Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VIBO/hQGp6QJ1X_JKuh3XW08aJIdT8dE.roa
File: hQGp6QJ1X_JKuh3XW08aJIdT8dE.roa (raw, json)
Hash identifier: dLu15V07y4yy6P9/Jhr4iHRQp1FlrE0ODKMkrUdFsvs=
Subject key identifier: 85:01:A9:E9:02:75:5F:F2:4A:BA:1D:D7:5B:4F:1A:24:87:53:F1:D1
Certificate issuer: /CN=52A3F0198009803B5165DE5ECB61FD451246CFAB
Certificate serial: 0993
Authority key identifier: 52:A3:F0:19:80:09:80:3B:51:65:DE:5E:CB:61:FD:45:12:46:CF:AB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UqPwGYAJgDtRZd5ey2H9RRJGz6s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/hQGp6QJ1X_JKuh3XW08aJIdT8dE.roa
Signing time: Wed 29 Sep 2021 02:36:58 +0000
ROA not before: Wed 29 Sep 2021 02:36:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24157
IP address blocks: 103.5.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2451 (0x993)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52A3F0198009803B5165DE5ECB61FD451246CFAB
Validity
Not Before: Sep 29 02:36:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8501A9E902755FF24ABA1DD75B4F1A248753F1D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9d:98:11:ad:01:08:ba:a6:a6:85:6b:f5:ad:
8c:87:a5:eb:d4:9b:18:0e:4f:40:b3:0e:51:64:0f:
15:b6:f9:82:3b:9f:eb:1c:cf:21:dc:1f:b3:84:c5:
8b:9f:22:b6:24:62:55:dd:c4:af:a5:9a:2e:2a:84:
8a:2d:18:eb:eb:75:fb:72:98:8e:4e:48:09:f9:7b:
c3:1c:01:fd:17:f5:9d:97:54:29:40:0c:7b:cc:e9:
6c:86:27:34:ce:de:a7:c1:a7:9e:a4:c7:b7:95:86:
58:91:6d:07:29:19:2d:8e:21:56:d0:85:5e:d8:c1:
2a:29:0e:af:1d:cc:13:a1:9d:7e:30:fd:e1:0c:82:
65:88:9c:2f:4a:c0:af:bb:f8:d8:3d:b8:e4:e5:92:
4c:a7:d7:e6:2b:ae:ac:80:12:06:db:bb:a2:25:fa:
3f:f6:ec:56:b5:7b:56:75:a0:10:59:8d:80:bd:a6:
42:5d:7f:40:70:3c:cc:03:83:d8:88:85:ce:a2:f6:
9d:36:f2:e0:65:19:4d:c1:5f:f2:7a:d6:6d:14:2d:
49:a1:9c:f5:32:a8:68:c7:09:90:87:5c:5c:95:9a:
3e:af:ad:f0:89:bf:cc:e6:f9:6b:ec:e1:fd:ca:45:
f7:88:2c:06:93:cb:56:15:3b:a0:53:24:eb:a3:5f:
e8:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:01:A9:E9:02:75:5F:F2:4A:BA:1D:D7:5B:4F:1A:24:87:53:F1:D1
X509v3 Authority Key Identifier:
keyid:52:A3:F0:19:80:09:80:3B:51:65:DE:5E:CB:61:FD:45:12:46:CF:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/UqPwGYAJgDtRZd5ey2H9RRJGz6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UqPwGYAJgDtRZd5ey2H9RRJGz6s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VIBO/hQGp6QJ1X_JKuh3XW08aJIdT8dE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.5.32.0/22
Signature Algorithm: sha256WithRSAEncryption
66:d9:1d:7b:11:50:bc:1d:43:d9:26:35:6a:bd:be:27:a7:4e:
c4:17:09:f7:18:26:68:3e:4c:53:da:da:4b:e9:76:c8:02:39:
26:55:8c:d0:c6:9b:d2:6b:90:f6:97:0b:00:3b:b8:b7:ea:2a:
40:90:9e:cf:1b:12:0f:03:16:70:e1:94:f5:1e:b7:d8:b1:be:
61:19:c1:43:68:83:9e:53:a0:85:99:2f:69:7b:5c:84:18:66:
ef:bf:df:05:a0:2b:83:62:5a:48:98:f3:2d:28:52:ef:36:a1:
69:1b:d6:35:db:ed:fe:3b:b9:73:d7:2a:dd:19:7f:7c:3c:9f:
5d:92:60:3c:31:3f:7a:6c:cc:6c:16:bc:61:12:70:aa:ee:9a:
ad:45:16:4c:ba:66:88:14:b4:89:60:ab:61:d1:3c:95:c5:2c:
0b:45:76:9e:35:a5:eb:37:3b:19:ac:88:65:4a:fb:d8:2d:1a:
28:03:84:c5:db:29:bc:bd:3d:ab:af:89:b6:81:48:f9:2c:56:
34:08:d1:11:8d:e7:4e:cb:d5:36:e6:40:94:9e:30:b3:5c:d1:
37:07:a9:d3:1d:fc:66:c0:99:58:07:5e:f9:a8:09:27:cc:db:
24:e0:4f:ce:ef:1c:97:62:07:04:15:c3:85:8c:6b:16:76:0c:
1b:53:f8:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:42 2023 by rpki-client on console-ams.rpki-client.org