Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/1H07CReWx161Rtmbh6koe13Nxwo.roa
File: 1H07CReWx161Rtmbh6koe13Nxwo.roa (raw, json)
Hash identifier: C0gXmNtsAZ9kcQoosFHNjsEKM+twfrVoBmQy3zyIOy4=
Subject key identifier: D4:7D:3B:09:17:96:C7:5E:B5:46:D9:9B:87:A9:28:7B:5D:CD:C7:0A
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C80
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1H07CReWx161Rtmbh6koe13Nxwo.roa
Signing time: Thu 30 Sep 2021 12:37:31 +0000
ROA not before: Thu 30 Sep 2021 12:37:31 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9505
IP address blocks: 175.111.240.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3200 (0xc80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 30 12:37:31 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D47D3B091796C75EB546D99B87A9287B5DCDC70A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:92:cf:61:9e:c6:95:b5:63:93:1c:8d:e7:6c:
19:ed:81:08:70:3e:3a:3a:83:cd:ad:25:3c:dd:d1:
b7:e0:5b:3f:24:6c:1e:57:6d:e1:52:fa:d7:98:6f:
dd:28:e0:2a:cf:8c:88:17:a2:ac:30:22:a8:58:4d:
e5:3a:b0:77:35:7e:43:e9:ef:2f:d9:1d:5c:3e:83:
40:de:59:1c:18:7f:e0:d3:47:57:3d:c1:18:23:fd:
1f:6a:87:e3:ca:b1:d6:65:38:19:12:3d:4c:d3:38:
b4:d2:53:af:b8:b3:31:45:8a:ec:e9:03:2e:64:7a:
e5:4f:da:d4:17:15:de:9f:98:c3:20:c5:b1:9e:6d:
dd:49:93:4c:15:70:e0:82:d6:60:78:d3:fe:2c:3e:
9f:4e:6b:13:70:fe:4b:36:30:71:35:93:3c:e1:e7:
55:3f:62:d0:02:7d:fc:2b:29:e8:d8:ab:3e:df:f9:
6b:c4:7c:d2:79:86:20:bf:e5:5f:e7:9a:6e:69:18:
c6:ab:d7:47:39:f8:83:72:15:55:50:68:95:09:b1:
29:e2:19:22:45:38:49:17:2f:e2:12:ac:25:ad:29:
96:5c:b2:ef:0d:8e:56:2e:49:07:65:fc:80:60:42:
06:9a:69:98:56:8c:d2:db:fa:14:90:d5:15:55:1a:
e8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:7D:3B:09:17:96:C7:5E:B5:46:D9:9B:87:A9:28:7B:5D:CD:C7:0A
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1H07CReWx161Rtmbh6koe13Nxwo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.240.0/21
Signature Algorithm: sha256WithRSAEncryption
0e:4c:0d:fc:66:27:48:ba:b6:8f:84:c5:1e:5e:2f:8d:06:da:
e9:8c:26:50:0e:86:5d:09:97:cf:e3:d4:9e:cb:19:68:ed:61:
06:dc:69:8a:dc:3d:84:1c:07:56:57:54:47:3d:c5:1c:1e:bd:
72:3e:8a:f9:9e:64:0b:cc:80:ea:6a:1a:5e:63:63:98:12:21:
4d:6b:18:13:3f:84:06:ed:7a:1b:2e:36:10:8f:20:cb:2d:db:
2b:41:b4:83:73:16:9e:73:1b:b0:77:c0:e8:ac:f1:5a:2a:d4:
54:74:76:96:1d:14:02:0c:5d:45:aa:9a:86:35:b4:30:3d:87:
11:61:36:ff:b5:26:e7:89:76:48:8b:ec:00:09:2d:6c:61:ef:
b4:cd:fd:d5:7d:74:79:21:c1:26:35:13:1f:5c:3d:11:19:26:
c7:38:46:34:11:95:da:2e:2c:5f:bc:51:41:cc:ce:76:85:07:
68:4c:f7:c9:45:27:a6:c6:9d:b4:3e:69:b2:f9:90:e3:7e:13:
cc:8b:24:37:b7:f3:b1:0b:4e:e0:6a:93:33:d9:94:2f:06:4d:
10:23:d3:e6:71:b2:a3:c5:5c:ed:a0:1c:f9:ba:4d:88:0e:d1:
07:17:45:2a:f2:dc:a8:92:86:ef:97:65:e3:4c:18:7e:b3:ef:
85:7a:68:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org