Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Alm2D5zedCzyz-UWSlMUBc5cT4s.roa
File: Alm2D5zedCzyz-UWSlMUBc5cT4s.roa (raw, json)
Hash identifier: sDVXk8J/4NAE223qIwa2BOAqRO2+GS07KG9pgbxYE5s=
Subject key identifier: 02:59:B6:0F:9C:DE:74:2C:F2:CF:E5:16:4A:53:14:05:CE:5C:4F:8B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Alm2D5zedCzyz-UWSlMUBc5cT4s.roa
Signing time: Thu 15 Sep 2022 02:48:27 +0000
ROA not before: Thu 15 Sep 2022 02:48:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 20940
IP address blocks: 203.74.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:27 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0259B60F9CDE742CF2CFE5164A531405CE5C4F8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e0:aa:90:9f:a3:e7:3b:a7:1e:47:ec:2a:31:
ca:81:d6:cb:c3:15:a2:7c:63:16:c7:12:3e:4c:67:
fd:e4:e4:f8:a9:bc:76:8a:35:21:6f:ca:c0:bd:19:
9b:c7:6d:e3:1e:8c:b5:9f:05:3a:38:03:06:f9:db:
2a:6b:62:b8:65:dd:51:f1:fd:ba:8d:2d:70:9b:00:
e3:e9:6a:80:82:c9:70:45:37:64:f3:00:4d:ce:8c:
5d:41:c8:a4:c0:33:7d:5c:95:1f:6a:6d:f9:e7:4f:
4f:69:99:ec:d6:7a:84:27:00:03:b5:42:32:97:2f:
97:4f:04:e1:c7:1c:88:eb:b2:0e:13:6a:a7:83:97:
2b:5c:8b:0f:fe:3d:c8:81:13:7d:d4:dc:d6:a2:b7:
4c:0a:6b:9d:3a:91:3f:17:c2:82:f4:92:71:29:48:
69:be:af:91:22:f8:3c:04:d8:bf:84:97:61:33:06:
e8:c3:98:ac:2f:de:3a:c1:88:86:81:36:60:73:68:
cc:01:57:33:be:13:5e:89:4c:3b:c2:0b:86:e5:fe:
09:b0:f4:6c:03:12:c9:eb:29:ee:c0:01:96:fa:f8:
0c:e4:82:68:eb:b5:20:2c:fb:28:b4:c4:ce:66:7d:
67:f5:00:6a:a9:cb:e9:e7:55:c7:19:51:7f:5c:32:
7b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:59:B6:0F:9C:DE:74:2C:F2:CF:E5:16:4A:53:14:05:CE:5C:4F:8B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Alm2D5zedCzyz-UWSlMUBc5cT4s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.95.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:21:38:c0:1e:63:a7:2e:ba:36:a1:fe:91:c3:7f:61:88:a9:
d4:79:05:83:db:73:71:2f:8e:0e:6f:a4:1c:a4:9e:b1:5f:58:
71:61:9d:a9:3b:7a:b4:18:ec:8d:18:e0:a8:48:3a:de:2c:ee:
4c:f3:3b:77:8f:05:6d:8a:f1:e3:b7:30:1c:1e:a7:c4:2c:07:
e2:18:12:9d:12:82:0d:7d:1b:17:6b:0b:05:13:38:18:09:c5:
35:2b:10:d8:f9:ec:92:bb:ea:73:0c:82:90:6e:f6:6d:b9:9a:
0d:c3:80:91:c6:cf:4a:2d:4e:e1:6c:2a:1e:e8:81:bb:1b:4d:
2c:17:40:1e:cb:a4:ac:0d:d8:38:cc:14:f9:d8:1b:ce:bf:09:
99:c0:fa:5b:d4:9c:b2:96:d1:82:ce:f5:64:91:b3:9c:32:15:
64:ee:70:d7:93:d0:43:be:90:05:6d:e6:ab:4f:d1:56:b5:1a:
04:09:df:e0:0f:c9:7b:5c:e4:84:91:c5:be:dd:c5:88:90:ab:
8e:3b:b0:76:0f:24:ca:ca:cb:1d:95:07:51:05:7e:a4:eb:5b:
43:93:fb:83:90:32:9c:92:dc:e2:20:c8:5a:f1:68:d7:08:16:
b5:54:27:0d:a0:b9:c0:84:28:df:67:aa:bc:56:1d:67:9d:f7:
1e:45:24:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org