Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/bUXvsas9bSqsPSoR7xl_o8nqZbk.roa
File: bUXvsas9bSqsPSoR7xl_o8nqZbk.roa (raw, json)
Hash identifier: F4B412FEXZS9kzLji5ieHPk56hmq++x22Iw6HaJoNgI=
Subject key identifier: 6D:45:EF:B1:AB:3D:6D:2A:AC:3D:2A:11:EF:19:7F:A3:C9:EA:65:B9
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C78
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/bUXvsas9bSqsPSoR7xl_o8nqZbk.roa
Signing time: Wed 29 Sep 2021 02:51:18 +0000
ROA not before: Wed 29 Sep 2021 02:51:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7481
IP address blocks: 210.62.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3192 (0xc78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6D45EFB1AB3D6D2AAC3D2A11EF197FA3C9EA65B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:47:88:25:e5:72:1a:9a:5c:f3:64:a3:9d:3b:
c7:dc:49:56:95:73:f8:45:d1:50:9b:28:a2:2f:fb:
03:4c:72:9a:e9:0e:f5:c1:23:3e:5d:2f:99:60:8f:
82:55:03:d3:b9:07:8e:64:c3:6e:b9:8d:b0:eb:95:
6f:bb:d4:d1:3d:e3:a3:85:f2:5a:48:98:14:9c:56:
9d:a2:b9:24:2e:dc:6f:c0:d0:8e:40:9a:77:19:50:
85:85:87:39:05:1a:b5:fb:3c:7c:d1:f9:75:0e:c2:
8a:37:61:11:a7:34:39:89:f3:1f:f6:7d:64:5c:e1:
5a:9c:bd:3a:7f:ec:9c:13:53:03:eb:eb:ba:74:0f:
ca:bd:43:8a:d4:02:9a:5f:a2:1b:8f:f2:b6:9c:c0:
51:a2:06:17:3e:4d:12:d8:75:4d:b5:93:c5:d2:4d:
2b:e0:fe:2c:cf:1e:15:93:37:e5:ac:04:f0:34:a7:
a7:0a:ec:e3:7d:ec:c3:08:86:8d:d0:8e:ed:23:5b:
4e:6b:57:2c:00:88:11:63:e1:ae:f8:3d:fa:1a:17:
44:b8:e3:7e:ea:4f:3b:36:3a:58:e5:49:f4:1b:43:
37:91:1c:80:21:97:7a:06:48:44:6f:ba:4c:41:dd:
bd:75:d8:e2:65:0a:cb:cb:7d:91:b6:53:72:f8:32:
fe:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:45:EF:B1:AB:3D:6D:2A:AC:3D:2A:11:EF:19:7F:A3:C9:EA:65:B9
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/bUXvsas9bSqsPSoR7xl_o8nqZbk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.255.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:43:8b:b7:5d:3e:25:a9:3e:09:dd:dc:28:4e:bc:49:48:90:
9c:68:83:fd:a6:b9:a3:5c:7e:8c:16:d4:65:11:9a:b8:d8:7a:
e3:9c:52:c6:bd:0c:eb:12:0b:7a:40:ca:92:82:18:ad:ff:0f:
75:2f:2a:47:d1:75:64:b0:1c:10:68:51:1c:4f:ca:c6:c8:32:
13:33:2a:e2:5d:8d:3a:ec:b2:e1:7e:9f:df:85:21:8e:d3:0f:
3b:c4:d9:42:a4:9d:81:95:e0:08:aa:2f:d9:38:c6:1c:7a:4c:
f7:ce:53:d1:2f:40:27:4a:7c:33:5a:d8:fd:5d:c6:a3:a5:b8:
4f:64:ee:67:26:5e:ca:e2:12:ad:2a:7e:74:27:a5:28:8d:68:
6b:86:54:6d:f0:a7:01:bc:1e:44:c0:80:82:f1:ac:15:26:46:
00:70:29:7d:2a:ff:66:ce:04:0c:78:d5:2f:16:34:89:b3:e8:
83:a2:e3:9d:f9:85:83:5a:c8:5a:66:69:60:fd:37:9b:1f:b3:
20:a8:f1:fc:dc:4a:71:c0:f1:36:c3:d3:c7:41:df:54:03:00:
26:02:07:f5:5a:8c:ed:a3:a8:c0:ce:e9:7f:d2:6a:88:a2:bb:
10:cb:2a:c5:57:fb:ec:45:68:33:4d:f3:e2:30:31:49:da:54:
7a:2c:ce:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org