Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/29hfhjZapxoWYFxQxq9ZJQGxAbY.roa
File: 29hfhjZapxoWYFxQxq9ZJQGxAbY.roa (raw, json)
Hash identifier: zY0SIFFnXc2LVpJUfa+Qy8n1Rzk+6fD8LN7hYI4b/tE=
Subject key identifier: DB:D8:5F:86:36:5A:A7:1A:16:60:5C:50:C6:AF:59:25:01:B1:01:B6
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A60
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/29hfhjZapxoWYFxQxq9ZJQGxAbY.roa
Signing time: Sun 07 Feb 2021 11:37:38 +0000
ROA not before: Sun 07 Feb 2021 11:37:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20940
IP address blocks: 203.74.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2656 (0xa60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:37:38 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DBD85F86365AA71A16605C50C6AF592501B101B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:5a:f0:83:8a:d5:ce:50:d0:10:15:a9:76:31:
c6:c6:3b:76:00:1a:ea:3b:09:72:4f:42:d6:51:c2:
41:29:64:5a:64:7a:f0:f8:74:30:40:e9:85:ea:06:
97:36:55:1b:a5:9e:8c:d0:a3:a6:b7:79:eb:3f:2e:
2e:2d:7d:b0:8c:d7:42:ae:75:b3:d9:3f:c0:d8:a8:
af:fe:06:ce:8d:f3:3c:88:37:dd:d2:ad:c3:01:a0:
98:36:1a:8a:d7:d0:ab:5d:aa:bf:05:03:e2:04:82:
5d:56:d9:ae:05:e4:7e:d9:72:c9:1e:52:52:8b:63:
f5:f4:03:3e:2b:49:ab:8d:07:f1:1d:6e:c6:27:0a:
7f:e4:0e:30:05:13:c3:7d:9c:e4:c4:72:f1:a3:bf:
65:cb:47:3c:cf:d4:3c:8e:3a:d9:2a:a8:a2:43:a2:
af:04:e4:1f:7e:3b:f6:ae:8b:4a:01:8b:41:ea:bc:
a1:6d:50:8e:9e:29:c8:4b:22:e1:91:ca:1b:70:7e:
9e:06:c8:34:1d:d2:67:55:78:31:cd:00:ca:4e:dd:
56:6f:4b:82:17:45:0b:55:52:3c:a9:e9:f3:d2:50:
4b:60:6e:8b:31:cb:54:1c:4d:b5:7a:ce:3d:67:19:
a2:01:5f:26:a5:9d:7f:9c:88:a1:b8:33:92:c9:b2:
c8:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:D8:5F:86:36:5A:A7:1A:16:60:5C:50:C6:AF:59:25:01:B1:01:B6
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/29hfhjZapxoWYFxQxq9ZJQGxAbY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.95.0/24
Signature Algorithm: sha256WithRSAEncryption
04:13:8f:87:10:62:f8:c4:dd:83:ed:9f:8f:8e:63:4b:03:b5:
c0:3c:d9:21:de:f6:01:5b:fe:45:d9:fb:6e:fe:b5:7c:71:ee:
44:ef:bc:78:3e:d5:a0:3b:df:48:2c:87:df:7c:41:c8:01:d8:
11:db:d0:5d:e8:c7:0a:5c:64:95:90:38:0a:b6:33:40:8d:ff:
17:08:59:a5:4e:3b:9c:43:e6:e6:1d:0f:2e:1a:8a:ed:83:f8:
0a:72:02:f5:65:65:9d:e8:ba:3b:b6:7b:b9:07:6d:47:b1:06:
40:d9:62:02:35:20:a8:68:51:01:20:0d:23:b7:21:65:ba:36:
7d:af:7d:5a:d1:a3:e1:5d:e0:90:77:e1:3b:e3:9d:5c:fe:cf:
01:b0:20:6f:f3:03:82:f8:a0:ec:39:de:3a:8f:39:39:8b:1e:
22:b9:a6:3e:b1:77:2f:17:97:0a:76:f3:e4:42:99:cb:b6:2b:
be:9c:3f:af:1f:93:65:c2:ed:f0:36:fc:0a:14:3c:05:eb:6d:
cd:70:82:61:d0:82:2a:2a:2e:18:ff:07:6d:fb:23:71:de:fe:
36:f7:1f:04:51:4b:e5:33:11:38:95:f8:f9:e1:83:64:31:67:
f5:e0:00:8e:a7:b0:39:1b:2f:13:bd:b8:9e:a2:38:e2:56:b3:
17:10:a8:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org