Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/1cYF3fdsebMX0QW-HjfqIDjweTM.roa
File: 1cYF3fdsebMX0QW-HjfqIDjweTM.roa (raw, json)
Hash identifier: JYt0S+xOM0QbOHzXvsPbkxcREJnzc/DDaAYSd/tQMwI=
Subject key identifier: D5:C6:05:DD:F7:6C:79:B3:17:D1:05:BE:1E:37:EA:20:38:F0:79:33
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1cYF3fdsebMX0QW-HjfqIDjweTM.roa
Signing time: Thu 15 Sep 2022 02:48:20 +0000
ROA not before: Thu 15 Sep 2022 02:48:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17421
IP address blocks: 211.79.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D5C605DDF76C79B317D105BE1E37EA2038F07933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:26:29:a6:47:34:d6:0f:24:52:2d:48:57:62:
0c:b1:4b:b8:ed:4e:62:b2:d7:94:4e:98:f6:78:88:
6b:a2:1c:06:78:7a:78:78:b1:f4:be:93:b2:a8:ba:
6b:13:0d:a9:af:dd:05:33:7c:31:2d:61:58:1f:7e:
36:9e:cf:09:7a:4f:d5:09:6f:50:47:fa:c2:8c:db:
5d:cb:05:b0:f7:2d:32:ac:17:1c:c5:c5:e1:f5:1d:
d6:f2:55:ed:15:96:5c:1d:f4:7e:65:21:b0:05:aa:
2b:10:2e:4b:09:e9:6d:58:77:ef:cc:61:69:04:c7:
5c:63:8a:c8:5c:7d:ee:2c:93:d7:67:3f:79:5d:65:
d6:6f:14:fe:8e:33:9d:06:4d:2d:1c:98:35:96:28:
a8:9c:6b:44:cf:73:c7:3f:a3:00:83:3a:81:c9:dd:
5c:7c:da:23:1f:43:07:cd:a3:a1:34:9a:4f:0b:a5:
57:2a:82:d8:1d:65:9a:04:69:94:a9:7e:e8:ba:4a:
c8:fe:f8:cb:15:4a:c2:69:52:79:86:3b:f4:0b:7c:
06:5a:a4:dd:1d:c4:cf:3a:00:82:eb:24:1d:68:9d:
f1:6e:fa:9d:9b:88:24:29:c8:94:0c:df:9a:12:f0:
76:a5:a5:6e:eb:8e:17:0d:fc:d8:7d:13:3f:19:80:
a2:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C6:05:DD:F7:6C:79:B3:17:D1:05:BE:1E:37:EA:20:38:F0:79:33
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1cYF3fdsebMX0QW-HjfqIDjweTM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.32.0/20
Signature Algorithm: sha256WithRSAEncryption
71:84:af:20:88:26:6d:15:9c:2b:7e:2d:b1:02:d8:27:c6:e2:
b5:15:19:9f:f4:ab:4f:ff:95:bc:38:8a:52:e0:4e:ee:22:58:
55:62:01:e5:e6:73:22:67:4a:74:ca:09:35:21:7e:65:49:0d:
65:29:d3:91:fc:98:0c:65:4d:f6:ad:5c:bd:a4:7f:80:66:f6:
b7:95:1d:f0:4b:35:af:6e:f7:d4:0f:36:5b:ef:23:00:73:67:
3d:2f:37:dc:40:75:c1:21:a1:d0:32:ea:42:c3:9a:7f:dc:81:
b0:f4:b2:fc:de:47:8c:df:ab:f6:be:06:ca:06:0c:06:0e:16:
d9:4c:02:dd:f8:e4:49:df:28:bc:af:a3:4e:c6:56:5e:f8:33:
d4:21:cb:98:7f:48:93:05:d7:2b:75:f0:9c:f4:78:68:48:38:
41:43:ef:ea:56:3c:21:83:fe:bf:de:bd:e2:9e:9f:fa:08:3c:
10:da:fb:f7:7d:c4:15:84:67:1e:a6:4b:bc:0b:87:c9:22:df:
c8:b6:9b:8f:e5:a9:63:d5:3d:7c:f4:9b:46:f2:db:d2:f0:1a:
13:0c:3d:5d:26:c9:38:82:67:49:21:e1:50:43:db:75:cc:85:
03:65:67:09:08:41:cd:9e:ca:ef:cc:75:91:b5:8c:e3:4f:76:
ff:eb:e4:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org