Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/6HwH7rMjB9PvLRPPnJVfM5prBAs.roa
File: 6HwH7rMjB9PvLRPPnJVfM5prBAs.roa (raw, json)
Hash identifier: zpr9w2jEHndObNpOcxYBWpH49qEKR0jLMlzhTcZ+muw=
Subject key identifier: E8:7C:07:EE:B3:23:07:D3:EF:2D:13:CF:9C:95:5F:33:9A:6B:04:0B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AB1
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/6HwH7rMjB9PvLRPPnJVfM5prBAs.roa
Signing time: Sun 07 Feb 2021 11:38:45 +0000
ROA not before: Sun 07 Feb 2021 11:38:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 218.166.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2737 (0xab1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E87C07EEB32307D3EF2D13CF9C955F339A6B040B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:86:c4:49:36:93:3f:2f:52:49:53:80:ff:96:
f5:de:51:10:92:e3:7f:b3:d5:cf:94:eb:56:23:d9:
43:67:53:bb:3b:f0:8b:88:de:c9:3d:78:61:cb:0a:
a2:4c:be:0d:33:01:bc:6b:b8:08:e9:09:56:34:62:
2c:68:6f:7d:ea:c8:01:8e:c2:43:32:0a:24:c9:f8:
29:12:36:d6:03:ab:af:07:cc:82:31:d6:54:5d:d6:
a4:d5:80:96:3b:0b:8a:20:c0:6c:55:6e:60:5f:7b:
0d:4f:87:07:ce:ad:98:23:9c:d0:1a:dc:97:f9:8a:
06:ec:8a:ac:2b:b5:db:20:d3:18:0e:e0:7b:0f:7c:
52:3b:c1:c2:ce:7c:b7:b3:f9:65:9f:e5:56:0b:55:
ae:13:e1:3d:17:8b:ba:24:ee:7e:6e:5e:a5:f6:ed:
09:fd:ed:74:57:ed:21:3f:ad:25:6c:69:2f:db:12:
a6:16:7e:35:0e:d4:ee:e3:4c:5c:fb:b1:35:b5:1f:
1e:37:79:08:4d:0f:57:41:76:01:c0:1f:75:28:05:
0c:57:42:e4:f7:40:90:ac:4a:6c:29:30:18:74:c0:
89:00:18:6d:d3:8b:39:a2:9f:f0:47:95:c9:e6:b8:
48:1c:7f:c9:c7:97:c4:09:36:b1:0f:cd:18:44:73:
26:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:7C:07:EE:B3:23:07:D3:EF:2D:13:CF:9C:95:5F:33:9A:6B:04:0B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/6HwH7rMjB9PvLRPPnJVfM5prBAs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.166.0.0/15
Signature Algorithm: sha256WithRSAEncryption
d0:05:24:b9:9c:ab:97:b0:13:42:83:17:25:24:8a:5f:be:0b:
02:b1:1b:12:ec:4d:86:72:ff:4a:21:9b:29:67:8b:52:c3:d2:
6e:7a:3e:d2:2c:7d:b9:f0:11:29:7d:fc:f5:70:85:7d:e2:ca:
0c:0c:5e:8a:55:d0:d9:85:a4:15:dd:5b:b0:6e:ef:b6:5f:1c:
81:9b:f2:fb:dd:07:b1:df:83:d1:36:c1:e2:f5:f4:fd:aa:cc:
90:92:ec:aa:e8:77:a5:54:8f:60:1a:05:34:ea:e0:2c:ea:e6:
48:5f:c6:cc:3f:4e:56:37:33:bb:69:c6:64:98:04:5b:3f:55:
bb:3b:64:fa:63:f8:79:6a:b1:58:c5:8f:3c:2d:5e:09:37:34:
e1:39:7d:dd:4f:24:a1:ad:12:b2:ce:28:c6:49:5d:af:5e:59:
18:90:b2:aa:cc:31:31:da:3e:18:bf:c4:67:5c:4e:a0:c6:77:
b4:67:28:d9:4f:f1:49:69:cd:52:e1:a7:b5:86:d4:0d:25:56:
0f:9a:0d:ab:7a:a7:11:90:1d:7d:df:f1:60:93:b3:91:63:63:
91:f6:ea:35:12:58:cb:5c:39:09:0d:18:d9:d3:8d:6a:3f:3f:
97:d0:32:55:91:73:1f:2b:e1:88:e9:c1:10:65:2c:6b:3d:17:
a7:c3:bd:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org