Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/XhqRFAto5K5_X2h63v-xfrhij5A.roa
File: XhqRFAto5K5_X2h63v-xfrhij5A.roa (raw, json)
Hash identifier: rCmZgu3e8hB4Oe/RPdAdfU3ChQ/Nd7Moen+YrEwlaTo=
Subject key identifier: 5E:1A:91:14:0B:68:E4:AE:7F:5F:68:7A:DE:FF:B1:7E:B8:62:8F:90
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0BF1
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XhqRFAto5K5_X2h63v-xfrhij5A.roa
Signing time: Wed 29 Sep 2021 02:50:41 +0000
ROA not before: Wed 29 Sep 2021 02:50:41 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 2001:b400:e9f0::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3057 (0xbf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:41 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5E1A91140B68E4AE7F5F687ADEFFB17EB8628F90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:81:06:ec:5e:55:05:18:0a:75:44:3b:40:90:
a6:34:7d:05:5d:94:0d:14:47:cd:97:30:07:f2:3f:
de:b2:78:ed:d5:9d:20:08:cb:57:3c:30:05:39:d5:
40:b0:78:f1:21:6c:57:08:68:ad:ac:e7:b4:3a:16:
21:74:43:ff:f9:42:7b:fb:bb:41:e2:2d:31:73:97:
41:d6:5b:62:22:1c:da:4d:9e:81:23:c3:a5:10:79:
8d:2e:f4:77:80:60:b3:bd:40:d2:89:eb:fe:e1:b3:
b4:69:31:bd:99:ab:5d:81:b1:20:c5:1f:a6:a4:05:
4e:87:bb:3e:ab:f0:26:89:d1:86:a1:57:f3:cc:95:
70:3c:43:57:b7:9e:ec:9f:5e:4b:c7:a3:6e:7b:c1:
91:bf:07:b9:d1:b0:85:30:65:32:44:fc:9a:66:19:
a6:cf:91:f2:48:8b:43:10:75:b3:7d:f3:fd:4b:89:
2b:ae:dd:aa:7f:7f:7c:6e:12:69:b4:84:49:05:cf:
67:9b:0c:0b:02:87:cd:31:c3:0e:b4:6d:bc:2b:7d:
a2:ec:e2:52:cc:67:49:d5:95:41:a4:cb:2c:68:80:
d1:45:de:69:4e:bc:b3:f7:be:19:e4:b5:bf:cd:c1:
97:fb:8b:20:cf:b2:40:3a:83:58:04:bf:d9:bc:6a:
8a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:1A:91:14:0B:68:E4:AE:7F:5F:68:7A:DE:FF:B1:7E:B8:62:8F:90
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XhqRFAto5K5_X2h63v-xfrhij5A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b400:e9f0::/44
Signature Algorithm: sha256WithRSAEncryption
74:ed:37:37:b3:1c:a7:55:5b:3c:35:27:51:de:e6:75:2e:34:
2f:ae:2f:28:d6:34:a5:5f:51:df:81:25:fa:88:4c:37:c7:aa:
e7:dd:b0:b9:6c:b6:04:62:94:ce:24:8e:40:cd:30:d3:30:c3:
24:9e:5b:f6:1a:3f:f8:0e:f0:3b:80:a7:be:ed:08:4e:63:3a:
a0:99:30:bd:61:f8:93:49:92:62:a1:15:9b:e4:57:b4:9b:7e:
88:c6:3d:78:31:a8:74:18:82:91:32:46:f4:11:ac:78:94:49:
27:01:e7:4e:e7:f0:18:ab:e4:d5:e3:38:51:66:88:10:c2:5e:
d7:85:71:9e:ec:c9:80:93:79:39:dd:1c:39:02:1d:db:cf:50:
92:db:81:da:ab:ad:df:03:4e:a5:f8:b5:17:5c:e9:1a:67:59:
35:e5:fa:6b:66:a8:9b:c7:7a:ad:c3:76:be:68:4a:ce:47:95:
08:11:62:99:0e:2c:be:52:a3:19:33:f6:6e:71:fc:fb:f2:5c:
65:44:87:dc:bd:d5:7a:a5:b7:91:71:09:28:b2:6b:d0:11:9e:
e6:91:1e:cc:08:36:45:5a:9c:d2:fe:9a:0d:fb:8e:dd:3d:f5:
63:59:6e:bb:75:1b:3a:32:24:2c:2b:55:d8:ed:60:15:7c:d4:
60:8d:50:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org