Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/botOrw4jVAcsM45uryBAxcxB30k.roa
File: botOrw4jVAcsM45uryBAxcxB30k.roa (raw, json)
Hash identifier: rIbV2oZG5y6kEskyNbVa66IaeyDJzK7TxMe/wsNLT5Y=
Subject key identifier: 6E:8B:4E:AF:0E:23:54:07:2C:33:8E:6E:AF:20:40:C5:CC:41:DF:49
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0878
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/botOrw4jVAcsM45uryBAxcxB30k.roa
Signing time: Tue 29 Sep 2020 09:58:46 +0000
ROA not before: Tue 29 Sep 2020 09:58:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10126
IP address blocks: 203.160.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2168 (0x878)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:46 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=6E8B4EAF0E2354072C338E6EAF2040C5CC41DF49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:93:5c:12:ab:c7:48:bf:55:f9:67:e7:3e:a0:
cf:39:ae:bd:37:75:f1:69:a4:08:59:79:6e:24:14:
bc:fe:c5:06:5e:b6:f7:71:c5:09:c9:f2:3b:71:e1:
5a:b5:8f:f9:66:34:df:23:ea:b3:a7:b6:79:2f:14:
86:c5:d6:8c:da:1c:9a:cb:ad:2d:f7:19:8c:f1:06:
6e:b1:81:10:58:85:4a:0f:da:e4:a7:2c:20:b1:73:
84:6c:9a:5a:4f:00:65:1b:64:75:b8:ab:f6:0b:a4:
56:44:85:10:cd:38:ac:1f:a8:e4:73:05:ca:eb:37:
8d:2e:ea:58:cc:4d:84:ce:0f:66:53:46:1b:1c:66:
0b:2d:e7:ba:7e:84:6e:1d:aa:29:a7:33:38:81:05:
53:32:63:36:81:b0:e4:8b:60:60:cc:73:0a:d0:65:
43:66:f9:51:28:71:63:30:14:a2:fb:0f:b7:76:9e:
2c:8a:fd:4b:54:9d:e2:32:03:9b:e7:e1:ef:f3:19:
19:b5:68:42:27:5f:97:8b:8a:82:a0:6e:ae:1b:e0:
25:c9:f3:90:b4:9d:18:55:c5:90:9a:3f:2e:b0:63:
14:fa:03:8c:a4:5a:42:90:93:c9:43:a2:e7:1e:7e:
54:fc:95:bf:3f:0b:db:5d:74:28:13:6e:7c:41:54:
86:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:8B:4E:AF:0E:23:54:07:2C:33:8E:6E:AF:20:40:C5:CC:41:DF:49
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/botOrw4jVAcsM45uryBAxcxB30k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.240.0/20
Signature Algorithm: sha256WithRSAEncryption
22:f3:c0:a1:e4:32:0d:f2:8e:05:ad:bd:b1:5f:4e:ce:78:f5:
b2:0e:f2:5d:c0:e9:4e:90:a2:e6:34:dc:08:07:70:3f:f6:04:
3f:a3:ed:d5:f1:6a:d1:a9:8e:6b:ef:8f:60:a3:3f:08:00:5a:
76:7a:09:44:6d:54:1f:83:e5:7b:58:20:04:3a:74:1a:93:2b:
f4:2b:25:9d:68:dc:d9:70:ac:ae:c9:e4:dd:c1:e7:03:9c:4e:
58:3b:c5:16:a5:4c:d2:99:d2:f0:a3:8e:6c:47:f4:18:cd:33:
1a:73:6f:56:4d:5b:7c:c0:b1:05:19:fc:5a:70:2c:25:6c:48:
ec:2f:70:c3:76:37:90:35:fd:2a:66:b2:fa:1a:a6:55:38:46:
41:59:ca:f7:df:d6:b1:6e:4c:48:13:fa:74:b4:40:d9:59:08:
ed:37:ee:d8:fd:ff:26:d4:8d:5a:11:78:98:36:e0:46:34:b0:
28:8d:86:2c:91:09:5f:b1:e8:a5:48:55:49:c7:6e:34:fa:46:
0c:6c:8b:74:de:2f:e2:68:00:5a:af:ed:ad:80:70:56:11:7f:
93:a0:d6:e6:79:f5:78:0e:d5:57:a0:c2:ec:37:3a:5f:ba:cd:
42:8e:8b:19:c8:fe:d4:b3:77:f9:d9:6f:b2:bb:40:d0:b7:a5:
67:fa:4d:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org