Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/MgYMEXjGZ3A8V4qOUlnekBk2kXI.roa
File: MgYMEXjGZ3A8V4qOUlnekBk2kXI.roa (raw, json)
Hash identifier: VnNx2zFtXhiNqJOP/4CeNMmPEOuoTnKZGr+JfEekfRA=
Subject key identifier: 32:06:0C:11:78:C6:67:70:3C:57:8A:8E:52:59:DE:90:19:36:91:72
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C1B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/MgYMEXjGZ3A8V4qOUlnekBk2kXI.roa
Signing time: Wed 29 Sep 2021 02:50:52 +0000
ROA not before: Wed 29 Sep 2021 02:50:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 210.241.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3099 (0xc1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=32060C1178C667703C578A8E5259DE9019369172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8e:75:b8:60:ee:10:35:e8:63:89:8b:c0:0d:
ff:f3:29:5a:9a:b5:00:14:80:a5:e5:01:f7:70:27:
7b:7f:2b:b0:9c:a5:ac:c3:04:07:c6:af:b4:55:36:
43:1d:a6:1b:7b:e6:20:25:a0:41:ba:b2:44:0a:18:
d2:94:92:53:93:d3:62:7a:c1:39:c6:ab:bb:3a:31:
06:6b:a0:9d:ea:ad:fc:97:f0:69:13:ed:17:c3:70:
e1:55:60:8f:8f:1a:06:02:6e:78:8a:7b:5e:56:12:
05:2b:f7:b1:27:85:d6:50:82:62:43:43:e4:a8:e2:
9f:56:45:8d:ad:cd:93:85:a6:bf:31:bc:9d:0d:c9:
7a:00:18:fe:1b:2d:4c:cc:55:c3:7b:b8:82:d9:c2:
d9:8a:00:7b:3e:e6:fc:5e:6c:d5:6a:1e:92:11:a5:
d5:15:8f:71:80:81:43:19:a2:8c:4f:37:6c:00:b9:
14:53:6f:8c:e9:1b:39:ec:f7:bb:45:38:c5:35:f3:
d5:0b:11:4b:0f:34:14:56:5f:fc:4a:19:54:80:aa:
68:ab:65:21:80:b0:ee:78:9d:ea:55:e2:95:2d:6e:
75:da:58:77:93:93:68:99:0f:60:16:28:40:0c:ba:
95:b7:c0:b1:8c:df:62:f4:7c:e0:f4:47:db:76:9e:
3b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:06:0C:11:78:C6:67:70:3C:57:8A:8E:52:59:DE:90:19:36:91:72
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/MgYMEXjGZ3A8V4qOUlnekBk2kXI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.241.224.0/19
Signature Algorithm: sha256WithRSAEncryption
28:fd:95:3f:fe:b0:82:10:33:97:2d:96:79:44:94:55:c5:9a:
7c:97:69:4d:d5:da:78:2c:ca:5d:f8:96:ba:3d:33:de:cc:94:
7d:30:54:bd:2a:70:41:35:4d:0e:6c:f5:67:41:95:24:30:a1:
28:05:ee:fe:19:7c:e5:a5:37:02:e5:2f:af:ac:c6:8e:07:7b:
18:88:81:dd:06:9b:58:63:6a:cd:f0:5f:cc:2d:fd:87:03:36:
90:da:f7:2b:5b:6b:fc:d3:31:69:91:47:ca:5c:6f:17:f0:e6:
e5:10:1b:fb:68:52:96:18:99:43:3b:6d:d5:99:99:12:bf:d4:
34:bc:6f:8d:0d:10:9c:22:5b:ad:18:10:6c:80:a4:ba:2b:aa:
4c:65:44:ae:a4:0e:c2:36:5c:18:f2:91:ee:c0:ad:3e:63:41:
b2:08:42:ec:7d:b8:80:9a:fa:d2:b9:3d:99:2c:33:b9:9a:75:
07:ab:15:d0:79:e4:33:60:a6:ec:43:e3:b9:84:56:2f:7a:92:
9d:14:33:30:76:40:c9:44:76:e7:02:3e:25:aa:17:da:6f:d3:
3a:4d:7b:4a:ea:f7:5d:0c:56:d6:a9:97:89:59:0d:50:5f:e6:
9d:fe:80:61:16:cb:81:2d:ae:95:dc:58:36:6b:26:05:37:2c:
2b:c4:9c:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org