Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/458e_8lmtooZok3MU6XNO4V8M4Q.roa
File: 458e_8lmtooZok3MU6XNO4V8M4Q.roa (raw, json)
Hash identifier: nho0wqm+LpYM0YOYqFG/LhJA1vfbIUHSOch5dCpewEE=
Subject key identifier: E3:9F:1E:FF:C9:66:B6:8A:19:A2:4D:CC:53:A5:CD:3B:85:7C:33:84
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C0B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/458e_8lmtooZok3MU6XNO4V8M4Q.roa
Signing time: Wed 29 Sep 2021 02:50:47 +0000
ROA not before: Wed 29 Sep 2021 02:50:47 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 111.240.0.0/12 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3083 (0xc0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:47 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E39F1EFFC966B68A19A24DCC53A5CD3B857C3384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9a:24:8a:27:12:b6:95:4e:ce:54:00:63:a2:
7a:da:e2:6e:2a:54:06:a0:af:84:8a:2e:99:f0:0b:
83:c5:77:4a:77:47:da:f6:43:db:78:e0:31:f0:cb:
f2:3d:d6:de:47:88:18:25:81:2e:fe:97:40:f8:6c:
de:22:08:ac:47:f7:08:d6:94:d9:f6:dc:c3:5f:be:
e7:3c:93:ca:c0:22:16:b7:47:c0:31:73:d0:30:c2:
a0:04:24:2d:80:db:d6:3c:64:a6:4b:ea:1c:1a:df:
e1:f8:e4:39:99:9f:52:cf:3e:4b:90:2f:f7:57:f4:
4d:eb:ca:32:ec:41:60:3c:b3:91:5b:2c:2a:91:fc:
c8:f2:9e:db:8b:bd:fd:20:44:27:8c:ff:00:5a:df:
77:7c:75:4f:94:f3:30:e5:39:51:47:a1:5f:5b:c6:
09:35:5a:4b:d5:98:db:55:e2:a2:d0:b1:1d:00:83:
65:b2:40:ee:4b:af:12:52:55:a7:b6:54:95:1e:9e:
24:b0:4d:4a:60:9e:70:b0:58:0c:ab:97:45:59:7a:
11:6f:1c:46:9f:39:cd:dc:8a:a2:38:3d:d2:ad:5c:
55:c7:ec:e4:a9:b6:c5:09:ef:99:0b:85:a4:cf:66:
cb:c5:bf:99:4b:53:ee:85:ce:b2:62:d2:ec:23:98:
36:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:9F:1E:FF:C9:66:B6:8A:19:A2:4D:CC:53:A5:CD:3B:85:7C:33:84
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/458e_8lmtooZok3MU6XNO4V8M4Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.240.0.0/12
Signature Algorithm: sha256WithRSAEncryption
9a:54:41:ad:6f:a8:36:a1:6b:62:79:1b:4d:b0:53:d7:e1:5b:
e6:36:65:d1:41:9b:0e:df:8e:a7:d0:fc:53:db:73:ca:94:dc:
17:a1:c9:93:15:e9:be:d5:99:69:02:7f:39:57:a0:66:41:6c:
f1:df:af:aa:cf:2f:0a:9a:69:8c:8f:dc:02:12:8a:bc:ba:03:
67:db:c3:41:48:55:6f:8a:5c:7d:3a:55:16:5d:81:35:42:c2:
02:16:cd:3b:63:49:43:3b:e0:21:30:52:66:83:1b:db:98:54:
81:03:79:d9:8b:1f:71:1b:4d:a9:cf:85:aa:12:52:04:4f:f6:
1d:1b:6b:96:72:e7:60:af:23:a5:7f:3d:5f:27:9d:c1:23:62:
30:e8:9d:ca:fa:b8:09:91:1d:80:76:54:6b:9b:ad:9b:2c:db:
ca:0a:23:5b:8a:e4:21:3c:06:2c:0e:38:75:a4:01:43:4b:29:
2f:8c:4c:31:79:a9:c7:8f:73:77:b0:aa:e4:ef:9a:79:44:60:
93:11:4e:e3:04:6e:f0:29:f0:65:ac:4a:d4:0c:a8:4d:27:16:
6d:c9:25:d6:02:22:62:ed:ca:ee:33:4b:33:ab:2d:f1:9c:f8:
65:83:4a:2c:0b:d9:4b:65:37:a9:1f:6e:ec:9d:d1:8b:76:eb:
17:e9:c2:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org