Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/BTRrw9w0EX4uhXPsXwSUtEMN1g0.roa
File: BTRrw9w0EX4uhXPsXwSUtEMN1g0.roa (raw, json)
Hash identifier: hy1PE8Lnvzu6EQsTfd8j0rBgh8gdg8hb22r3zaPfjCs=
Subject key identifier: 05:34:6B:C3:DC:34:11:7E:2E:85:73:EC:5F:04:94:B4:43:0D:D6:0D
Certificate issuer: /CN=534C76274A330B071EFD20DB05F6D0429293743E
Certificate serial: 0B40
Authority key identifier: 53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/BTRrw9w0EX4uhXPsXwSUtEMN1g0.roa
Signing time: Thu 15 Sep 2022 02:48:04 +0000
ROA not before: Thu 15 Sep 2022 02:48:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7481
IP address blocks: 2001:7fa:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2880 (0xb40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=534C76274A330B071EFD20DB05F6D0429293743E
Validity
Not Before: Sep 15 02:48:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=05346BC3DC34117E2E8573EC5F0494B4430DD60D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:48:3f:4f:db:06:a1:f3:84:e1:22:02:1d:f3:
1d:62:80:33:c4:f5:56:ea:c0:2c:73:ad:84:4a:a3:
87:28:38:6f:4b:08:c6:82:92:57:38:5a:83:00:1d:
e6:5f:02:7f:f0:ea:21:20:e5:a9:b7:3e:6d:31:35:
e9:73:60:26:5f:29:7d:2f:92:0e:50:f4:50:c4:58:
af:48:bf:b3:e6:d9:4a:4a:c3:cf:b2:d2:b2:af:6b:
2d:dc:bb:a7:7b:ee:30:80:12:a5:cd:25:3f:2c:7f:
e4:9a:78:49:1d:4f:60:df:6e:5c:6c:cf:4a:23:02:
63:6c:36:4e:7a:57:df:73:66:26:84:89:3c:82:87:
34:a9:83:a9:ca:ef:e3:00:89:f1:df:be:18:cc:a5:
3c:fd:66:fd:10:02:6a:09:10:02:2c:b3:7d:16:98:
73:63:cb:5c:68:96:07:65:0d:98:22:56:28:a6:9a:
e6:8d:79:e4:26:72:fc:22:21:b5:9e:eb:9c:83:ee:
1d:13:3d:25:8d:fd:d9:f5:ac:f2:97:0b:ff:02:60:
bd:67:8c:bf:7c:16:e9:23:06:df:87:d0:98:dc:d5:
e6:28:19:4b:15:21:06:1d:5c:40:ca:c8:7f:9d:2b:
c0:d7:76:1b:ce:2b:4e:9b:6c:64:7c:0a:e9:da:b7:
46:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:34:6B:C3:DC:34:11:7E:2E:85:73:EC:5F:04:94:B4:43:0D:D6:0D
X509v3 Authority Key Identifier:
keyid:53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/BTRrw9w0EX4uhXPsXwSUtEMN1g0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:7fa:1::/48
Signature Algorithm: sha256WithRSAEncryption
04:eb:2b:55:33:08:e6:a8:e2:9f:84:0c:02:6a:43:2a:f8:da:
c4:af:41:f7:c0:6f:ae:96:02:20:9b:7e:26:d2:b8:d3:a2:43:
9c:8d:ae:fa:16:96:7c:b2:f2:c3:1f:c7:b0:6f:ce:e2:2e:f8:
03:dc:75:f6:e6:90:b0:c6:7d:db:3f:ff:12:ca:dc:7a:ad:63:
f6:31:4d:e3:3c:29:bf:0d:a1:3a:85:6e:90:39:7b:00:56:83:
78:a1:de:65:19:e8:4e:c7:85:78:98:c9:e9:48:1c:1e:67:7d:
ee:7f:e8:d2:92:41:6f:a4:a4:e7:28:b7:65:8d:b8:b3:28:61:
17:4d:f5:fb:e7:95:f5:9a:d9:0c:6d:ac:d0:98:61:16:a8:a7:
c9:a0:0d:54:f9:24:85:45:3f:7c:9b:89:39:b4:50:bd:d8:bd:
52:ff:43:91:6b:3d:d2:7d:cf:85:b9:8e:04:80:76:bb:eb:ba:
d7:59:ff:85:a4:e0:46:01:e0:46:57:8b:8e:84:fc:57:55:38:
5f:c0:e8:8c:68:22:49:ac:3a:5a:19:ca:2b:d4:5a:42:2d:7a:
19:aa:ab:0c:73:29:f0:9e:72:3d:ab:e3:a2:b5:f2:99:9c:c9:
e9:2a:eb:6d:bc:a5:70:1c:7a:2d:7c:ff:d0:45:0f:cf:3f:66:
ad:a7:fc:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org