Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/Hfb-N8og2gGzlx5nx7ddJYaViWs.roa
File: Hfb-N8og2gGzlx5nx7ddJYaViWs.roa (raw, json)
Hash identifier: dzHTuShBC2YG07Of0QDNC0PtqltRwlvsJDOUze2fgx8=
Subject key identifier: 1D:F6:FE:37:CA:20:DA:01:B3:97:1E:67:C7:B7:5D:25:86:95:89:6B
Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial: 0A6B
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/Hfb-N8og2gGzlx5nx7ddJYaViWs.roa
Signing time: Thu 15 Sep 2022 02:42:03 +0000
ROA not before: Thu 15 Sep 2022 02:42:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131584
IP address blocks: 103.31.196.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2667 (0xa6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Validity
Not Before: Sep 15 02:42:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1DF6FE37CA20DA01B3971E67C7B75D258695896B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e0:87:7b:40:b5:7a:5a:83:79:82:c3:45:21:
36:6d:f1:65:91:04:9a:c7:1c:23:2f:3f:06:08:57:
32:6d:8c:50:93:df:85:fc:56:9d:29:a9:db:1f:52:
16:56:a7:62:a2:02:d1:e6:2f:d7:2f:82:58:22:0e:
63:2f:4e:ed:63:70:82:d1:55:5f:9a:52:fd:85:7a:
b4:54:78:c8:ab:f5:37:fc:b8:e6:47:8a:7f:26:2c:
b9:72:af:9f:f5:4b:89:2d:57:67:fc:6a:05:de:15:
0b:94:c1:e7:f8:f6:b8:0a:7a:4b:cd:dc:81:9d:b8:
41:64:ae:54:ef:db:1e:16:38:01:b3:f8:b6:a0:f6:
03:93:f7:98:6f:bb:53:4b:dc:e1:48:f7:61:cb:a8:
d2:60:79:09:bb:26:fc:b2:ea:71:7b:14:45:8b:11:
fb:53:6d:6c:07:66:04:9d:3a:79:3d:5c:39:af:ff:
17:ba:c3:8d:ac:3b:54:e9:d6:07:42:fc:79:ba:80:
1a:d7:b0:6e:8d:ab:3c:ce:51:5e:a0:cf:c6:dc:92:
11:45:b7:b4:96:ee:52:f2:e4:23:3f:24:2b:45:7a:
9e:99:1b:cb:ca:3d:77:e0:93:a6:16:22:ba:1e:4b:
ca:f0:8d:78:67:b3:4f:ad:aa:96:80:e3:ea:4f:ae:
de:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:F6:FE:37:CA:20:DA:01:B3:97:1E:67:C7:B7:5D:25:86:95:89:6B
X509v3 Authority Key Identifier:
keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/Hfb-N8og2gGzlx5nx7ddJYaViWs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.31.196.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:60:88:0a:93:c7:1b:4d:1e:10:b7:7d:0e:82:91:bb:22:5d:
9d:0a:fe:b7:4e:69:91:b0:5f:f3:7b:e6:64:37:e7:10:3d:99:
57:94:73:d8:5b:f0:65:a0:e9:d4:87:b7:c0:01:ea:4d:90:f8:
c2:2a:47:bc:6b:ed:13:49:aa:89:27:78:7a:11:f8:f7:b0:e8:
41:c2:91:cf:83:f1:b8:3d:eb:d3:a2:24:43:c6:d1:84:0d:db:
b6:35:14:23:ba:e2:8a:96:2f:d0:51:46:91:ac:9f:c2:7e:c0:
a5:43:ef:8a:60:6b:ef:87:05:d9:1a:d4:ed:0b:15:e5:0b:40:
1e:14:ab:0a:22:c9:36:90:bd:dd:8e:22:89:23:90:fb:52:92:
df:af:95:f9:1a:b6:76:04:77:68:fe:3f:f6:29:d9:21:2d:44:
03:19:26:b9:bc:eb:fd:75:30:1d:74:0b:a3:35:58:4e:e1:62:
a8:3b:80:89:bb:9e:da:f8:c7:ee:ad:e7:02:73:22:e7:8e:38:
12:a2:40:c9:6c:db:64:23:a0:bf:6a:da:78:f5:27:69:40:2c:
8d:8c:40:e2:18:34:47:8e:ca:11:6b:b8:65:5a:b5:d7:0f:f7:
24:8c:2a:92:52:9e:ab:b0:e1:7b:ec:aa:5a:0a:c6:18:51:78:
77:09:ea:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org