Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ICuneBI8UOdnNaA58WztJnJ5H38.roa
File: ICuneBI8UOdnNaA58WztJnJ5H38.roa (raw, json)
Hash identifier: fQWXlBRvImVuGVDoIZt+jUkHnoG5cUMlhtQgEKlBUFU=
Subject key identifier: 20:2B:A7:78:12:3C:50:E7:67:35:A0:39:F1:6C:ED:26:72:79:1F:7F
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 086E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ICuneBI8UOdnNaA58WztJnJ5H38.roa
Signing time: Tue 29 Sep 2020 09:58:44 +0000
ROA not before: Tue 29 Sep 2020 09:58:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20940
IP address blocks: 2001:b034:700:580::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2158 (0x86e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=202BA778123C50E76735A039F16CED2672791F7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d1:77:3b:8e:b0:78:ff:74:ab:c4:6c:23:2b:
49:74:75:b7:38:6b:8a:59:d5:50:38:25:7d:7a:0f:
9c:94:06:ba:f6:80:bd:91:13:29:26:9c:40:3a:e5:
90:1f:e4:f8:ef:fa:4d:d9:83:44:3f:23:c3:c9:15:
91:3b:5f:18:96:75:fa:ed:66:be:38:55:79:4a:57:
7b:96:9d:dd:83:63:38:18:db:fb:3c:77:2e:e1:fd:
c9:e1:ea:de:9e:c6:8b:76:47:f8:18:a4:65:39:6a:
b9:a5:e2:ab:ed:23:9c:26:50:76:4f:c1:bd:f2:02:
0a:bc:9c:46:f9:89:46:09:d1:35:e0:a6:5e:14:5d:
40:d4:9b:a0:13:61:ee:45:d2:57:12:c6:a7:65:91:
38:0e:0d:ff:3a:13:ae:82:c3:10:18:20:b3:89:f0:
ac:01:22:d2:cf:3a:50:44:25:4d:9a:b9:b4:9c:a3:
aa:db:f4:64:d6:98:90:7c:3e:39:c9:20:3c:b9:cc:
fc:a0:e7:f0:98:a9:7f:99:db:78:83:db:df:04:df:
11:a3:8e:78:51:a2:17:26:16:55:ad:1f:c9:c8:59:
9f:c5:cc:ba:c3:2d:e2:11:b0:4c:9b:fb:c8:68:c8:
ba:87:cc:f2:31:81:98:0c:60:c3:6e:e5:c9:e8:08:
9f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:2B:A7:78:12:3C:50:E7:67:35:A0:39:F1:6C:ED:26:72:79:1F:7F
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ICuneBI8UOdnNaA58WztJnJ5H38.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b034:700:580::/64
Signature Algorithm: sha256WithRSAEncryption
04:f5:00:51:e9:25:9c:13:de:69:22:ff:55:53:72:4e:2d:bb:
7e:10:74:12:43:5e:11:a2:71:3f:d0:57:e7:72:67:95:70:4d:
4a:62:3a:79:b6:6b:d4:d5:c1:09:68:df:fc:4f:aa:64:56:b5:
6a:31:ba:88:fb:41:d5:c6:1f:aa:50:49:99:22:33:af:69:50:
f7:2b:89:63:04:98:cd:7c:47:5c:85:95:94:8d:08:4f:06:ac:
f0:1e:bf:83:ce:70:4f:27:97:c7:0e:6f:a9:cd:64:33:ca:bc:
a5:38:d4:76:9a:b6:6d:41:32:5e:3a:6f:d2:a5:31:6e:15:75:
b1:7b:48:ef:16:80:4f:11:4c:8c:ab:ab:6a:b0:1c:58:c2:64:
f0:4f:1f:77:38:ee:2a:e2:0e:d4:8b:72:66:7b:fb:bc:b9:f5:
31:66:ca:99:4e:40:d3:3f:a6:c7:20:53:29:70:db:73:ea:a8:
95:48:33:63:46:87:e0:11:42:ea:b1:b6:17:dd:2b:c0:39:ed:
b3:2f:bb:03:ba:e8:1f:fd:92:23:98:61:76:e3:55:cf:9b:b2:
09:0d:7b:68:51:bf:f5:d8:88:5d:f1:89:4e:2a:dd:6e:f9:1e:
32:28:88:34:c6:31:5b:dd:4a:01:e1:f3:5d:e0:fd:f0:60:e5:
f5:4f:79:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org