Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/BHxHFyuW4UGXvzavouXXwQDAKRE.roa
File: BHxHFyuW4UGXvzavouXXwQDAKRE.roa (raw, json)
Hash identifier: YGlQjfGjFJL5AFShnMY5Plgb59cjwoci9rFh+qP+s3k=
Subject key identifier: 04:7C:47:17:2B:96:E1:41:97:BF:36:AF:A2:E5:D7:C1:00:C0:29:11
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 087C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/BHxHFyuW4UGXvzavouXXwQDAKRE.roa
Signing time: Tue 29 Sep 2020 09:58:47 +0000
ROA not before: Tue 29 Sep 2020 09:58:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 36040
IP address blocks: 202.39.67.192/27 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2172 (0x87c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:47 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=047C47172B96E14197BF36AFA2E5D7C100C02911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e3:7a:13:03:01:4b:77:2a:56:ce:e9:d1:cc:
44:95:4f:a9:2d:e1:51:c7:a1:69:8f:63:c8:5f:e5:
ff:e9:ca:80:cb:49:6e:d3:3a:42:fc:9f:13:a8:25:
a0:bf:75:8b:06:a1:51:00:70:b2:92:ca:a5:95:6d:
21:11:61:fd:3f:63:35:9d:19:03:c1:13:53:f8:ab:
ec:5e:ce:d4:3f:22:8a:f3:11:a8:09:2a:e7:36:e1:
4a:5b:41:89:42:d5:0e:d8:37:04:3c:e6:a4:61:bc:
b7:e1:da:21:48:cc:5e:dc:81:fc:8e:26:65:8b:71:
2f:e8:48:32:97:35:b5:1c:59:c9:bc:af:c8:83:36:
38:69:88:4e:c6:9d:f1:9c:49:f7:19:2d:4d:67:45:
88:b9:72:1e:3b:3b:08:ce:5d:a7:8c:26:0f:49:f7:
aa:a5:d5:f7:45:37:de:b4:d5:df:c7:0a:83:b8:be:
09:dc:c5:54:f1:8f:88:14:89:6d:95:7a:29:a7:c5:
fe:53:3d:27:28:ea:7d:b7:18:3e:94:9c:e8:f6:66:
b6:ba:b4:5f:ab:f8:de:9e:df:2e:76:61:a2:2a:f6:
6b:97:09:14:44:79:e3:5c:5d:70:eb:4c:6e:54:00:
96:24:90:6b:ef:8a:27:e8:c5:54:52:5d:c3:97:c8:
67:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:7C:47:17:2B:96:E1:41:97:BF:36:AF:A2:E5:D7:C1:00:C0:29:11
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/BHxHFyuW4UGXvzavouXXwQDAKRE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.67.192/27
Signature Algorithm: sha256WithRSAEncryption
88:2c:4b:21:54:18:cf:88:34:82:04:6a:44:42:c2:62:5e:5f:
4a:b5:39:81:97:6c:33:cd:fb:49:95:1e:9c:ed:c4:44:6a:63:
2e:03:83:55:0d:ed:9e:d3:5a:f8:27:89:5b:e3:3a:2e:6f:2c:
b4:a7:65:da:4c:e0:7d:48:c8:8b:34:7e:2d:17:8f:b0:6b:90:
ac:0c:f8:f3:85:f5:8a:39:68:4f:5b:33:b3:76:6f:44:2b:c8:
4f:21:4b:60:63:35:54:ae:20:1d:82:e1:0f:34:78:27:37:b6:
cd:f8:f2:89:73:65:27:84:41:3a:3c:61:c5:2e:d6:ca:f3:e2:
57:6f:00:08:d2:4f:49:5a:1a:1f:31:29:aa:e4:c5:2f:71:bd:
59:ec:fa:a1:fa:9d:de:6f:ed:bb:7f:99:31:af:38:21:49:ac:
cd:37:0d:4b:6c:c0:97:78:57:a8:7d:8f:cf:65:a9:08:ab:c6:
c3:b3:95:6e:77:61:cf:b6:b5:c1:14:99:c6:5d:d3:b1:c2:7c:
b7:c9:f7:cd:ef:05:6b:83:6a:4f:ab:61:4c:be:95:cd:df:c0:
ce:22:58:97:f6:ac:48:36:e0:fc:3a:04:bb:66:62:f5:42:d1:
82:15:30:1d:f6:db:75:90:66:f7:31:61:da:39:c5:64:d4:58:
f1:15:00:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org