Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/J1JF431U-ahKaDlvEkgxZE46I1o.roa
File: J1JF431U-ahKaDlvEkgxZE46I1o.roa (raw, json)
Hash identifier: MfkUzezNrCPQka6UEz4JxnMk4x5DlMbmmQAebYwm3zw=
Subject key identifier: 27:52:45:E3:7D:54:F9:A8:4A:68:39:6F:12:48:31:64:4E:3A:23:5A
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0863
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/J1JF431U-ahKaDlvEkgxZE46I1o.roa
Signing time: Tue 29 Sep 2020 09:58:41 +0000
ROA not before: Tue 29 Sep 2020 09:58:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20940
IP address blocks: 203.69.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2147 (0x863)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:41 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=275245E37D54F9A84A68396F124831644E3A235A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5b:8f:92:ba:00:2c:b2:4d:a6:2c:67:11:0c:
0d:8b:ab:de:46:21:55:53:cc:b2:cd:e1:ed:f0:a0:
3b:24:d8:b4:27:64:c0:12:1e:2f:26:fc:e1:88:35:
68:48:e8:13:6e:30:81:44:07:52:cd:ba:e7:35:b7:
ca:14:0f:85:e1:6c:d8:8a:40:8b:68:a0:44:39:12:
cd:cd:4d:1b:df:b9:5d:b9:bb:d9:67:75:3d:43:2c:
93:78:21:56:2c:bd:96:f4:fa:79:e5:da:f1:bf:26:
f3:78:51:bc:24:49:cd:46:84:46:03:57:1b:a3:80:
b9:b4:ac:4e:23:fc:97:ac:d2:6d:43:ff:5f:e0:77:
55:6f:08:dd:f0:65:ff:e0:e2:34:2a:27:25:5c:f3:
fd:9b:85:b2:df:a2:c7:26:fe:18:38:3e:12:e4:f1:
5d:0d:ea:b3:81:7e:3d:39:6d:4f:80:ed:28:c6:51:
e1:1b:71:10:6f:d6:c1:8e:8f:ff:ff:28:6b:49:00:
4e:cb:2b:14:e7:68:ed:bc:a0:b1:66:a8:0e:f0:70:
e9:28:26:f9:67:c5:4f:15:70:0f:6f:a0:7e:78:43:
d4:1c:e1:7d:00:e1:79:6c:bf:4c:f3:40:17:30:13:
fb:22:a9:a6:e1:64:7c:c7:46:2e:a3:42:7b:14:3b:
0f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:52:45:E3:7D:54:F9:A8:4A:68:39:6F:12:48:31:64:4E:3A:23:5A
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/J1JF431U-ahKaDlvEkgxZE46I1o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.138.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:0c:1f:4d:5a:ac:3b:27:ba:cc:ca:92:a9:de:90:97:c7:98:
3b:39:cf:b0:5b:1a:01:87:3c:54:e7:f6:94:16:1d:b2:05:5d:
b5:84:3b:02:d2:74:d7:98:d3:7d:6d:56:4a:84:23:9f:99:38:
a4:62:fc:08:6c:0f:0d:e2:11:2f:c3:dd:fd:c6:03:a0:56:20:
0b:19:7e:1e:a8:88:0e:f3:49:82:27:0e:4c:cd:d9:ac:f7:d0:
88:7b:bd:a1:d9:2a:9c:77:f2:e1:24:0d:12:84:a3:0d:b8:92:
9b:99:91:56:a9:fe:6f:76:53:b2:03:d3:f8:66:a0:27:cb:bf:
e9:99:d8:03:3c:ef:59:30:3b:af:7f:53:d2:e1:42:c2:77:f8:
3c:d9:1b:87:ae:08:40:95:03:3c:94:5f:f8:c6:74:75:f8:06:
ff:80:53:48:72:56:91:5a:fd:a9:57:c0:a8:be:bb:67:06:3f:
78:46:31:74:da:2b:2f:c0:f8:c2:ed:00:78:0c:ba:60:e4:9a:
99:62:84:7c:1b:f5:61:34:fe:f0:f9:b6:5c:e6:cb:ef:90:45:
5d:ec:93:55:0e:dd:e6:c6:1e:a4:36:8b:2c:83:3d:b3:81:9b:
36:79:03:2e:2a:d1:b8:e0:c0:f1:48:e8:11:e1:af:67:43:75:
f2:d1:9d:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org