Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/XINYUN/0zTgg7L5SGetholHpS7Gu45r6Zc.roa
File: 0zTgg7L5SGetholHpS7Gu45r6Zc.roa (raw, json)
Hash identifier: f+8zPlN+lft0Vvo74pSy94RHwocnad+mm3URrDt/jzQ=
Subject key identifier: D3:34:E0:83:B2:F9:48:67:AD:86:89:47:A5:2E:C6:BB:8E:6B:E9:97
Certificate issuer: /CN=84F850C0651B699E190DC9D97CD1DE326C164EC5
Certificate serial: 0ABB
Authority key identifier: 84:F8:50:C0:65:1B:69:9E:19:0D:C9:D9:7C:D1:DE:32:6C:16:4E:C5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/0zTgg7L5SGetholHpS7Gu45r6Zc.roa
Signing time: Tue 29 Sep 2020 10:09:21 +0000
ROA not before: Tue 29 Sep 2020 10:09:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 138145
IP address blocks: 103.133.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2747 (0xabb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84F850C0651B699E190DC9D97CD1DE326C164EC5
Validity
Not Before: Sep 29 10:09:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D334E083B2F94867AD868947A52EC6BB8E6BE997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:57:4c:bd:df:1c:8d:b0:00:4f:1e:d1:8b:c1:
4a:08:28:39:67:65:16:51:80:0a:89:f3:f2:8a:aa:
bb:96:56:1b:d0:9c:37:27:53:d2:0c:ed:c1:02:19:
22:12:55:78:9e:d2:48:c3:74:cd:f3:a5:7c:11:0c:
13:1c:d7:9f:c5:57:98:ec:11:02:86:db:c9:a2:98:
b1:9e:90:90:95:eb:b2:ff:ea:00:fb:a1:ad:41:ce:
8a:d3:d8:5f:71:d1:a8:f9:06:a6:f9:da:8f:6e:f8:
42:26:b0:e9:5d:70:66:65:61:b2:4c:ae:4c:cb:10:
83:54:59:e8:5e:ae:ea:fc:b0:c1:a0:36:e9:3e:d4:
74:76:68:c9:67:8c:ad:4c:69:8c:b0:d5:97:88:ab:
cc:cf:10:05:49:e2:6e:3e:55:b1:ae:e3:2c:93:2c:
2b:b7:1a:65:21:29:5c:f6:42:8b:af:4e:21:94:89:
83:a1:09:39:e7:cd:c7:db:5e:02:19:57:89:e1:f3:
85:18:aa:51:e9:c0:fa:73:8a:b4:08:f7:83:1d:4f:
5d:f2:f2:b6:5a:0d:ba:82:bc:cf:37:5e:c6:d3:10:
bb:89:fd:4a:04:5f:9f:31:10:25:f2:13:f3:7e:a1:
df:a0:7f:3d:9b:9b:8d:18:01:e5:37:04:21:6c:97:
29:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:34:E0:83:B2:F9:48:67:AD:86:89:47:A5:2E:C6:BB:8E:6B:E9:97
X509v3 Authority Key Identifier:
keyid:84:F8:50:C0:65:1B:69:9E:19:0D:C9:D9:7C:D1:DE:32:6C:16:4E:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/hPhQwGUbaZ4ZDcnZfNHeMmwWTsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINYUN/0zTgg7L5SGetholHpS7Gu45r6Zc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.133.152.0/24
Signature Algorithm: sha256WithRSAEncryption
11:ad:70:5e:b1:ef:9f:bc:83:51:6f:1a:61:52:e2:7a:a2:e3:
62:ec:31:cc:4c:68:b6:a0:c4:62:94:76:10:ec:bb:86:05:7a:
7d:ee:2b:5d:5b:ed:83:5b:d7:13:ed:93:13:f3:0f:69:45:db:
24:12:57:c1:8e:32:2e:a3:a0:0e:46:31:d9:f8:43:2d:35:70:
dd:8a:22:8e:f4:3b:86:0a:f9:80:dd:e8:91:27:ec:d3:57:fb:
d2:d8:2a:f8:c5:15:b6:3f:69:7e:45:6f:6d:78:42:8f:15:b8:
b1:72:45:9d:ee:44:e6:b5:d3:6b:a2:44:83:12:aa:61:ec:ea:
ad:2c:9b:6d:2e:ba:08:6d:17:b0:c9:10:5f:61:af:1c:c0:1e:
a7:88:8c:e1:80:31:e8:93:1e:3f:09:0b:d9:68:83:63:c9:fa:
d0:75:b9:39:1a:fe:58:d5:15:bc:60:53:6c:1d:ae:ee:9c:0e:
85:99:39:35:d2:48:6d:e2:ba:33:76:c1:a4:19:43:b8:4d:43:
7e:0b:af:05:74:12:38:0b:a6:1a:ea:7d:c5:33:21:ec:0f:a0:
62:fe:2c:72:80:4b:8c:f8:2c:be:7c:6b:6a:a5:e4:fe:6c:a8:
a8:fb:4b:f9:da:3c:2d:1d:94:b4:6b:4f:32:f1:61:60:12:d0:
ed:07:16:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:54 2023 by rpki-client on console-fra.rpki-client.org