Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/1SV23FpyG_PcxFmZiFz2LBL4x8Q.roa
File: 1SV23FpyG_PcxFmZiFz2LBL4x8Q.roa (raw, json)
Hash identifier: zbRcZkekUqeJxIgprpWiq23bDDtAKE5wM9MvH3mWxHw=
Subject key identifier: D5:25:76:DC:5A:72:1B:F3:DC:C4:59:99:88:5C:F6:2C:12:F8:C7:C4
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A68
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1SV23FpyG_PcxFmZiFz2LBL4x8Q.roa
Signing time: Sun 07 Feb 2021 11:37:44 +0000
ROA not before: Sun 07 Feb 2021 11:37:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20940
IP address blocks: 203.69.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2664 (0xa68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:37:44 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D52576DC5A721BF3DCC45999885CF62C12F8C7C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9d:09:db:d2:47:be:dd:31:a3:70:20:89:17:
0a:8e:8b:25:26:62:04:94:09:56:5b:82:f5:80:29:
80:51:32:a3:46:02:31:47:6f:c8:5e:1d:3f:98:df:
f6:95:7f:9d:a8:65:1c:06:81:38:84:c7:c1:69:56:
37:4c:e5:7a:66:b0:2f:1f:21:60:f3:eb:ce:5e:e1:
47:c7:70:f1:70:6f:21:fc:5f:d0:d1:59:b3:fe:bf:
e5:11:68:b2:f2:7b:4c:a4:7c:bd:ed:3c:de:c8:d3:
f2:0b:51:22:8d:83:70:1d:92:65:70:2f:2f:8e:e5:
ea:ad:44:b9:46:ab:47:48:dc:b1:e8:02:d3:91:50:
9e:94:a2:54:ea:e7:4e:94:b3:3c:39:88:7f:5d:75:
eb:51:63:b4:16:e1:ba:02:5e:3c:a5:63:01:73:f8:
68:d3:cc:97:39:ce:52:74:2d:79:02:37:4c:fa:1f:
18:92:1f:ff:67:80:7f:00:aa:79:6d:69:f2:69:d0:
d7:e6:a6:0d:8d:0c:b0:20:39:c2:06:86:76:be:b4:
12:46:df:aa:08:bd:69:88:e4:0c:f1:ae:5f:0e:67:
2e:98:a6:e8:e1:2b:bc:94:50:4f:dc:b5:2a:eb:dd:
0f:5f:b6:45:47:a5:fd:de:67:d9:b1:dd:e4:f4:96:
11:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:25:76:DC:5A:72:1B:F3:DC:C4:59:99:88:5C:F6:2C:12:F8:C7:C4
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1SV23FpyG_PcxFmZiFz2LBL4x8Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.138.0/24
Signature Algorithm: sha256WithRSAEncryption
29:a0:b9:5a:7b:86:b9:74:97:3e:d2:18:a6:a2:0c:77:78:9b:
01:e5:a6:38:11:f6:15:e6:fe:9f:35:35:6d:94:c0:dc:6c:41:
2e:f2:ce:6b:18:ba:82:88:41:94:a2:f2:32:42:5d:03:e2:95:
6e:cd:9c:7c:c4:77:33:dc:32:fe:f0:b0:e0:8d:58:a8:29:c1:
56:25:69:f3:8f:3f:44:b1:27:0c:50:26:80:f0:00:b9:93:22:
47:2e:46:a4:b0:c2:c9:1a:32:13:0a:72:f0:98:61:59:f1:e6:
6b:86:e8:fc:1d:28:2b:d4:a9:18:61:e1:a2:09:11:17:59:57:
a4:10:4c:77:a7:fe:29:f3:b7:4f:7c:0e:6f:61:ad:27:91:97:
58:bd:1b:80:fa:44:2e:2d:82:d3:c9:18:bb:6c:84:21:d0:e7:
11:58:a8:5e:44:f8:8a:89:7c:0a:b3:72:ed:75:99:c0:ae:92:
d1:16:dd:4d:db:b2:bc:3a:2b:cd:33:eb:65:8b:d9:ed:78:38:
69:4d:20:57:7e:36:f3:6d:e1:93:de:84:ad:57:ff:28:4f:bd:
6d:fd:b2:2f:e9:1f:24:56:6a:e2:d5:6a:c3:10:d3:93:0a:24:
df:d9:ac:06:c4:08:27:e9:cd:05:24:79:81:8b:3c:5b:61:a6:
34:e3:d7:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org