Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/LDZQ8hF-8G3EYUYbmA4tZU5fnq0.roa
File: LDZQ8hF-8G3EYUYbmA4tZU5fnq0.roa (raw, json)
Hash identifier: iJ79/sOQOJ2kZVrWjnL/RAO+nBmK1SxqDiglkJB0cVM=
Subject key identifier: 2C:36:50:F2:11:7E:F0:6D:C4:61:46:1B:98:0E:2D:65:4E:5F:9E:AD
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/LDZQ8hF-8G3EYUYbmA4tZU5fnq0.roa
Signing time: Thu 15 Sep 2022 02:48:24 +0000
ROA not before: Thu 15 Sep 2022 02:48:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 60.248.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2C3650F2117EF06DC461461B980E2D654E5F9EAD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0f:5f:43:b8:70:9f:21:36:ee:7b:56:5c:5f:
4e:72:78:a7:0e:63:71:0a:dc:84:64:12:81:ac:62:
ed:c0:9c:57:43:bf:ab:42:8f:f0:26:24:12:71:1b:
58:bc:93:cb:8b:c0:aa:17:e1:53:e6:a2:00:db:be:
8b:12:16:35:1c:e6:b8:28:24:b6:b9:eb:4d:db:5f:
c6:00:f8:cc:43:ac:83:9d:b6:5f:11:8e:68:47:f7:
ad:76:8f:da:d0:29:5e:7b:9d:ed:c8:fc:16:d1:77:
e7:d1:07:95:c7:3e:22:c8:d1:c5:6e:e8:97:02:85:
0f:bb:dd:3f:b7:ca:f7:09:ab:2e:a6:d6:55:c8:27:
f7:c7:f4:4f:fc:6a:47:e3:c4:d7:ba:f3:ba:e8:a3:
4d:69:03:4c:64:e8:c4:79:22:37:65:22:24:95:70:
0a:8a:13:15:82:f7:00:05:06:82:da:04:ed:97:35:
0c:3e:79:82:9c:e1:2a:bc:2e:ed:04:fc:8a:44:ea:
dc:72:98:18:12:3f:fe:58:28:b6:60:90:cc:c4:90:
c9:60:75:e6:7d:f4:d3:5c:b0:b9:bd:fc:88:cb:23:
6a:b9:22:64:1a:ed:d3:6b:71:f6:e7:66:7e:d5:6f:
2e:d4:31:e5:7a:a1:a3:39:e4:cc:19:55:26:a1:18:
8e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:36:50:F2:11:7E:F0:6D:C4:61:46:1B:98:0E:2D:65:4E:5F:9E:AD
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/LDZQ8hF-8G3EYUYbmA4tZU5fnq0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.248.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0d:87:ab:f9:42:7c:3e:9a:93:57:c6:69:b9:7f:7f:4a:fe:5f:
3f:a6:e9:e4:25:c9:ef:43:c5:80:34:be:4c:57:26:7b:cb:dc:
9e:1e:ea:53:92:29:0c:42:7a:02:08:4b:1f:4d:f6:3d:2d:c4:
4d:0f:91:2b:55:fb:96:2b:94:66:f4:8f:a4:7a:60:ca:7e:0d:
8f:ad:6c:3a:ef:df:af:02:b4:1f:01:96:70:cb:6a:22:e6:ff:
45:a0:d0:2f:95:93:92:e6:26:46:b1:69:87:86:4a:76:57:49:
b2:0f:4b:6c:5c:48:a3:c8:3a:64:22:92:66:79:39:31:b4:db:
df:42:7a:3c:fb:47:e4:29:17:77:06:42:d2:09:b9:a0:c9:1b:
04:2a:dd:73:32:d2:7f:3a:e7:06:47:f4:78:70:5b:3b:47:5c:
b6:64:84:ca:39:c5:96:0f:60:67:87:82:d5:6d:d9:12:f6:97:
8c:3d:71:7c:05:8c:fa:3c:05:d7:10:65:1d:04:2f:06:c5:c8:
3d:df:68:21:d0:33:19:7a:86:28:28:67:d5:e8:8e:bf:9e:49:
f7:61:81:3a:da:11:9b:ad:97:03:06:b0:f6:f0:47:63:cd:49:
fb:88:71:17:7e:98:ce:43:89:4e:75:98:3f:35:10:9b:de:67:
d2:42:a4:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org