Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/-OOoeUrmiJssm7VdkYEF4w5hY_o.roa
File: -OOoeUrmiJssm7VdkYEF4w5hY_o.roa (raw, json)
Hash identifier: 4FZxeSNDws2GHTPXWd2aAIHBiy0ksjvm7EstiebRpfs=
Subject key identifier: F8:E3:A8:79:4A:E6:88:9B:2C:9B:B5:5D:91:81:05:E3:0E:61:63:FA
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-OOoeUrmiJssm7VdkYEF4w5hY_o.roa
Signing time: Thu 15 Sep 2022 02:48:33 +0000
ROA not before: Thu 15 Sep 2022 02:48:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 20940
IP address blocks: 210.61.248.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F8E3A8794AE6889B2C9BB55D918105E30E6163FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:22:19:7d:e1:c0:73:b7:e6:42:d6:04:16:07:
ce:3b:c8:59:cf:b5:c9:29:62:91:c4:4a:31:e4:4a:
cc:d5:67:d1:c9:a9:31:8f:9e:5f:ec:10:7f:71:8f:
c8:34:3b:87:73:5d:dd:17:96:29:97:1b:74:48:ce:
16:d5:ab:7d:e1:82:ef:d7:03:e0:9b:ee:9c:d3:05:
45:99:d1:6a:80:94:b8:de:63:8d:9f:20:d1:17:53:
db:b2:c6:29:f5:e5:92:24:b9:a5:d6:17:c1:e6:58:
85:ae:6f:bc:bd:14:c8:00:b3:1e:c4:a6:10:fd:68:
d9:1a:5d:95:46:30:68:2c:62:80:a8:bf:fc:ca:91:
a9:c8:2f:bd:6e:a3:00:b4:dc:59:32:2b:d7:45:e3:
3e:0f:b1:60:6c:72:d4:35:30:6f:7e:b0:1d:55:b3:
49:a4:ef:15:81:1e:af:d0:04:18:40:f8:96:03:67:
3b:a2:7a:c8:74:0f:09:86:13:ef:ef:99:04:4a:2d:
1d:8e:92:64:91:ee:0a:a8:d5:83:41:20:64:86:b1:
de:bf:48:c8:c9:36:b5:8f:91:68:74:31:f9:3d:16:
7b:d6:1e:9a:4c:34:c1:6c:e4:4b:2a:e7:75:64:52:
b1:9c:4f:ac:b7:f9:88:f7:7f:0a:f3:33:ab:f2:b5:
e6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:E3:A8:79:4A:E6:88:9B:2C:9B:B5:5D:91:81:05:E3:0E:61:63:FA
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-OOoeUrmiJssm7VdkYEF4w5hY_o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.248.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:50:c3:f4:33:b8:c0:f2:c9:b4:b4:fd:ab:ba:db:e3:e1:22:
1b:ee:e1:ad:6b:4e:28:13:ae:de:9c:91:b5:b0:15:be:1c:ed:
f0:50:c3:82:2c:c3:69:3f:5a:3a:02:44:77:ba:c2:19:76:be:
24:14:1e:58:64:97:9b:57:fc:0f:86:41:bf:e8:9c:86:cf:97:
71:02:f9:03:18:96:92:7c:bf:ef:0f:eb:c0:6c:b7:b1:2a:2e:
52:6a:2e:98:5c:a9:8f:ff:92:32:5c:0e:ce:53:0d:2e:51:62:
a6:95:87:e0:8f:0d:03:34:ee:c1:3d:3d:a2:68:f6:d5:06:a8:
f6:cf:d9:5b:eb:03:c2:80:70:69:5d:62:ea:95:a2:9b:5b:be:
a0:ae:2b:96:81:cd:d7:15:3f:50:69:c5:ed:2f:84:d4:71:a3:
28:23:c5:36:fa:39:27:4e:2e:c2:32:87:50:d5:5e:71:c0:c7:
f6:62:d9:3e:55:08:b6:6d:3f:d6:01:31:e0:57:e7:28:82:25:
fe:a3:7b:be:18:63:1c:9c:73:d4:a5:de:f2:16:8b:d9:0e:cb:
5b:d2:a9:f6:29:8a:eb:7a:76:66:5d:f1:58:1f:01:52:6f:e8:
17:e7:e0:cb:54:e7:6e:53:b5:42:3a:cc:c7:3a:76:c4:ea:1e:
7d:37:62:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org