Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIH/OEsum9pES5cRD-KI7EmpuEavTPM.roa
File: OEsum9pES5cRD-KI7EmpuEavTPM.roa (raw, json)
Hash identifier: zmVXbfTOObPJwMCsZeH0vhWUxh0VNhhoYfOEBlIDKx8=
Subject key identifier: 38:4B:2E:9B:DA:44:4B:97:11:0F:E2:88:EC:49:A9:B8:46:AF:4C:F3
Certificate issuer: /CN=2D7204617354D70523B6F65A270712B6B19D815E
Certificate serial: 0774
Authority key identifier: 2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/OEsum9pES5cRD-KI7EmpuEavTPM.roa
Signing time: Tue 29 Sep 2020 10:00:48 +0000
ROA not before: Tue 29 Sep 2020 10:00:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20473
IP address blocks: 103.129.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1908 (0x774)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D7204617354D70523B6F65A270712B6B19D815E
Validity
Not Before: Sep 29 10:00:48 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=384B2E9BDA444B97110FE288EC49A9B846AF4CF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:51:08:e7:81:76:2c:c8:65:84:11:02:10:38:
07:f2:04:53:32:6f:3b:4b:c0:bc:94:32:23:1c:3b:
b1:d2:d4:24:0e:c6:13:8a:0e:85:c7:6b:22:16:09:
c0:86:5b:3e:da:ec:61:f8:71:95:3d:a3:de:e2:c0:
4f:e2:ba:67:0e:d6:de:e9:2e:49:9d:6d:74:5b:d7:
3d:85:06:0f:6b:cf:77:ee:0f:7c:a8:89:08:7d:4f:
c4:21:35:c7:0c:8f:bc:12:d8:c6:4a:0f:f4:d4:e6:
af:bf:c9:07:e3:3a:d9:91:1a:1a:87:9c:82:f1:8a:
55:60:d0:b6:bd:95:9b:d5:04:d3:25:1e:85:a3:d5:
05:27:5a:96:c3:ff:07:e7:a3:97:0f:50:ca:d2:7b:
20:12:78:d3:44:0e:c7:18:5b:b1:91:d5:00:5c:4e:
ff:c0:f0:a6:c8:78:da:c1:db:99:b5:d6:9f:72:d2:
ef:37:1d:4f:33:28:40:6c:bb:97:e2:e0:4f:d1:5c:
bf:da:4b:a0:25:10:a8:24:63:f9:00:24:a0:60:33:
8c:fb:2a:bb:d1:48:12:20:75:c1:fe:65:47:5d:7a:
06:03:50:06:3f:b8:32:73:01:dc:9e:77:9c:b9:e0:
f3:d3:61:7c:ae:3d:e5:54:51:d8:91:00:bd:45:fe:
d5:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:4B:2E:9B:DA:44:4B:97:11:0F:E2:88:EC:49:A9:B8:46:AF:4C:F3
X509v3 Authority Key Identifier:
keyid:2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/OEsum9pES5cRD-KI7EmpuEavTPM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.129.147.0/24
Signature Algorithm: sha256WithRSAEncryption
83:0f:28:05:80:12:20:62:f0:2e:97:62:ed:ff:35:a9:43:67:
e1:e5:20:1b:b7:94:e1:21:d4:5d:c2:7e:df:b5:0a:0d:aa:24:
cb:02:6a:d7:8b:da:ac:50:fe:89:14:3f:c7:75:74:59:c0:03:
97:e4:6c:98:8d:12:e9:50:35:ee:62:01:8f:30:d5:df:ba:76:
6c:ab:84:0e:7b:48:54:65:c6:7f:11:29:85:c3:3e:ff:bf:9f:
ef:ab:85:a7:92:f8:75:2a:0c:e0:08:18:08:a6:10:78:bd:cb:
32:d8:d8:e8:45:b7:19:dc:c2:08:e0:41:0d:d6:e2:29:b9:58:
a5:12:53:06:4a:69:25:ef:23:c7:ba:37:eb:75:d2:9d:7e:08:
76:4b:14:a4:de:91:1a:ad:ff:ea:ab:2f:24:9d:1e:d8:04:66:
dc:7c:40:7a:c6:41:ae:ce:d8:27:e4:2d:54:f2:90:e7:a9:cb:
a2:63:78:5a:8a:78:20:92:d7:11:58:6a:26:1b:36:2a:d4:6d:
e5:3f:9d:50:28:fc:24:fa:99:57:bc:9a:a1:ec:ff:8b:3b:53:
31:1e:be:93:bf:aa:d8:73:21:1f:5c:5a:b9:35:d3:55:3e:4a:
18:0b:53:67:8a:8c:7d:b2:1b:a1:72:19:f5:6a:4d:0e:d3:33:
25:d2:5a:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:18 2023 by rpki-client on console-fra.rpki-client.org