Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/NFjgB7-76jW2ViJhoHFmomya4-w.roa
File: NFjgB7-76jW2ViJhoHFmomya4-w.roa (raw, json)
Hash identifier: trvZrwgi59vrQzZobkfufsr/ZGcneyXJz1XHSDzR1SM=
Subject key identifier: 34:58:E0:07:BF:BB:EA:35:B6:56:22:61:A0:71:66:A2:6C:9A:E3:EC
Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Certificate serial: 077A
Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NFjgB7-76jW2ViJhoHFmomya4-w.roa
Signing time: Tue 29 Sep 2020 09:58:53 +0000
ROA not before: Tue 29 Sep 2020 09:58:53 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 168.95.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1914 (0x77a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Validity
Not Before: Sep 29 09:58:53 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3458E007BFBBEA35B6562261A07166A26C9AE3EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:65:af:01:ef:41:e8:80:dd:51:92:a2:6f:4b:
38:88:86:d3:f4:19:ad:7b:34:9b:06:eb:7b:fb:df:
80:fe:2d:dc:f2:67:4d:ce:e3:28:6b:41:96:f0:e1:
ff:4c:b2:51:bd:04:09:14:16:cb:91:de:c5:12:2f:
e4:10:e1:0d:88:f3:c5:ba:d3:da:24:9c:0c:8d:6a:
13:0e:61:10:39:4e:6a:66:78:22:68:7e:e5:e4:cb:
ea:80:21:c8:10:5e:fa:43:40:db:89:af:62:cc:3f:
4f:09:25:75:fd:27:bb:7d:4d:ea:ec:66:96:5d:52:
7b:59:61:4e:ed:62:e3:54:4c:bc:0e:53:bc:06:d6:
5e:22:6e:cc:fd:22:97:17:7b:3b:17:d6:3e:bc:e4:
94:8b:68:aa:57:ae:05:28:15:5b:c4:cf:c1:41:78:
27:e2:7d:18:24:db:32:d8:bc:f0:cd:da:64:4e:28:
08:3d:68:b9:4b:e5:0d:f6:77:91:10:c7:2d:ad:61:
7e:f6:ae:77:e3:08:42:b0:78:f6:38:db:dd:67:e2:
68:c5:5c:82:6a:80:de:84:27:12:13:de:dd:4c:9b:
4f:97:a9:d0:ee:6e:1b:b9:c4:55:e1:58:69:64:46:
7e:54:17:df:53:8d:dd:48:7d:8b:bd:68:80:fd:7d:
4f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:58:E0:07:BF:BB:EA:35:B6:56:22:61:A0:71:66:A2:6C:9A:E3:EC
X509v3 Authority Key Identifier:
keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NFjgB7-76jW2ViJhoHFmomya4-w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
168.95.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0d:90:8b:ef:58:c8:28:de:ef:0e:26:a4:71:40:e3:5a:9a:69:
3d:07:ea:1d:fb:4e:70:d9:6f:1e:87:e8:81:ea:8f:e7:b2:12:
ca:c8:ae:76:90:a0:f0:ac:c7:09:95:f8:7e:d0:36:48:69:51:
39:94:72:b7:35:ab:fd:c5:ef:be:ee:35:e8:ce:52:a3:22:b6:
55:0a:d1:89:33:ec:46:84:cd:f0:ed:8e:4e:8e:c2:de:3e:fb:
4c:5d:ce:3f:dc:92:60:22:62:78:e6:e9:39:11:2b:1d:10:03:
16:cf:55:09:7b:4f:13:60:a1:65:16:22:fb:21:0c:49:c0:dd:
fb:64:5e:1f:fe:e1:c5:4a:90:b5:20:e9:62:50:6e:b1:a3:e3:
b1:87:3e:c1:ab:ab:aa:8e:4e:31:3f:a1:14:1b:0a:fb:b9:79:
08:ec:75:e1:ba:9e:f2:5e:f5:c5:6c:80:e1:c0:3c:26:38:3d:
45:ba:ab:2f:a4:59:15:de:12:32:64:e2:7c:21:6a:ab:fa:ed:
de:72:4f:c2:b2:8b:33:48:8b:1e:0c:46:94:db:22:75:9e:0d:
38:e8:25:5e:be:45:be:52:53:dc:ee:b1:8d:6d:4b:c6:aa:27:
19:83:6e:08:eb:ca:47:af:b2:72:ff:63:31:97:7a:2f:5b:80:
12:ae:d1:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org