Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/L7gQ8qN-TKrkQttr_3tofKkT36g.roa
File: L7gQ8qN-TKrkQttr_3tofKkT36g.roa (raw, json)
Hash identifier: zB/8IKo788fmAPsOJYYVRemEyvhqIP0J5IT/kGa+J1I=
Subject key identifier: 2F:B8:10:F2:A3:7E:4C:AA:E4:42:DB:6B:FF:7B:68:7C:A9:13:DF:A8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 081A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/L7gQ8qN-TKrkQttr_3tofKkT36g.roa
Signing time: Tue 29 Sep 2020 09:58:21 +0000
ROA not before: Tue 29 Sep 2020 09:58:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 54994
IP address blocks: 203.74.117.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2074 (0x81a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2FB810F2A37E4CAAE442DB6BFF7B687CA913DFA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f9:6d:d6:00:ef:48:87:e6:b8:3e:9f:aa:ca:
2f:1b:14:19:e5:6e:14:e4:ba:bc:ca:4a:dc:da:48:
47:ac:52:b5:b6:7b:24:eb:41:fc:a2:18:3a:14:0d:
67:e3:e1:9a:0c:be:d3:8c:a8:37:9f:17:35:ec:05:
6f:69:bb:19:a2:bf:b9:b1:19:07:f6:d5:80:83:b2:
c0:cf:65:2f:22:9a:1c:96:a5:5b:b3:7d:db:4a:a5:
0e:cb:08:69:1d:92:a4:bc:7a:9e:5a:d8:73:b5:1f:
5c:9e:bf:a0:ff:57:85:2d:25:10:f8:a4:4f:70:3d:
dc:c4:c2:7d:58:04:80:36:b4:3f:2e:0f:96:3d:bd:
11:10:8a:3f:a6:ff:8f:5c:f0:b9:68:89:1e:74:25:
85:c5:e2:bb:fa:8d:88:56:45:cf:99:e5:86:d9:65:
de:2a:e0:c7:c3:e9:aa:be:e4:b6:5c:eb:69:18:85:
5d:82:20:43:77:f1:10:e6:07:a4:e5:7a:be:3e:56:
62:59:e0:1d:34:83:db:2d:ef:25:f7:97:fe:c1:46:
cf:7c:fd:3e:b2:bc:b3:dd:68:29:23:63:9f:fc:d2:
7f:5a:83:c8:24:23:86:67:be:87:5b:5c:95:01:5b:
84:3a:a5:a4:a9:86:e0:8f:6c:ca:34:dd:db:5f:53:
a7:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:B8:10:F2:A3:7E:4C:AA:E4:42:DB:6B:FF:7B:68:7C:A9:13:DF:A8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/L7gQ8qN-TKrkQttr_3tofKkT36g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.117.0/25
Signature Algorithm: sha256WithRSAEncryption
71:0d:b8:fa:48:91:80:b4:f4:f9:87:19:a5:0c:da:78:b1:89:
7d:f4:50:4a:a5:68:74:38:19:5a:1d:f2:68:59:f0:a3:65:1a:
df:8c:bb:fb:53:83:f2:00:41:84:2e:a0:b7:a9:fa:e3:8c:02:
18:e6:0a:1f:e1:ac:5f:f7:81:a3:f7:72:d6:18:28:2b:50:07:
1c:d5:a9:88:75:eb:0b:f4:a6:ac:b3:1e:c9:7d:7b:45:80:10:
cf:64:e1:11:5a:d9:15:f6:7b:13:70:e7:8f:2c:e5:7b:d6:0d:
20:3d:8e:bd:6b:e1:f4:fa:88:fa:0d:14:8c:f3:c4:85:db:93:
db:37:d3:47:ed:7a:80:85:82:c7:fc:02:2f:32:06:82:ea:a2:
96:33:04:d8:0f:66:e2:b2:cb:e0:b0:9b:57:67:08:5f:8c:eb:
5a:64:0b:0d:49:11:84:67:18:9e:1e:f5:87:fb:fc:a4:88:7f:
af:14:cc:3b:0c:8e:ad:bf:81:2d:85:52:d9:40:94:68:4d:80:
be:18:99:6c:19:57:d1:3a:0f:95:2c:4c:b3:dd:23:2d:ac:ec:
b2:92:8e:e0:3a:70:82:1a:0f:cd:dd:4b:bb:b9:0d:80:64:bd:
97:ea:ec:62:bb:a7:25:6e:99:81:d4:fe:5c:fb:6a:9e:4f:a6:
a2:60:a7:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org