Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/6GgmnIhQkyHOhRKsZuk9_vBZ4cw.roa
File: 6GgmnIhQkyHOhRKsZuk9_vBZ4cw.roa (raw, json)
Hash identifier: OBkX83lyUMYnQ2H3IVBFk4Dmmgn3uJLtdbZlOaf+rok=
Subject key identifier: E8:68:26:9C:88:50:93:21:CE:85:12:AC:66:E9:3D:FE:F0:59:E1:CC
Certificate issuer: /CN=534C76274A330B071EFD20DB05F6D0429293743E
Certificate serial: 0A50
Authority key identifier: 53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/6GgmnIhQkyHOhRKsZuk9_vBZ4cw.roa
Signing time: Wed 29 Sep 2021 02:51:25 +0000
ROA not before: Wed 29 Sep 2021 02:51:25 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7481
IP address blocks: 2001:7fa:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2640 (0xa50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=534C76274A330B071EFD20DB05F6D0429293743E
Validity
Not Before: Sep 29 02:51:25 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E868269C88509321CE8512AC66E93DFEF059E1CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:56:90:db:f7:97:99:0e:f4:4e:44:bf:0f:7c:
87:e1:37:4e:c9:c9:16:5c:70:38:a6:43:4b:83:0e:
36:ec:19:ec:87:8c:58:e8:70:1e:8a:aa:f0:b2:fd:
60:13:06:7c:d9:cd:a7:31:f0:b3:75:2d:da:09:97:
b9:eb:86:f3:4d:29:f2:aa:bc:71:a2:41:6f:8c:99:
36:20:5c:bb:0e:f7:e4:1b:d2:57:0f:fc:7d:c7:bc:
9c:fa:8a:e7:8f:2a:90:9a:d9:3c:74:a8:e5:af:75:
e5:d3:a6:7c:f0:aa:89:90:3f:c4:79:db:c2:79:15:
1d:b0:7a:a5:a4:b9:3d:d1:09:17:00:52:df:4e:96:
e7:84:5c:0d:4e:f3:86:f3:f2:d5:c0:1d:8a:09:97:
27:e8:f6:50:99:b3:c3:78:bf:41:ad:d8:16:f6:59:
f2:9d:69:26:58:de:9d:ab:ab:8b:9b:b4:da:41:40:
46:18:1a:39:fc:00:73:49:d6:66:55:ed:6e:23:5a:
56:81:8d:e2:39:da:2a:98:ad:a3:df:2c:29:05:26:
c6:e4:a0:5d:20:88:ae:b1:53:ad:fe:3f:57:a9:79:
44:51:1b:9b:9d:10:b2:27:bb:b9:17:ab:0d:4f:86:
97:de:a2:30:d9:be:4a:16:55:bf:c2:7d:ef:d6:41:
01:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:68:26:9C:88:50:93:21:CE:85:12:AC:66:E9:3D:FE:F0:59:E1:CC
X509v3 Authority Key Identifier:
keyid:53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/6GgmnIhQkyHOhRKsZuk9_vBZ4cw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:7fa:1::/48
Signature Algorithm: sha256WithRSAEncryption
2b:b0:a0:7c:73:e5:6c:d6:c4:66:2d:b2:3c:b3:34:8c:21:a0:
80:44:d7:4a:be:c7:a5:a6:f1:e3:d7:f9:15:3c:8c:68:b0:78:
ba:e4:75:0c:69:ff:d0:94:7c:97:0a:9a:bf:d8:88:dc:1e:76:
fa:27:78:4e:96:a3:ac:f7:19:ea:08:fd:8f:d6:58:39:b1:e8:
d8:27:70:5b:a0:07:0b:18:e2:d2:e9:f5:bc:5a:87:e4:46:fc:
2e:87:90:cd:66:85:60:0f:be:c3:59:8d:ac:27:cc:59:82:1d:
81:5b:de:57:f0:5b:3c:d3:65:37:f8:f5:67:b2:3c:8c:88:c4:
10:f2:ee:32:6a:ff:1c:27:2a:56:e3:48:7c:23:86:7e:4f:54:
34:9e:2c:82:d2:87:14:90:bd:ba:15:53:a4:ad:16:29:cf:97:
39:fb:28:be:ab:ef:db:9e:c1:ed:ac:9a:3e:00:14:ec:13:e4:
98:b9:11:ed:c5:cd:75:ef:39:5c:62:66:6b:cc:d1:ba:25:43:
a1:ea:60:18:21:a0:3e:3f:56:8a:d5:a0:ad:f6:2c:ee:62:84:
75:93:4f:2a:67:9b:96:4d:5d:8a:92:20:f7:db:f5:e1:ae:65:
ce:5a:9b:e3:61:03:f4:32:c9:35:b8:40:59:bf:e4:97:81:03:
41:d8:19:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org