Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/970DeAcD5XxhS2hYKB3ahJoiHmY.roa
File: 970DeAcD5XxhS2hYKB3ahJoiHmY.roa (raw, json)
Hash identifier: uNvr8bcE8gjY0QYx1OHPpt6mudSuAmi9NsUJry6oTtA=
Subject key identifier: F7:BD:03:78:07:03:E5:7C:61:4B:68:58:28:1D:DA:84:9A:22:1E:66
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/970DeAcD5XxhS2hYKB3ahJoiHmY.roa
Signing time: Thu 15 Sep 2022 02:48:42 +0000
ROA not before: Thu 15 Sep 2022 02:48:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17714
IP address blocks: 175.111.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F7BD03780703E57C614B6858281DDA849A221E66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ff:b2:04:52:ad:6d:38:ab:90:32:b4:d3:da:
68:e3:b8:ef:f8:72:d5:e4:b3:be:7a:67:2c:aa:d2:
5e:03:4b:84:9e:34:56:ba:6a:4d:36:29:d1:ec:10:
14:54:6e:fa:bf:5b:6f:22:d8:c6:e9:e9:cc:08:eb:
fd:70:bf:3d:f5:ca:b6:16:cc:3f:51:77:fb:9f:71:
63:92:07:68:d0:38:4c:97:47:21:a6:4d:c4:61:ba:
69:9e:8d:c9:e5:71:ac:56:da:39:2a:23:23:47:65:
93:87:3a:f2:3a:98:14:64:a1:8d:ca:c7:47:7b:e9:
1d:19:b6:66:1a:f1:4a:f4:05:10:7d:7f:d2:cc:ea:
3f:4a:88:1d:3a:79:86:90:b8:7f:f5:17:b9:1c:fa:
28:5b:3b:28:56:ba:d2:23:87:b3:23:94:c0:4f:a4:
55:71:55:a7:22:03:5e:45:43:4b:0a:c5:c1:a3:33:
e6:cf:3e:b5:14:cc:7d:8e:cb:89:91:52:c6:08:3d:
54:4c:11:78:a9:88:dc:35:ba:39:25:38:3f:9a:53:
8c:89:4e:b9:6b:97:eb:4f:c3:e4:8d:ef:71:c3:33:
dc:49:e2:65:40:55:d2:3d:af:f3:b8:38:85:68:d9:
de:95:e3:c7:33:69:1a:53:01:9b:c0:f6:bd:b6:0f:
96:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:BD:03:78:07:03:E5:7C:61:4B:68:58:28:1D:DA:84:9A:22:1E:66
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/970DeAcD5XxhS2hYKB3ahJoiHmY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.252.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:de:bc:38:c7:15:d5:e2:ec:00:66:dd:06:a9:55:38:7c:5c:
ae:ee:64:10:9e:93:79:7a:1f:77:87:8a:b5:4a:6d:55:92:a2:
1a:90:59:90:07:63:5a:0b:d3:06:03:22:53:6c:94:78:01:c0:
0d:b3:07:19:7b:ee:56:ea:66:e5:68:eb:db:b6:72:81:ef:5b:
9b:62:da:c4:f0:de:74:64:da:4b:cc:1f:be:bb:86:c6:79:ac:
ce:ef:b6:7b:a6:5c:90:02:13:60:2b:3d:e6:78:0c:7e:67:9d:
9b:25:20:3d:b7:3b:f4:3d:99:54:c7:3b:90:a3:2d:01:f5:2b:
31:79:2c:da:a2:93:5c:7e:d7:69:25:b4:83:74:0d:13:27:71:
b4:d1:b4:69:0f:af:a8:81:87:23:3c:8f:68:2b:6c:95:78:88:
2e:5e:81:2b:92:9f:08:c1:a3:6f:b3:8e:58:94:72:fb:76:8c:
39:5e:b6:2a:ee:6e:08:ec:1a:76:31:b7:da:4b:f3:a0:ab:89:
d9:d5:63:b9:14:8b:65:eb:60:71:31:2a:16:3f:20:d1:ca:3c:
21:14:53:48:b8:d2:39:df:8a:b8:34:63:5b:6e:ef:47:b9:0f:
4d:db:07:6a:27:ae:4c:8e:60:88:aa:b6:e1:b8:11:69:6e:92:
5a:56:96:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org