Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/dLFlZjQ9_ZGiGbD54WFAgrE47U0.roa
File: dLFlZjQ9_ZGiGbD54WFAgrE47U0.roa (raw, json)
Hash identifier: XfIb5d/CtXsVMH83x3Hsz4omB5V51q5rFJtoHoM3kYo=
Subject key identifier: 74:B1:65:66:34:3D:FD:91:A2:19:B0:F9:E1:61:40:82:B1:38:ED:4D
Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Certificate serial: 0A0E
Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/dLFlZjQ9_ZGiGbD54WFAgrE47U0.roa
Signing time: Thu 15 Sep 2022 02:47:44 +0000
ROA not before: Thu 15 Sep 2022 02:47:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 48024
IP address blocks: 103.122.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2574 (0xa0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5
Validity
Not Before: Sep 15 02:47:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=74B16566343DFD91A219B0F9E1614082B138ED4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:75:8b:f9:dd:19:84:ba:55:57:3a:08:4d:98:
b3:75:7a:1d:7a:08:43:d6:4c:33:f8:ce:1c:63:09:
2f:3c:fb:74:74:42:b0:b0:50:c4:71:65:83:b7:69:
70:86:a0:a9:f9:67:0c:5e:f7:ed:16:f8:0e:5d:ec:
94:59:03:72:56:f9:a0:74:64:d6:b7:ac:53:f0:16:
6f:8e:39:61:8f:9c:16:f9:5d:4c:62:b5:a7:c0:41:
5b:08:69:bf:98:e7:72:0a:f3:0e:2e:d0:fa:0b:fc:
30:8b:3c:5f:ab:43:83:4d:97:56:18:42:c5:ac:1e:
80:a6:7c:7f:55:11:4a:af:3b:2c:4a:40:98:50:fc:
b9:7f:54:f1:22:e3:09:9b:1d:a3:55:49:84:a8:33:
01:50:17:e8:f8:74:90:81:93:36:6e:46:8c:59:aa:
ef:d2:06:95:c3:c6:f7:99:ef:30:fb:2d:ea:95:67:
fd:c0:b3:c7:5f:d9:0b:c1:f5:11:6e:62:8a:b6:de:
ff:3e:23:b1:c3:0e:e4:b0:af:f2:05:54:6d:df:d8:
53:2a:de:75:81:e2:72:2d:c3:af:62:df:62:0a:51:
f6:af:83:7a:b2:98:3e:aa:70:98:e7:c2:8a:56:db:
87:b9:1b:70:cd:7e:30:40:92:19:88:1c:4e:0b:52:
bd:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:B1:65:66:34:3D:FD:91:A2:19:B0:F9:E1:61:40:82:B1:38:ED:4D
X509v3 Authority Key Identifier:
keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/dLFlZjQ9_ZGiGbD54WFAgrE47U0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.22.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:9c:e2:cb:06:05:06:8f:fe:b3:c6:df:45:51:27:93:6b:7c:
04:fa:bd:6e:89:89:21:6b:e6:a7:0f:90:ad:20:da:bb:67:f9:
4f:5c:e8:3b:1f:9e:eb:07:cf:e3:3d:40:10:3e:f1:68:35:54:
88:55:a1:15:3f:39:1d:ec:97:41:a1:3c:4f:ab:af:c4:6c:11:
44:31:a5:b5:3c:2c:4d:f5:e1:a6:89:6d:4c:f0:e7:5d:2b:a1:
67:0c:97:93:5c:ab:26:e2:d1:1c:9e:df:e1:a3:86:c2:5f:0e:
f1:c9:41:83:a4:6f:08:ce:bb:2a:15:e6:1f:a8:66:cc:77:ea:
b9:82:6f:81:95:ae:59:96:f1:30:98:4d:7d:3c:ae:b5:fb:f6:
50:14:54:05:ba:df:79:ab:6b:a6:2e:ee:46:94:4e:74:d7:1f:
37:92:05:7b:34:62:90:a9:15:10:4e:b1:95:58:55:38:a2:76:
58:3a:d9:f6:c6:6b:f8:2a:59:04:70:b7:e7:a7:23:1d:be:b6:
1b:71:47:bf:a7:a6:c5:74:0d:93:4d:09:6f:83:4d:e2:b5:ae:
a1:02:f1:e6:4d:b4:4b:fc:8a:f4:46:1e:23:76:a0:9f:42:40:
39:ff:7d:29:25:19:1c:c4:c4:8e:25:05:71:dc:08:d3:38:66:
b6:4f:b5:4b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org