Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/1FBx8c_pGtu0lyp2SJ5N6ED7mM8.roa
File: 1FBx8c_pGtu0lyp2SJ5N6ED7mM8.roa (raw, json)
Hash identifier: G9fUS1cEFRrseus/8qRxC2sIoSb/64Yf+AaD9enSWMI=
Subject key identifier: D4:50:71:F1:CF:E9:1A:DB:B4:97:2A:76:48:9E:4D:E8:40:FB:98:CF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A50
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1FBx8c_pGtu0lyp2SJ5N6ED7mM8.roa
Signing time: Sun 07 Feb 2021 11:37:25 +0000
ROA not before: Sun 07 Feb 2021 11:37:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 54994
IP address blocks: 203.74.117.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2640 (0xa50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:37:25 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D45071F1CFE91ADBB4972A76489E4DE840FB98CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:74:8f:07:52:b7:f0:a4:47:82:7a:32:06:8d:
c3:50:e8:e8:b2:fa:ee:c0:3b:72:63:a8:64:99:61:
0f:19:35:09:e0:ac:f4:68:10:83:5a:5c:9a:ba:af:
36:d6:2a:2a:52:95:30:32:9d:45:7a:82:84:a1:c4:
0b:77:9b:fa:69:1b:7e:e6:59:4e:cb:22:1e:13:e8:
76:d9:5a:b1:2f:00:56:a5:23:4b:9a:a9:1a:4e:ae:
ce:ba:88:a6:d7:5f:3d:ae:08:4e:88:f7:76:16:30:
d9:6e:98:1b:de:00:57:71:b8:28:36:5f:dc:9c:60:
07:67:20:23:af:75:6c:37:ff:f7:30:4c:6e:1e:d4:
7c:59:67:90:dd:ca:d5:87:c0:9d:0d:9b:e9:d5:22:
e0:14:14:be:26:64:64:a0:03:53:4a:a0:81:1d:63:
0c:22:d5:00:9c:9f:c4:a4:40:49:27:ec:ff:90:e6:
13:41:11:60:3e:b0:b5:43:b1:bd:53:56:0c:fe:56:
84:36:c5:bc:08:b9:37:f9:dc:08:f9:69:68:21:c8:
e0:f7:87:9c:7c:10:7a:f3:2a:ae:b3:92:9d:b5:5b:
f1:5c:2c:55:65:79:61:da:08:17:32:4e:7d:95:51:
80:34:bf:0e:57:b3:03:7e:d2:fc:a9:75:2c:06:7b:
d5:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:50:71:F1:CF:E9:1A:DB:B4:97:2A:76:48:9E:4D:E8:40:FB:98:CF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1FBx8c_pGtu0lyp2SJ5N6ED7mM8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.117.0/25
Signature Algorithm: sha256WithRSAEncryption
d1:2e:40:0f:83:72:59:57:42:bb:c1:19:d9:61:19:8a:62:d2:
16:0e:ce:ba:b0:6c:1a:ed:4b:53:48:27:72:ee:c0:c0:86:11:
d9:5c:04:fb:a1:5e:2b:fc:81:7a:ff:d5:c0:aa:9d:68:f2:d8:
33:86:6a:0d:c2:4e:f6:04:80:50:17:7f:92:05:d9:7c:fc:36:
46:c5:44:4e:3f:ab:6f:ea:64:51:d9:8c:0f:6d:24:ed:5d:85:
e9:47:a9:03:65:2c:8d:ee:a8:95:68:27:3e:03:0c:d9:99:26:
f7:76:0d:ba:62:99:9c:47:f3:9f:63:5a:35:3d:c0:f9:b4:d1:
62:28:0e:52:42:d6:88:7b:3f:e7:05:b3:04:3e:85:a5:12:ca:
dd:e2:46:a6:33:3f:e2:f1:5e:97:d9:bc:0c:62:34:f5:1a:fe:
74:34:c4:78:38:a1:40:d3:c5:58:a4:1f:2e:d0:6c:d0:60:58:
f5:02:fa:95:b9:93:ee:f8:96:e3:57:a3:19:7a:5c:f4:58:2f:
65:34:ec:04:a9:04:89:0d:d1:08:46:a9:04:93:0e:5e:f3:63:
03:dd:19:e6:13:86:09:27:4a:d8:f0:31:99:c9:f0:ee:e4:ff:
91:43:d1:bf:ba:11:f5:d1:b0:9a:c3:af:30:14:2e:87:d7:c2:
c5:22:ee:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org