Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/HEKnDT_fQawEPOrk_QR0Fj_qmdQ.roa
File: HEKnDT_fQawEPOrk_QR0Fj_qmdQ.roa (raw, json)
Hash identifier: d4l0BYbUas3SXRbduiEcaA/2LK89z4q2023q5J91hNk=
Subject key identifier: 1C:42:A7:0D:3F:DF:41:AC:04:3C:EA:E4:FD:04:74:16:3F:EA:99:D4
Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial: 0949
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/HEKnDT_fQawEPOrk_QR0Fj_qmdQ.roa
Signing time: Sun 07 Feb 2021 11:53:12 +0000
ROA not before: Sun 07 Feb 2021 11:53:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24168
IP address blocks: 103.30.44.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2377 (0x949)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Validity
Not Before: Feb 7 11:53:12 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1C42A70D3FDF41AC043CEAE4FD0474163FEA99D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1d:a6:cf:18:f7:44:a5:43:48:e6:8e:fe:5e:
66:ea:84:7b:49:ca:69:c6:68:e0:bb:3e:ee:ad:c5:
e2:04:0b:44:ac:dc:36:c2:59:51:c2:7a:9d:e2:22:
67:c4:96:be:de:f1:bb:b5:87:c6:57:7a:97:5a:c0:
ba:3c:98:0e:6f:af:72:7a:16:c3:a9:29:b8:26:7e:
50:26:74:d3:5a:70:4c:11:d1:fd:61:80:8d:4c:b1:
1a:7b:b1:f9:1d:5c:65:32:d8:0a:1f:b1:c4:b2:61:
fa:43:e3:a0:e0:bd:b7:4b:ff:86:c0:6f:38:6e:ff:
0f:17:d6:fc:3a:3e:69:1b:bd:3a:b1:2b:f2:01:92:
f7:61:e2:93:c1:78:c3:62:49:de:17:c1:50:29:34:
48:d9:9e:3a:b2:d2:80:c1:64:a6:ec:90:46:85:b9:
56:d7:07:5a:ba:2d:c7:6e:aa:26:65:0a:ce:12:fa:
4b:ad:d9:ff:b0:75:a6:d9:27:ff:63:88:ea:e3:c6:
6f:6c:25:0f:04:e6:0d:90:de:3d:d1:72:2b:61:05:
1a:13:28:33:1c:12:d8:9d:94:2d:28:f9:07:61:9a:
fc:55:a0:6a:94:d1:dc:10:46:32:fa:82:83:8a:a7:
27:c9:92:08:21:70:68:16:0e:6d:92:13:cf:c6:df:
2b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:42:A7:0D:3F:DF:41:AC:04:3C:EA:E4:FD:04:74:16:3F:EA:99:D4
X509v3 Authority Key Identifier:
keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/HEKnDT_fQawEPOrk_QR0Fj_qmdQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.30.44.0/22
Signature Algorithm: sha256WithRSAEncryption
75:e1:a7:6d:31:50:be:df:ed:1e:ae:04:8b:96:72:a1:65:08:
91:25:ca:fd:e1:8e:ad:09:d6:f5:b8:c2:98:f0:55:a5:b3:0e:
9d:2c:70:e2:0e:48:f2:f0:c3:96:2b:7c:38:e6:46:f0:b3:4b:
4d:03:13:af:f6:b1:90:77:17:ea:af:13:e4:9c:c4:14:b3:0c:
2e:26:e9:3f:e8:0f:e9:d7:6b:ee:41:8a:a3:d5:47:95:e4:ec:
34:5f:12:b1:72:7b:62:c1:18:4e:62:0e:4f:6a:44:a2:03:8a:
ab:40:a1:e9:64:93:e9:4f:92:36:a4:6a:76:45:94:15:72:45:
23:3f:86:01:2f:de:a3:0e:dd:73:78:12:3d:44:7c:3f:3b:ab:
42:51:f3:f4:cb:a3:d8:aa:9e:61:17:54:40:ef:68:b2:3f:73:
b0:11:58:47:90:05:b0:45:6c:7c:d9:4b:ec:b6:16:a5:0e:9d:
90:18:05:70:e1:6e:e1:32:27:02:40:16:f6:f5:a2:52:e7:82:
07:2e:9f:80:4e:a6:79:da:07:e1:53:96:82:f2:11:b9:6a:b6:
7a:ae:bc:ab:c3:7d:d5:41:bb:84:3d:49:00:8b:4a:97:99:16:
23:c2:68:44:4e:23:2e:04:78:91:80:22:60:71:ac:8e:ee:c9:
66:01:2b:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org