Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/_U4eWkLDRvSRw7KBOUaEAD8-X8Q.roa
File: _U4eWkLDRvSRw7KBOUaEAD8-X8Q.roa (raw, json)
Hash identifier: DVDdVTO2ldulmUe5fablnQUQcc4DDL3+2+sDgnIVCXI=
Subject key identifier: FD:4E:1E:5A:42:C3:46:F4:91:C3:B2:81:39:46:84:00:3F:3E:5F:C4
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C51
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_U4eWkLDRvSRw7KBOUaEAD8-X8Q.roa
Signing time: Wed 29 Sep 2021 02:51:08 +0000
ROA not before: Wed 29 Sep 2021 02:51:08 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 10126
IP address blocks: 114.30.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3153 (0xc51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:08 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FD4E1E5A42C346F491C3B281394684003F3E5FC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b9:3b:34:32:bd:f8:65:b7:4f:1c:ae:fa:49:
fe:c9:c5:6e:b2:20:d2:87:a8:f0:69:68:c0:5e:50:
e0:9c:e5:13:d2:69:48:c9:60:36:98:c5:2e:71:c8:
fb:ea:c2:40:88:ab:3d:ea:c7:69:f7:f7:27:a4:36:
de:6c:2f:67:86:bb:d3:dd:4f:d9:3d:50:a5:fa:f3:
b0:e0:bf:f0:3b:11:c9:8f:53:b5:c5:a3:4b:dd:bb:
e5:0b:77:48:a9:14:b5:aa:69:44:cc:a6:39:a7:7b:
4b:6f:49:e3:f9:41:6c:de:01:a2:0a:1d:83:fb:52:
6a:da:6c:16:52:65:c1:37:35:64:5b:13:dd:26:cd:
34:b7:ba:64:0d:9f:36:51:c9:ef:b5:95:2f:6d:1b:
13:bc:e1:f3:5e:6a:ea:fc:ef:86:7a:bb:ae:e0:5e:
9a:dc:b9:6f:a3:d7:a3:0c:11:a0:75:a9:a3:45:5c:
3d:71:0c:ef:89:32:a4:32:3a:4f:9b:4f:95:53:0b:
01:9b:81:24:0d:11:ba:b5:42:65:1a:71:35:ef:b3:
4f:7d:1b:98:5e:a0:26:20:de:7c:32:21:fb:dc:be:
96:40:a7:6e:23:cf:c8:e1:b9:d3:93:be:56:42:01:
bf:a2:f2:a7:e6:75:ed:5d:76:c3:a1:54:ef:51:a7:
06:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:4E:1E:5A:42:C3:46:F4:91:C3:B2:81:39:46:84:00:3F:3E:5F:C4
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_U4eWkLDRvSRw7KBOUaEAD8-X8Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.30.32.0/20
Signature Algorithm: sha256WithRSAEncryption
2a:ca:f3:e7:7f:15:79:ca:f5:e0:65:13:31:a8:5a:a3:bd:2a:
4b:b6:a5:53:a2:eb:eb:86:24:c3:cd:70:d6:f8:1d:97:e2:fd:
93:a0:d8:89:5e:c0:51:ca:5b:ed:73:22:b9:c1:59:b3:b2:dc:
dc:86:75:0a:54:25:8f:69:5f:13:6f:6e:93:db:bc:5d:35:0f:
f6:3e:4e:1e:48:72:5d:db:c6:bb:61:e6:92:7c:5f:92:ae:b0:
40:18:ae:4e:4c:51:9e:31:9e:f0:c9:4a:13:75:78:6c:15:8a:
a6:64:23:28:79:97:36:0c:34:81:6c:35:c7:83:01:98:9e:78:
ec:6a:52:83:13:11:2c:05:9f:f4:9c:0f:d0:8a:c0:be:bf:d9:
b2:d9:2b:d6:d1:37:d7:2a:7e:2e:35:af:4f:76:fe:d1:72:79:
46:aa:ee:6c:d5:1e:1d:2f:3d:38:d2:de:fd:2e:c7:2b:36:f1:
45:97:c3:db:f4:db:c6:5c:8c:c0:a5:26:3b:ef:06:c8:d5:f7:
2b:47:e2:2d:35:36:58:3b:07:49:7d:9b:0c:25:68:13:8c:1e:
44:26:9d:e7:43:ea:49:7f:fc:1b:e0:9c:46:87:51:77:b3:24:
f2:4e:11:f0:3d:fc:f0:7d:4e:7f:01:7c:6c:91:f2:e5:86:5b:
ce:63:c0:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org