Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/M-hX3wptNwcj8iRuZtflFKLKWyM.roa
File: M-hX3wptNwcj8iRuZtflFKLKWyM.roa (raw, json)
Hash identifier: jw1vfrgRQVtG33YSey4peniTUxih6ULUjWaSIz2J/W0=
Subject key identifier: 33:E8:57:DF:0A:6D:37:07:23:F2:24:6E:66:D7:E5:14:A2:CA:5B:23
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0841
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/M-hX3wptNwcj8iRuZtflFKLKWyM.roa
Signing time: Tue 29 Sep 2020 09:58:31 +0000
ROA not before: Tue 29 Sep 2020 09:58:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 211.72.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2113 (0x841)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:31 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=33E857DF0A6D370723F2246E66D7E514A2CA5B23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:de:96:21:91:b5:22:57:e1:0f:0b:e8:85:0c:
ad:00:37:28:09:2e:71:f9:be:b6:88:b1:7a:fd:23:
01:7d:62:35:89:e4:46:d3:e1:42:a4:6f:bd:7e:e4:
62:8f:e8:0c:3a:e9:a5:ed:16:5e:80:a1:8f:41:93:
2e:09:e0:b7:c4:ab:bf:93:1e:48:c9:dd:fa:85:ef:
a0:a8:c2:49:3f:f7:de:48:2c:d1:da:c1:5d:a1:d9:
98:36:96:75:1e:38:6e:80:33:1e:df:97:30:a7:ac:
46:24:0c:53:8c:51:29:b5:b8:5a:3d:2a:b9:3a:0e:
4a:9f:3e:82:7d:dc:92:1f:eb:58:61:23:2d:c8:65:
32:68:a8:cd:01:2b:24:d5:f3:d3:fa:fc:9d:75:bb:
11:d4:c2:46:14:56:f0:0d:cc:75:45:31:e3:f4:16:
65:a5:c8:e8:56:f7:b0:1a:39:ba:9d:35:3d:59:a1:
1b:42:58:eb:47:b7:be:c4:ba:6c:04:82:32:b3:29:
19:28:99:55:57:99:27:c0:99:97:c4:b7:ca:d0:3e:
03:fa:3c:17:a4:a8:c7:2f:cd:27:e3:bc:cc:50:ed:
87:67:1f:43:13:f5:3e:f8:3f:c5:d0:90:3b:92:2d:
ee:cc:5a:5c:28:d9:83:6c:51:a5:30:26:b6:eb:d4:
2c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:E8:57:DF:0A:6D:37:07:23:F2:24:6E:66:D7:E5:14:A2:CA:5B:23
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/M-hX3wptNwcj8iRuZtflFKLKWyM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.72.0.0/16
Signature Algorithm: sha256WithRSAEncryption
75:d9:09:c4:61:fc:67:0b:df:fd:23:6f:eb:6a:e8:29:e0:a9:
eb:7a:fc:bf:34:18:0d:9a:a2:53:b8:c9:ca:b8:a1:ac:b5:6a:
80:2b:22:f9:41:db:7c:54:46:82:49:5c:ab:8f:3d:1e:0d:95:
07:21:9c:67:87:50:52:80:e2:9e:5e:ce:9a:73:ed:93:40:bc:
8d:f0:d0:c8:a7:d5:c5:98:ff:e9:73:fb:8d:f6:5c:af:38:f9:
44:b8:1b:f2:09:ec:7c:dd:6a:d5:89:ec:8f:13:3a:10:fc:01:
9a:0c:4f:98:24:2e:91:fd:c0:bb:84:ac:f5:ef:b4:68:6b:45:
3a:4e:3c:1a:27:5d:e9:d8:f4:39:a6:9a:82:cd:89:1b:38:66:
50:45:d2:7b:58:e5:78:42:ba:05:d8:8b:8e:b2:aa:c6:80:ee:
e8:60:40:b3:4c:a3:ba:c1:45:1e:43:bd:31:0d:75:e7:9f:c8:
26:4c:23:45:17:ff:a2:00:67:42:c8:67:74:39:63:3a:48:10:
c3:0d:56:79:f4:87:4e:f1:53:49:7d:22:8a:7a:54:d7:6d:ff:
e2:30:25:cf:87:7e:7f:72:57:1a:e1:6f:31:0f:e5:43:6f:95:
10:de:fc:e5:2c:86:f2:c0:c9:25:0e:ed:d3:48:53:d8:9b:c8:
71:d7:fc:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org