Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/F50eIdaONVB2BKaAWBo0OaBIhds.roa
File: F50eIdaONVB2BKaAWBo0OaBIhds.roa (raw, json)
Hash identifier: UABtzTOOq+qqek34Tr89Fp9960a9+ybaKiRQoQBvQJQ=
Subject key identifier: 17:9D:1E:21:D6:8E:35:50:76:04:A6:80:58:1A:34:39:A0:48:85:DB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A8B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/F50eIdaONVB2BKaAWBo0OaBIhds.roa
Signing time: Sun 07 Feb 2021 11:38:12 +0000
ROA not before: Sun 07 Feb 2021 11:38:12 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 203.66.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2699 (0xa8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:12 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=179D1E21D68E35507604A680581A3439A04885DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:66:24:8b:86:02:54:68:c4:11:c6:43:49:bd:
79:6b:d2:48:85:ea:cb:10:53:a9:9f:2f:0f:17:24:
d9:b0:d9:a7:60:bc:ae:8b:ba:e3:bf:3a:3b:ed:06:
c2:ab:a7:d3:ed:2f:02:12:fe:c6:2f:07:7b:60:ab:
63:8c:83:c8:7f:ee:eb:9b:49:40:31:f2:c5:f6:2e:
cd:90:94:c6:f6:a5:03:b4:23:62:18:d3:4d:62:9d:
6a:b8:17:8d:ee:fe:ce:9b:5a:24:c6:d5:e1:5b:4a:
9a:cc:ba:84:a0:d9:34:aa:52:c4:cf:3a:8b:f3:7d:
38:05:e0:68:35:c2:29:76:e8:23:79:01:db:82:7a:
bf:78:5c:1f:bd:39:4e:d2:89:66:4d:bd:fc:c8:f5:
ae:08:ad:27:a9:09:a3:3c:52:a2:e6:df:b1:ea:cc:
46:cb:d4:8a:2e:cc:6d:16:43:b3:df:53:72:e6:6b:
53:ee:23:4d:6e:15:2d:5a:c3:d9:9b:d1:a4:b5:6d:
8f:cf:9d:ed:91:02:28:25:ee:cc:38:31:61:e9:24:
0b:a3:1a:02:d2:d6:ee:99:65:c6:a1:1a:81:41:85:
e0:99:08:e5:55:d0:d8:92:09:2e:3b:cb:a3:27:25:
f6:22:ce:b6:99:48:81:a8:e3:bc:f3:26:cb:73:0b:
20:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:9D:1E:21:D6:8E:35:50:76:04:A6:80:58:1A:34:39:A0:48:85:DB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/F50eIdaONVB2BKaAWBo0OaBIhds.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a1:ac:a0:35:75:13:97:4b:3c:a8:5e:dd:f2:62:61:2e:66:e9:
60:c5:b3:f6:09:3f:b9:26:8e:8d:bd:eb:09:8c:06:35:5b:45:
fd:2c:b8:71:3e:ab:03:5f:9f:87:ac:a8:95:c9:25:21:1f:6b:
e6:31:46:ba:d4:a1:ff:e8:7d:f3:de:30:87:2a:7f:77:08:66:
44:a9:fb:d4:bb:cd:64:61:91:d8:b4:c0:bd:05:92:09:9f:c4:
23:d3:b6:4d:b7:18:71:70:59:f7:1e:ae:23:df:d5:e7:83:5a:
87:4f:af:b5:85:00:14:0c:fd:91:62:e0:38:a2:af:92:e7:d5:
b8:50:13:69:19:41:eb:a4:2b:a3:48:d3:08:ea:a2:8a:39:b0:
b3:49:bf:82:e3:fc:9e:29:d5:ad:73:8d:e5:c5:d4:c6:39:8f:
dd:b2:7e:6d:20:9c:d9:ab:c7:aa:ec:0b:f5:7b:23:94:66:5c:
95:22:61:95:47:31:4f:ca:1d:e9:b8:62:f4:17:9a:90:48:8d:
1c:fe:2b:55:a2:c9:5f:ef:ec:d9:f5:50:84:fa:da:4c:e4:db:
ae:be:2e:5c:ac:42:94:5a:2b:bd:c0:e4:5b:31:e0:06:1e:1c:
a2:09:b8:ad:71:fe:e4:2a:4b:54:ea:ee:77:aa:72:fe:58:a5:
3a:ea:0d:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org