Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/WmWr6IO_9OcgOBUH8sgEdTuY6iQ.roa
File: WmWr6IO_9OcgOBUH8sgEdTuY6iQ.roa (raw, json)
Hash identifier: WH6Hvji+aYI0G5ar6qoGP1oYyHpkvFZSVKTjHde2Mok=
Subject key identifier: 5A:65:AB:E8:83:BF:F4:E7:20:38:15:07:F2:C8:04:75:3B:98:EA:24
Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Certificate serial: 0934
Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WmWr6IO_9OcgOBUH8sgEdTuY6iQ.roa
Signing time: Sun 07 Feb 2021 11:38:07 +0000
ROA not before: Sun 07 Feb 2021 11:38:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 168.95.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2356 (0x934)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Validity
Not Before: Feb 7 11:38:07 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5A65ABE883BFF4E720381507F2C804753B98EA24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:61:65:d5:23:cb:ec:85:f3:ed:4f:8f:0b:34:
f0:ba:13:67:04:10:7d:e8:89:8c:22:c7:1c:c0:39:
b4:1c:fc:ae:09:a1:27:85:0c:e1:72:16:70:b6:96:
4c:ba:dd:ef:8e:b8:c3:ed:c7:9a:8b:b1:50:09:b4:
90:1b:4a:ef:44:1f:63:44:5e:65:7c:99:0d:bd:97:
a6:4f:18:da:39:a0:98:63:44:c7:33:d9:50:b3:61:
62:43:2f:53:c1:db:b2:7e:f5:b9:cf:57:37:64:8c:
00:4e:f0:bd:7c:bf:85:93:83:bc:85:1e:6c:54:12:
82:c3:cf:f7:7c:05:4a:01:ed:ee:6f:8f:91:bb:87:
51:2d:95:91:7a:36:df:60:9b:84:27:53:6a:51:18:
bf:7f:6e:4e:f2:74:d1:87:66:fd:6b:e0:9b:28:98:
cc:20:a4:b2:1a:d9:a4:a6:48:1c:5d:ca:fe:61:9a:
c2:3d:9d:16:d5:5e:63:32:25:71:01:5f:e2:d1:4f:
d2:2e:a9:46:6f:1f:4a:42:27:94:43:59:7c:40:e9:
88:09:4f:41:ef:63:63:88:c7:6c:37:5e:f6:e8:8a:
3e:69:16:fb:df:0d:3f:a0:ce:42:9d:97:7a:87:bb:
cb:a7:b4:58:a7:ab:21:e3:da:6e:19:25:e5:f4:08:
19:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:65:AB:E8:83:BF:F4:E7:20:38:15:07:F2:C8:04:75:3B:98:EA:24
X509v3 Authority Key Identifier:
keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WmWr6IO_9OcgOBUH8sgEdTuY6iQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
168.95.0.0/16
Signature Algorithm: sha256WithRSAEncryption
49:2a:74:b6:9c:33:84:ee:61:75:54:23:9c:98:29:34:7e:50:
08:3a:73:65:ba:53:78:8b:82:09:b2:da:eb:d0:23:23:c4:8c:
3f:5f:3e:fb:8f:18:2e:29:c6:59:bb:75:b2:f6:12:f3:8e:13:
6d:8d:4e:54:da:70:f7:76:a9:f2:f1:44:97:7d:a2:97:36:c5:
c2:05:94:1c:03:fc:3f:23:c3:a2:cf:0b:a9:56:ee:d2:63:d7:
34:00:80:e9:db:93:31:d9:a7:12:05:dd:76:5e:69:9c:cb:21:
57:30:9b:f7:da:ae:2e:c0:8a:83:e6:cf:29:45:bd:b5:b8:cf:
9c:c5:74:9e:92:83:0e:cc:91:6c:ea:e6:c5:ca:c0:b1:38:61:
08:d9:05:8f:34:3c:25:66:9f:82:22:61:78:eb:81:1c:83:62:
ca:e0:b8:ef:15:3d:9a:6f:25:c9:4d:63:9e:27:5c:58:bc:b9:
23:cd:f8:3c:84:88:92:52:65:f1:03:b4:77:5f:4e:cd:c6:87:
22:7c:52:bf:43:a8:91:93:cc:c8:a4:46:b1:08:46:1a:ed:db:
6d:4d:77:0c:b0:aa:c6:e5:0c:38:d3:96:24:9e:19:3b:49:fa:
3f:33:c9:07:11:a5:28:05:74:f4:82:eb:55:dd:32:cc:d5:47:
ac:38:d3:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org