Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/6waZbCN3por0LqI2W7wWskJcEOA.roa
File: 6waZbCN3por0LqI2W7wWskJcEOA.roa (raw, json)
Hash identifier: hRuPRURzDpOSibTqxiBHkJBSNG2eTwYEr40KsJDc808=
Subject key identifier: EB:06:99:6C:23:77:A6:8A:F4:2E:A2:36:5B:BC:16:B2:42:5C:10:E0
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/6waZbCN3por0LqI2W7wWskJcEOA.roa
Signing time: Thu 15 Sep 2022 02:48:25 +0000
ROA not before: Thu 15 Sep 2022 02:48:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9505
IP address blocks: 175.111.224.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:25 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EB06996C2377A68AF42EA2365BBC16B2425C10E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b0:18:d0:63:b0:dc:c8:9a:6a:54:5f:48:17:
c3:36:1d:6f:93:6b:f8:bf:38:05:79:45:80:fd:b0:
5b:ec:a3:3b:53:13:24:f7:54:b2:2d:5d:63:39:c5:
48:87:35:32:94:7c:0b:30:32:11:71:2f:6a:4d:80:
60:7b:e9:1b:47:6f:77:db:46:a8:41:80:21:a7:e3:
4d:31:6b:d2:68:29:04:c1:55:6e:fa:06:1e:92:a8:
72:a5:5b:8c:cd:60:dd:76:8f:37:b2:93:84:2a:30:
ae:6c:dc:a1:fa:a6:61:34:cf:f5:21:6b:cd:82:92:
a3:a1:09:62:2a:a1:9b:17:05:a3:25:be:fd:7b:6a:
c6:4c:32:0e:eb:e8:fa:33:e9:40:97:f0:92:ff:d9:
02:4c:df:5d:82:86:04:59:dd:23:96:b8:c6:bf:6b:
63:8c:96:01:73:d9:2a:cb:3f:71:e1:2c:fd:e3:5b:
0f:02:87:69:d9:f4:cd:19:ec:ba:6d:4b:c7:96:f0:
51:5a:49:90:49:c7:dc:92:c3:25:97:c5:0f:50:97:
d3:3c:7c:b5:b3:22:3d:a9:79:1c:6e:46:3e:fb:1a:
aa:e1:50:77:90:cb:0f:99:cc:10:79:1b:1d:20:15:
a7:dd:c3:fe:5c:c0:84:69:7a:e2:07:ef:42:39:c7:
90:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:06:99:6C:23:77:A6:8A:F4:2E:A2:36:5B:BC:16:B2:42:5C:10:E0
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/6waZbCN3por0LqI2W7wWskJcEOA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.224.0/20
Signature Algorithm: sha256WithRSAEncryption
ad:cf:e9:c5:25:ba:ea:2b:12:d3:7e:99:b9:dd:59:c8:50:0a:
03:4a:65:9b:25:c6:54:74:ff:4b:8f:ab:ea:bb:b8:db:f8:c7:
2f:e4:d1:21:0d:2d:44:f5:57:cb:e9:aa:67:7a:be:4e:89:ad:
63:97:d9:62:c3:21:38:34:07:9d:01:90:0e:11:16:b2:64:9a:
f8:6d:48:29:19:7e:99:7d:65:4b:ee:c8:f4:14:55:98:c0:d8:
33:69:10:c2:ac:e4:aa:b3:bc:34:c1:00:c9:cd:4b:6d:c1:0f:
c8:84:00:74:d6:75:5c:b7:fe:15:64:b4:c8:e6:d3:98:04:09:
36:39:e0:35:40:ce:db:c1:ef:73:77:45:06:2d:0a:60:a0:38:
63:ea:bc:b0:c2:90:66:b7:8f:0f:e0:85:bf:6c:94:ac:40:e5:
68:8b:4e:9d:ca:34:56:2d:53:66:99:1e:b3:5f:f6:64:dc:36:
b0:19:b7:83:a0:a4:2f:11:b8:11:df:c7:a4:1c:69:6b:78:3e:
3d:fe:4a:66:10:c7:1a:ed:5e:34:92:1f:7d:b9:e4:26:2b:c1:
bf:cf:b6:d1:b4:a9:ce:d6:1b:f4:9a:30:c0:d3:e4:58:32:52:
a1:c1:d1:f9:c1:32:e1:da:57:eb:61:7f:d4:09:cb:5b:4d:c7:
68:7f:c7:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org