Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/4C8pL9NCCuh8WUyhZQfzTGM8Uh4.roa
File: 4C8pL9NCCuh8WUyhZQfzTGM8Uh4.roa (raw, json)
Hash identifier: ePKLflxecUR6jJKdJxGeOngv6OO99VefF20p1HczJGA=
Subject key identifier: E0:2F:29:2F:D3:42:0A:E8:7C:59:4C:A1:65:07:F3:4C:63:3C:52:1E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/4C8pL9NCCuh8WUyhZQfzTGM8Uh4.roa
Signing time: Thu 15 Sep 2022 02:48:20 +0000
ROA not before: Thu 15 Sep 2022 02:48:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9505
IP address blocks: 175.111.240.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E02F292FD3420AE87C594CA16507F34C633C521E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ae:5b:ab:92:4d:0e:7f:4d:79:ba:e8:aa:ea:
b0:09:bb:ce:ac:5e:b1:91:93:cc:44:22:f6:ed:aa:
2b:8c:b3:74:17:4d:6e:5f:53:e3:b6:64:36:2f:b2:
95:7d:9c:f3:50:1b:9d:1a:e5:7d:74:be:19:7f:9d:
8c:72:5a:3e:e8:d7:09:e3:26:d8:c0:d8:15:15:83:
66:a0:16:4b:64:e2:87:e7:d2:8a:60:07:4f:fe:cc:
34:e8:72:4e:dc:84:18:67:e4:1d:e4:a2:1a:40:ba:
ad:9c:e9:4c:6c:05:b2:36:92:85:77:ff:60:6f:85:
02:78:e1:5e:ba:20:63:66:8a:d9:c9:33:36:62:94:
5d:be:41:66:f6:b8:e1:5e:00:ad:1c:5a:50:c7:f1:
10:b5:43:38:1a:f0:9e:22:5c:9f:cb:03:17:81:d5:
fb:60:2e:42:88:4c:cc:19:90:e0:47:b6:d1:5d:65:
41:8c:b5:e5:37:6d:3b:6a:8e:c4:a7:4d:38:ba:96:
d6:46:2f:7d:99:fd:5f:88:af:33:75:ee:df:ac:0f:
f5:33:05:f4:52:77:ce:1e:2b:5f:0e:04:dc:c8:c6:
6e:ee:21:dd:0e:e2:d5:c9:f6:db:a7:76:e9:7c:94:
ec:95:d9:e5:9d:4d:a4:45:2f:76:d6:06:99:a8:76:
b3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:2F:29:2F:D3:42:0A:E8:7C:59:4C:A1:65:07:F3:4C:63:3C:52:1E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/4C8pL9NCCuh8WUyhZQfzTGM8Uh4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.240.0/21
Signature Algorithm: sha256WithRSAEncryption
6c:02:7c:4b:f5:0c:39:ec:22:1a:31:8a:77:b7:b7:55:ec:d8:
b3:82:dc:16:21:29:ec:59:0f:3c:a7:2b:fe:36:4a:b7:14:b7:
b3:a3:28:7c:6b:15:33:df:d8:50:6c:0a:e6:a1:fe:c6:21:de:
7c:12:06:c7:ac:75:80:70:bc:57:3f:9a:8a:9b:51:f9:9b:96:
15:e4:16:62:3b:da:c3:7f:e2:29:69:c8:27:e0:f8:49:e9:b2:
cc:4f:42:1c:36:f0:35:eb:97:65:31:9e:7a:13:82:0c:96:09:
2b:1d:82:7d:8d:8e:6c:5b:4a:ef:20:51:27:a7:d7:b1:d4:37:
55:8a:ae:fd:6c:a5:2b:16:d8:8a:fe:81:8a:a3:7e:49:f2:28:
a2:92:74:ce:25:51:99:e6:12:10:be:50:b1:31:25:b9:3b:78:
ee:82:35:01:b2:82:2c:3c:e6:4f:20:a7:8d:5d:69:ae:c1:b0:
42:11:21:ca:e2:6c:e8:3c:d0:06:90:98:a0:70:ec:fb:c3:b6:
e3:6b:9b:1c:17:f2:61:ce:d4:86:01:20:eb:d6:01:dc:d1:01:
4a:e1:e9:6e:c0:0b:6b:fc:99:a1:cb:f1:6e:3e:a3:1b:d2:5c:
fe:2a:13:4d:d2:4a:b3:e4:eb:93:5e:1e:0e:cb:a8:97:ed:ba:
fc:af:68:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org