Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/LyTgMdkD0410MF3L-oylihKq5KY.roa
File: LyTgMdkD0410MF3L-oylihKq5KY.roa (raw, json)
Hash identifier: f+PxyW9abR08cDHCxoT5jp72EWi2OB9432zN/yFpCbo=
Subject key identifier: 2F:24:E0:31:D9:03:D3:8D:74:30:5D:CB:FA:8C:A5:8A:12:AA:E4:A6
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C4D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/LyTgMdkD0410MF3L-oylihKq5KY.roa
Signing time: Wed 29 Sep 2021 02:51:07 +0000
ROA not before: Wed 29 Sep 2021 02:51:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9505
IP address blocks: 175.41.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3149 (0xc4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2F24E031D903D38D74305DCBFA8CA58A12AAE4A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:55:41:8c:2f:74:08:69:61:78:25:4d:e9:d9:
e6:6e:5a:fd:8c:73:19:fe:44:7f:99:9c:c6:d6:cf:
b4:f6:56:2f:9f:b5:e1:a4:ed:0f:36:3e:58:8c:6d:
51:6e:38:9e:0e:2c:e1:a1:34:11:11:30:cd:54:ec:
43:91:ae:06:cc:af:fc:da:00:a5:3d:92:d1:3f:f0:
d3:ae:33:d3:db:57:85:7b:af:3c:54:b6:d7:94:25:
8b:72:42:1a:cd:95:66:c1:d5:9e:c8:e6:18:f7:19:
7b:85:15:6c:88:70:a1:af:c3:2f:c7:fc:f1:78:bf:
d5:0e:1e:ea:63:46:f8:03:30:0d:c7:74:9e:24:0c:
b4:0d:0a:23:02:75:36:8d:7f:06:1b:25:78:31:8d:
2e:31:d7:82:64:e4:dd:a8:84:47:1d:e6:9d:fe:2c:
a2:0b:23:89:49:c2:81:ab:09:e8:74:58:ad:3b:47:
06:46:71:db:a7:9c:b7:79:7b:11:45:99:1b:63:ba:
d8:91:74:6d:52:4b:b2:f7:87:c8:ed:2c:d8:21:dc:
be:8d:c9:3e:74:4c:50:4d:a1:2f:32:31:bc:b8:4a:
02:bc:8b:eb:0d:cf:fd:0c:aa:fb:38:b9:d8:f0:48:
bf:91:40:10:2f:b8:32:8e:0d:9c:ea:fa:a1:6d:17:
d9:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:24:E0:31:D9:03:D3:8D:74:30:5D:CB:FA:8C:A5:8A:12:AA:E4:A6
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/LyTgMdkD0410MF3L-oylihKq5KY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.41.48.0/20
Signature Algorithm: sha256WithRSAEncryption
98:cf:c4:8f:2e:33:5e:4a:47:10:70:7a:fd:1b:04:0c:d1:e7:
32:c3:83:1c:b9:41:09:3d:91:5e:e7:57:4e:9a:e8:01:2f:e4:
48:b5:ad:84:af:d1:78:b3:c3:82:f8:15:f9:c7:97:94:d7:18:
5f:7b:9f:24:30:07:d7:70:9f:66:75:63:a1:47:b2:aa:50:d8:
49:92:83:d9:af:59:12:4a:9a:49:ca:11:0f:4c:5e:b5:ed:97:
4e:d6:e6:d4:65:7d:09:79:5f:6e:34:e5:e1:35:de:ca:aa:e0:
bd:bc:53:d8:35:fc:c5:d9:56:51:fd:d7:ae:17:74:cd:97:9d:
9d:ac:07:ca:54:24:5b:1c:7e:41:49:8c:93:b8:f7:3c:65:e5:
09:fa:3b:22:18:10:2e:0f:56:4b:34:5d:d2:50:b2:53:be:af:
17:43:73:ad:7c:af:14:0e:90:f7:3d:26:52:95:1a:b4:3c:bd:
e5:df:00:38:e4:ee:86:d4:93:bf:69:fe:8b:ac:eb:da:7a:3f:
7e:0a:0a:50:ff:ab:0f:8d:2a:a6:4e:17:ff:6e:93:f6:2a:88:
e4:79:0c:31:2f:12:5f:4e:44:85:68:88:07:fe:a6:13:a8:58:
2e:fa:7e:2e:bc:9a:22:0d:55:b6:73:cd:51:b3:d3:a2:5b:7f:
7c:bb:17:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org