Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/-NsXjKMBjeKpAJF04sZSCcA_c7I.roa
File: -NsXjKMBjeKpAJF04sZSCcA_c7I.roa (raw, json)
Hash identifier: Hac8D2mT37iYpRS/4aU2/PWCCHK17ffr5gaj/D7/Cc4=
Subject key identifier: F8:DB:17:8C:A3:01:8D:E2:A9:00:91:74:E2:C6:52:09:C0:3F:73:B2
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0859
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-NsXjKMBjeKpAJF04sZSCcA_c7I.roa
Signing time: Tue 29 Sep 2020 09:58:39 +0000
ROA not before: Tue 29 Sep 2020 09:58:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 114.32.0.0/12 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2137 (0x859)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:39 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F8DB178CA3018DE2A9009174E2C65209C03F73B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:25:6f:80:24:ab:80:13:d6:54:c0:28:89:68:
64:5c:88:cd:1d:8a:c5:f0:1b:2e:68:68:d0:d7:45:
86:f9:3d:33:cb:9e:f7:b1:3e:54:59:9d:8c:fe:6d:
19:60:f1:15:ae:2a:88:10:47:02:cc:5f:54:c0:d8:
91:2c:08:1b:50:50:af:46:7b:fa:f5:80:5e:92:c3:
a6:bd:08:d6:b0:48:95:f1:a4:75:18:f5:8e:27:cb:
5f:09:14:47:cd:d9:e0:47:1c:71:40:e2:c9:f0:c4:
eb:15:a2:87:9f:76:29:6a:74:25:bc:6d:4f:b7:67:
6c:ec:dd:73:f2:6d:00:62:7c:11:e2:54:bb:ef:84:
df:5e:21:2e:93:47:d8:2c:76:f0:07:c6:98:ba:07:
8f:ca:97:4f:d8:4d:2a:ed:64:cd:0a:20:fe:db:24:
d4:38:76:7a:65:63:ea:c3:83:d4:27:8d:15:9f:07:
b5:e2:db:ad:b0:71:12:e0:fe:2f:f4:b6:62:d3:28:
98:14:19:62:55:b7:36:7b:c5:76:a4:66:ce:cb:42:
90:9d:99:5f:43:25:f5:e1:30:d9:6d:95:06:17:2e:
50:6b:15:d3:ac:75:e8:50:1e:2c:bc:50:fe:d3:6d:
46:75:7b:14:e0:50:c7:24:db:b7:9c:16:3e:81:98:
44:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:DB:17:8C:A3:01:8D:E2:A9:00:91:74:E2:C6:52:09:C0:3F:73:B2
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-NsXjKMBjeKpAJF04sZSCcA_c7I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.32.0.0/12
Signature Algorithm: sha256WithRSAEncryption
d0:83:41:b7:ee:b5:93:ed:13:bd:a0:24:ce:c1:fc:f6:ab:50:
38:64:06:ff:39:fe:61:64:f6:43:81:13:14:80:f3:b1:44:44:
b7:3a:11:82:cf:c4:3b:55:24:88:82:67:bf:56:ad:2e:e7:e8:
b1:53:ed:8f:c1:b9:15:c9:dd:fc:19:5c:78:6f:ca:3b:a0:a1:
6c:30:a7:f4:39:7e:81:e1:28:0d:b6:9a:74:c4:e9:7c:0a:51:
3f:91:d1:d8:f2:9d:bc:7d:ed:31:fe:94:b8:b6:67:6c:4c:82:
8d:fe:90:f0:c7:b0:87:f2:94:80:85:32:1b:32:5b:b8:02:19:
c7:03:76:17:eb:29:c5:db:1f:60:ca:23:4e:1c:44:b5:17:e6:
35:af:b1:4b:bd:32:9e:47:af:de:ad:12:9c:98:43:c1:e8:b3:
3f:49:41:08:02:4f:40:ce:2b:b5:a0:42:68:d7:ca:70:f7:89:
e2:d8:b7:c7:33:74:44:26:4e:5e:86:18:c5:e9:63:c4:04:ec:
e4:72:30:b1:9f:49:4d:05:88:3f:d2:ef:57:b8:8f:2a:cd:86:
39:0e:df:5b:86:7d:d4:5e:41:9d:58:c3:41:49:85:f0:26:75:
fe:d2:29:da:c1:64:1e:ed:8e:6d:ba:d8:bb:05:98:4f:ed:0e:
e8:d8:bc:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org