Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/M3IhCYoJcuU49_YV4jaJvPotL1c.roa
File: M3IhCYoJcuU49_YV4jaJvPotL1c.roa (raw, json)
Hash identifier: UGqS59RsT/r3w2fPZ3docnXcxlIb4J/JK391D+4rkMI=
Subject key identifier: 33:72:21:09:8A:09:72:E5:38:F7:F6:15:E2:36:89:BC:FA:2D:2F:57
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C06
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/M3IhCYoJcuU49_YV4jaJvPotL1c.roa
Signing time: Wed 29 Sep 2021 02:50:46 +0000
ROA not before: Wed 29 Sep 2021 02:50:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 20940
IP address blocks: 203.69.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3078 (0xc06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=337221098A0972E538F7F615E23689BCFA2D2F57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ed:f4:3b:79:67:e8:b6:aa:29:f3:b4:87:bc:
20:7d:77:b5:53:94:ca:04:68:87:3e:26:c4:c6:fa:
ed:f5:81:26:a8:15:5d:ac:93:fc:6e:2d:70:e8:54:
57:c2:7d:87:24:9f:c9:d2:e9:4c:f6:b8:b4:5e:a0:
eb:c3:5f:3c:d4:90:8c:90:04:88:46:85:6f:64:60:
4d:10:33:3e:62:95:4c:c8:0f:c3:ec:7f:d3:bf:84:
36:2d:7b:fd:36:52:84:c5:72:d6:be:59:f3:b3:c6:
15:e7:d1:a3:19:ec:2d:e9:73:b5:00:1b:1f:43:c5:
60:e2:bc:29:4c:02:13:98:65:17:7b:65:09:b4:96:
33:0c:cd:27:9e:8c:f7:e9:05:fe:f8:24:4c:74:36:
11:87:b5:2c:9c:40:9d:19:7f:7d:63:f9:58:cd:ff:
ab:b9:3e:e3:16:08:7d:30:1c:ec:b3:db:2d:6c:10:
98:39:bc:49:bb:03:69:c9:c0:60:f6:fc:dd:76:ba:
fd:29:c9:98:94:b4:6c:2a:13:e6:bc:db:04:5f:9b:
44:54:ab:55:b0:4e:4f:af:9f:96:a4:ed:3c:99:48:
57:32:d1:b8:ee:ce:02:6c:2d:77:e5:c8:1a:a0:e5:
1d:9c:25:b0:19:5e:10:e7:96:f8:ff:99:35:5c:e3:
77:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:72:21:09:8A:09:72:E5:38:F7:F6:15:E2:36:89:BC:FA:2D:2F:57
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/M3IhCYoJcuU49_YV4jaJvPotL1c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.138.0/24
Signature Algorithm: sha256WithRSAEncryption
72:bc:19:c2:03:ea:a8:39:dc:6f:d5:80:65:ca:cc:b7:48:77:
9a:0b:b7:fe:32:72:1a:52:6f:5e:5a:a1:ea:68:e0:5d:73:18:
f4:e6:2d:9d:34:08:fb:53:b4:68:df:2d:ea:5c:3f:fc:ca:c0:
ad:0a:ae:34:bb:39:d8:fd:d3:ea:71:ef:0e:d6:06:c2:65:f3:
4f:99:f1:00:f5:37:fa:5d:42:19:5c:94:d4:14:dc:c0:ba:9b:
53:db:87:ae:c5:85:23:fa:74:b6:5e:97:63:73:a4:b5:b4:57:
8a:89:56:44:5a:d7:32:0e:95:3a:80:27:1e:04:43:6e:60:bc:
6e:83:2d:9e:5f:c7:25:ed:1f:5b:21:e3:7a:1e:bf:32:4a:e1:
6c:7a:fd:b9:51:3f:60:6b:d9:0f:25:0f:d1:02:22:ee:b1:fb:
b6:c4:4e:1b:09:f5:d0:5c:60:24:44:12:2a:01:42:ff:cb:46:
e9:c3:ad:5b:de:a3:f1:9a:81:ce:0e:08:13:de:38:85:e2:90:
bb:9c:08:53:50:ba:86:3d:35:5c:64:d8:53:d1:1a:fa:95:1c:
d8:61:fd:bb:73:a6:6c:98:36:6a:54:e9:69:0d:09:62:1c:5f:
c5:8b:33:64:f9:cb:34:ce:e2:3f:e9:b4:8f:a7:e9:e0:74:d4:
1b:f6:0e:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org