Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/2wyAJj5Lv552zak95NgGWsvb2p4.roa
File: 2wyAJj5Lv552zak95NgGWsvb2p4.roa (raw, json)
Hash identifier: UovH+xYn+ewNJGZJK007Jm4M19UYevhmKS/IBLODFOE=
Subject key identifier: DB:0C:80:26:3E:4B:BF:9E:76:CD:A9:3D:E4:D8:06:5A:CB:DB:DA:9E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C28
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2wyAJj5Lv552zak95NgGWsvb2p4.roa
Signing time: Wed 29 Sep 2021 02:50:56 +0000
ROA not before: Wed 29 Sep 2021 02:50:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 218.160.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3112 (0xc28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DB0C80263E4BBF9E76CDA93DE4D8065ACBDBDA9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:96:34:ec:bc:d5:da:2b:2e:98:ab:cf:c0:99:
48:e4:4c:90:16:35:91:05:42:15:39:7b:8a:6b:59:
e5:e6:b9:21:e2:5f:49:ff:6c:46:6e:b3:89:cb:26:
66:1e:18:7e:9e:82:5e:59:be:6a:8e:60:70:5f:26:
59:95:4d:bd:88:4f:6f:eb:2a:33:c4:5d:d5:39:a8:
ca:64:a6:1c:9f:4b:3f:9b:b9:c1:66:e4:ea:d6:03:
42:2c:dd:c5:8b:1e:32:e0:0f:98:c0:83:60:a2:7b:
3d:4a:31:e1:7d:87:d9:06:1d:a5:eb:97:6b:30:79:
d7:07:10:3a:22:ac:01:20:0d:0f:5f:c1:3a:42:a1:
7e:2e:06:d7:9b:87:32:8a:bf:1c:d0:36:02:e2:6a:
59:3c:0e:ce:c2:4d:0f:4c:63:c0:d8:fc:ea:91:2a:
96:bb:99:f3:71:3c:ab:7e:b2:15:20:e4:3c:4f:e7:
6e:e6:5b:64:f7:91:d3:1f:f8:a3:03:1b:b2:6c:4b:
f6:1d:ea:73:fc:cb:b2:3c:03:3d:f8:a3:70:11:3d:
a4:e3:ff:68:72:dd:83:b3:b9:f7:b5:5c:15:80:cf:
87:7f:cb:62:63:63:45:20:4d:d4:8e:a1:e9:4e:ac:
44:4f:44:73:76:77:39:93:b1:ac:76:13:cf:b7:5f:
7c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:0C:80:26:3E:4B:BF:9E:76:CD:A9:3D:E4:D8:06:5A:CB:DB:DA:9E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2wyAJj5Lv552zak95NgGWsvb2p4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.160.0.0/14
Signature Algorithm: sha256WithRSAEncryption
ca:c4:15:3f:b2:fe:c7:33:45:e9:a9:e6:44:fc:73:03:0f:e6:
15:67:9a:bd:aa:f6:f1:1e:65:9f:bc:91:4f:ac:b4:cf:0c:32:
58:02:bc:11:0f:d4:63:08:e1:0e:fd:10:f7:ac:66:73:bd:56:
09:02:7d:4a:d8:7c:79:a6:13:7d:42:be:3a:12:85:04:bd:1a:
fd:e6:36:3f:4f:5a:4a:4e:44:4a:2b:ca:a0:55:c5:8b:f4:17:
f9:f2:cc:5a:79:bd:d8:5c:ec:ff:2b:25:c2:54:33:f7:1e:e6:
8c:93:9a:7f:30:8f:f2:d4:dc:e0:f1:af:3b:95:12:5c:a8:df:
a6:00:e3:15:ed:77:92:66:87:3b:f9:9b:70:b6:64:6e:29:9e:
d6:46:7b:bd:01:b9:ad:19:36:02:76:69:d4:97:63:00:76:84:
d7:ae:6f:c8:be:d2:8e:e1:39:b1:9b:8b:0b:d1:3b:ad:95:ce:
61:a8:08:04:56:88:9f:21:87:45:b8:80:4d:c5:3d:82:21:f3:
9f:88:e3:f1:39:5f:97:e2:00:a8:03:74:44:e6:c0:eb:c2:0d:
4d:6c:4a:fd:18:b9:76:20:1f:2b:e4:32:17:c2:c0:81:6b:ce:
25:74:12:f8:8e:b7:6f:f6:ee:17:71:2c:1b:e0:6f:e8:d3:8b:
fd:5b:36:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org