Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/8ZG-tdcdUF3SLSbeLIH-2gXw83g.roa
File: 8ZG-tdcdUF3SLSbeLIH-2gXw83g.roa (raw, json)
Hash identifier: xB1mnN/CT+QdmHtXKlH2VRzhsTttb75er5KG8QjnvxU=
Subject key identifier: F1:91:BE:B5:D7:1D:50:5D:D2:2D:26:DE:2C:81:FE:DA:05:F0:F3:78
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 087B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8ZG-tdcdUF3SLSbeLIH-2gXw83g.roa
Signing time: Tue 29 Sep 2020 09:58:46 +0000
ROA not before: Tue 29 Sep 2020 09:58:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 210.59.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2171 (0x87b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:46 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F191BEB5D71D505DD22D26DE2C81FEDA05F0F378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e7:6a:d5:5a:98:9f:1d:e9:71:0a:84:1b:6d:
a5:96:0c:b0:e0:6e:c4:0a:ff:85:40:9f:91:f2:ec:
de:a5:2e:78:75:45:35:c9:94:dc:e3:89:4e:dc:76:
e0:26:ff:08:14:5e:ba:a6:36:38:d8:2c:55:0f:cb:
f7:66:cc:05:c9:26:35:0b:47:c3:e1:05:49:c5:a8:
3f:9d:c8:b3:9b:c3:b3:94:bf:80:05:c9:48:da:ed:
c7:c3:38:22:18:d3:c1:5a:91:ca:53:28:d9:c2:ce:
28:b5:84:b2:ca:e4:67:2b:53:c8:1e:68:d3:05:05:
60:6f:92:bc:b7:a4:5e:38:82:46:ea:79:62:97:6b:
6c:10:36:82:76:59:fd:90:36:85:dc:bc:e0:21:90:
ff:09:2d:3c:69:05:e0:cf:d4:41:17:af:66:1b:b7:
24:d6:d7:e5:92:a6:28:7a:5a:5b:34:7f:f2:f7:39:
42:31:bd:70:7c:bf:56:27:d6:c5:ad:d7:7d:92:7f:
42:8a:f1:07:eb:01:31:6a:c3:c1:f2:7c:0a:3e:3b:
e2:ad:d8:13:86:2c:82:17:4a:c6:23:28:8b:8a:34:
7f:1f:6c:39:c1:46:08:cd:0d:a8:d6:69:36:88:b1:
00:99:8b:43:95:2c:60:4c:1a:9d:16:c2:34:5e:ed:
f1:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:91:BE:B5:D7:1D:50:5D:D2:2D:26:DE:2C:81:FE:DA:05:F0:F3:78
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8ZG-tdcdUF3SLSbeLIH-2gXw83g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.59.128.0/17
Signature Algorithm: sha256WithRSAEncryption
b5:58:4a:57:b6:f9:7f:9a:5c:bf:26:c7:8b:8e:29:26:4a:1e:
e9:c0:c6:d5:09:6b:69:9c:38:d5:c6:84:87:06:f1:72:04:c9:
38:bc:fe:51:b1:14:58:59:c6:69:16:ea:50:fa:88:24:f9:f2:
4c:2c:d9:ff:e7:de:71:6c:8c:14:f6:08:a6:21:af:9e:a4:e4:
0f:99:29:c5:7f:45:19:4a:99:30:4a:e2:e2:24:37:54:2a:b2:
87:f4:e7:4c:64:a4:d4:8e:8a:5a:f6:40:48:b6:4d:31:b2:bc:
30:4a:1c:02:90:e7:c5:e8:c4:8e:e2:29:96:ac:d8:da:41:cf:
88:cf:72:10:d1:9f:c8:3a:a5:c8:cd:f9:60:75:ff:69:40:45:
f6:a4:e5:54:2b:b9:58:42:96:c9:8d:1e:f8:a3:3b:ce:3d:eb:
50:a4:cd:6e:0d:1e:3e:c6:00:44:98:64:ca:e9:9c:27:87:3d:
2d:f6:ed:b7:56:a4:8e:33:09:4f:18:15:3a:08:a9:1e:22:bd:
13:a5:03:cc:0c:81:a1:a9:c5:29:a7:30:b5:46:e4:0f:5a:a1:
39:83:10:9b:69:f5:c3:ee:d8:79:63:b8:87:94:fe:3c:c1:d1:
09:31:ab:05:ae:7e:f5:55:40:fd:3b:c2:50:3d:0a:a2:f9:c3:
8b:43:d5:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org