Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/QB9MKo3HurXC5fspIdJQWX6Im_4.roa
File: QB9MKo3HurXC5fspIdJQWX6Im_4.roa (raw, json)
Hash identifier: IxIq9K/9uEbPnouiIC8LP7ZCprquXpaL9Av49mDNSgQ=
Subject key identifier: 40:1F:4C:2A:8D:C7:BA:B5:C2:E5:FB:29:21:D2:50:59:7E:88:9B:FE
Certificate issuer: /CN=534C76274A330B071EFD20DB05F6D0429293743E
Certificate serial: 0779
Authority key identifier: 53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/QB9MKo3HurXC5fspIdJQWX6Im_4.roa
Signing time: Tue 29 Sep 2020 09:58:55 +0000
ROA not before: Tue 29 Sep 2020 09:58:55 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 7481
IP address blocks: 2001:7fa:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1913 (0x779)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=534C76274A330B071EFD20DB05F6D0429293743E
Validity
Not Before: Sep 29 09:58:55 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=401F4C2A8DC7BAB5C2E5FB2921D250597E889BFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2b:e8:10:7f:2c:b8:e2:d3:eb:18:1d:42:11:
75:92:46:19:f0:57:2d:f1:4c:24:74:97:00:8a:3d:
08:ee:97:b6:9b:c7:ad:d4:3f:ba:75:0e:b6:c0:3b:
93:1e:37:33:85:a0:c8:30:cb:4b:c4:5d:5a:66:da:
15:29:b9:7d:00:2c:8c:fd:9e:5c:ad:6c:f3:a6:7c:
06:75:4f:f1:58:70:3a:f8:e1:d0:69:dd:e6:c4:f0:
9e:b2:7a:7e:4b:6c:6d:e6:4c:66:9d:9e:d6:19:8f:
36:49:a9:11:8b:1f:36:ea:6d:2c:66:15:19:d7:a5:
65:8f:74:ad:b6:d7:ba:0e:8b:3e:f4:2e:60:08:4f:
ad:7a:19:ea:63:d5:31:f7:18:67:e4:92:05:c3:12:
c1:70:19:b8:1c:92:41:99:cf:26:7e:7a:5a:c6:1e:
f5:5a:a7:14:42:e1:53:23:13:93:c3:de:b5:e3:f0:
de:06:64:ea:59:47:b7:d5:a9:8c:a8:5b:72:0c:8b:
9d:aa:b2:45:3e:1e:59:e1:c8:94:92:d5:3b:e6:a8:
cc:be:8a:2d:39:af:fe:26:ce:d8:4c:51:f4:e1:a5:
e8:e6:e7:aa:21:e3:16:1e:0f:21:f7:6d:93:6a:7d:
01:87:01:45:c2:1a:dd:ef:87:1c:b3:50:0c:99:30:
5e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:1F:4C:2A:8D:C7:BA:B5:C2:E5:FB:29:21:D2:50:59:7E:88:9B:FE
X509v3 Authority Key Identifier:
keyid:53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/QB9MKo3HurXC5fspIdJQWX6Im_4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:7fa:1::/48
Signature Algorithm: sha256WithRSAEncryption
93:ea:f5:dc:a6:34:a0:3a:33:85:fc:b6:b6:14:cd:9c:bc:c5:
40:34:be:60:98:3a:e6:b2:de:64:f3:2d:12:1b:0f:a1:59:4a:
d0:34:8c:99:76:26:6e:7f:a3:06:bd:7a:6f:af:c2:ee:d6:58:
d2:ce:5a:2f:11:bf:6b:5e:dd:75:b1:d8:86:24:e9:c9:90:c4:
e8:37:39:d4:56:e7:79:13:81:43:47:b7:20:48:26:66:40:c8:
de:04:9b:4a:61:ac:2a:12:87:f8:78:c2:6f:56:18:76:ba:f4:
53:52:ff:41:42:82:a4:ea:dd:2e:71:57:6c:ed:a5:35:95:76:
ed:e5:19:14:65:fc:3b:4a:b4:5a:a3:3b:c5:c6:0f:59:f8:1b:
d7:d7:2d:dd:60:d2:96:7a:f8:d9:28:7a:a8:37:78:fb:47:e7:
50:6b:6e:7a:ce:be:97:ea:31:d2:7a:5e:9d:5a:2c:74:40:3b:
95:c5:1e:08:0e:1c:3f:e2:3e:02:3a:1b:1a:5a:fe:d3:8b:96:
68:34:66:4d:b3:1f:0b:2e:5f:57:aa:2e:ac:1b:c0:e0:c7:09:
fc:13:34:78:8e:42:ff:41:20:dd:87:0e:be:dd:56:97:51:8e:
71:09:97:4e:ad:3c:bb:ef:72:0f:eb:4a:00:b1:b4:44:8a:e2:
a4:08:88:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org