Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/WEeH_nq6RLe2s4tqVK_Lq9Z0KUs.roa
File: WEeH_nq6RLe2s4tqVK_Lq9Z0KUs.roa (raw, json)
Hash identifier: B5wO/EBjaoytaCJYmHIyyt6YAQA/ta9ww3FYns8v7e0=
Subject key identifier: 58:47:87:FE:7A:BA:44:B7:B6:B3:8B:6A:54:AF:CB:AB:D6:74:29:4B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WEeH_nq6RLe2s4tqVK_Lq9Z0KUs.roa
Signing time: Thu 15 Sep 2022 02:48:15 +0000
ROA not before: Thu 15 Sep 2022 02:48:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17421
IP address blocks: 2001:b401::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=584787FE7ABA44B7B6B38B6A54AFCBABD674294B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:48:ae:38:f5:35:2b:aa:e5:6a:66:44:b6:56:
39:20:9f:f7:8a:e2:6a:6d:c1:14:1d:ab:cb:36:28:
2b:c6:81:16:ad:52:dd:33:7a:80:6b:9a:43:19:05:
88:fc:74:4a:f8:d6:45:88:58:42:14:84:36:79:8d:
af:4e:7b:4b:9d:2f:1d:18:74:d6:7f:31:52:28:eb:
22:02:b9:2d:fe:53:dc:77:e2:a6:ff:5f:12:21:fb:
95:87:f9:12:60:c2:de:2d:3e:c7:1a:c1:2a:17:02:
9c:8f:a8:80:4f:7a:b1:37:81:fd:83:84:a9:83:ea:
26:a7:ef:53:b4:bf:47:40:01:b3:09:f7:af:52:d1:
96:fb:33:70:dd:4f:fd:1f:a8:95:58:aa:f8:6a:fb:
01:97:eb:da:ea:8d:f7:38:c0:77:a3:90:1f:70:86:
08:00:65:7f:51:f8:8d:c8:81:21:fe:93:a8:96:a5:
b8:37:cc:55:18:95:bf:b5:5e:41:22:99:ed:88:88:
50:f0:a6:ef:d7:bf:6b:1f:cb:c9:0a:ac:d6:c9:c9:
41:5e:6c:06:ea:5b:65:01:cc:61:f1:61:4b:8d:d4:
9b:2a:27:d1:52:3f:46:5f:35:12:86:3e:bd:0b:e7:
7b:97:a8:28:18:9e:4f:7e:a0:71:ec:06:fd:0b:b7:
04:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:47:87:FE:7A:BA:44:B7:B6:B3:8B:6A:54:AF:CB:AB:D6:74:29:4B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WEeH_nq6RLe2s4tqVK_Lq9Z0KUs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b401::/32
Signature Algorithm: sha256WithRSAEncryption
12:5d:d6:de:38:d6:5a:14:b6:78:33:0f:6e:9a:ce:ff:07:1b:
54:97:09:2d:82:6a:f3:a3:02:bf:ee:23:f2:90:d4:cc:4c:a6:
42:38:ca:6f:b2:d4:01:e6:fb:b0:57:29:c2:9c:cf:d1:e5:1a:
ec:60:80:d3:88:ab:d3:0a:b8:77:c4:62:39:2b:38:f5:38:7e:
c2:b1:71:fe:94:c1:fd:36:de:de:22:a0:60:64:ee:ab:a3:fc:
e9:81:a5:60:21:f2:28:ed:79:9a:0c:78:39:8d:1c:11:4f:dc:
10:4c:d5:23:96:a9:5f:ac:3c:c7:e3:44:69:4b:6f:15:91:3d:
40:1a:49:89:7e:30:08:92:06:34:78:82:dd:61:34:66:27:5e:
65:1a:5e:b2:e3:7b:1d:94:b4:42:8b:0e:e8:51:36:7b:ff:10:
67:bc:65:be:16:f4:0c:dd:e9:d1:05:2a:cc:64:89:8a:c4:c1:
64:24:ee:29:1c:33:03:1c:dd:d0:b6:4c:17:67:26:d3:d3:e9:
da:89:b5:dc:09:66:ab:c7:93:33:1b:41:65:46:1f:3e:bf:dd:
f6:3c:f2:3b:b8:3f:ce:ae:4e:e8:cb:7c:42:54:b6:c3:59:9d:
f1:f9:b2:e9:59:d9:44:f6:98:c6:d4:26:10:2d:4d:1d:73:78:
0b:2e:d8:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org