b:
db:4d:ac:f9:f0:1d:58:10:bb:42:95:fc:40:a9:06:
dc:00:31:f0:73:e2:b8:95:5e:5f:7a:f1:ec:90:0c:
22:ba:20:4c:01:b1:91:65:7f:c9:cd:ec:ee:45:8d:
c9:e1:b6:fc:33:ca:8c:88:55:66:9f:8a:13:6f:b0:
b4:19:85:95:49:99:20:45:e4:08:35:20:ba:3e:ef:
d4:18:df:4a:f4:8d:5d:b5:b3:88:96:da:cc:4e:0e:
fb:a8:a3:02:5e:4f:85:fc:62:da:b3:18:bd:ad:14:
1a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:F1:EF:A7:0A:11:42:62:D3:01:D2:54:86:DA:C9:A2:20:7C:53:69
X509v3 Authority Key Identifier:
keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/DvHvpwoRQmLTAdJUhtrJoiB8U2k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.22.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:09:c4:c5:f8:f6:d3:00:1e:09:51:ec:9f:46:b3:8d:0c:dd:
95:7b:e1:1a:e0:60:2e:7f:21:48:ab:b6:ca:70:f8:ba:37:ef:
a3:7f:77:c1:74:9f:18:5a:17:e7:8c:2d:dd:1d:fd:60:38:1d:
ce:ae:66:f0:c8:2e:aa:b3:26:e4:71:a7:2b:d4:f7:55:ff:4a:
89:89:2b:18:26:dd:e0:ed:8a:65:3f:5f:b5:23:ec:0e:37:db:
b2:93:f3:3e:57:67:0e:3b:36:a6:e9:83:d7:5e:4d:c4:f9:58:
51:10:98:ad:78:9b:4b:9e:7c:02:f7:fb:05:bf:db:88:f5:c7:
ce:98:0f:92:82:75:e3:0d:75:5c:6c:89:ea:f3:19:7b:21:00:
bd:d9:53:dd:35:ab:77:94:19:2c:76:57:7d:0b:d1:15:08:56:
29:1e:53:c9:60:82:ee:86:d9:fd:5d:fe:e1:7c:0e:c0:a1:44:
a9:df:6e:1f:61:0d:29:78:07:62:a0:f9:86:5d:e4:ee:60:e5:
8d:a8:6c:36:41:b9:ff:68:ec:f6:ac:8f:a7:d1:8a:8d:8c:58:
38:31:5f:d1:d3:8e:f0:1e:e7:7f:65:d1:f5:1e:c3:04:cb:61:
9e:75:10:d0:f5:7a:4d:66:42:f1:7f:4f:0a:c5:1b:1b:f7:a1:
6b:cf:ec:da
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org