Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/c8rfWBbswtcaxLiilz3KfEQV_OY.roa
File: c8rfWBbswtcaxLiilz3KfEQV_OY.roa (raw, json)
Hash identifier: 7rSbIxq6kUwkYgZlfgwr65slmcZs6IdzPu5Y4Hdc7hM=
Subject key identifier: 73:CA:DF:58:16:EC:C2:D7:1A:C4:B8:A2:97:3D:CA:7C:44:15:FC:E6
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0B07
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/c8rfWBbswtcaxLiilz3KfEQV_OY.roa
Signing time: Sun 07 Feb 2021 11:46:40 +0000
ROA not before: Sun 07 Feb 2021 11:46:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17714
IP address blocks: 203.78.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2823 (0xb07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:46:40 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=73CADF5816ECC2D71AC4B8A2973DCA7C4415FCE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:91:5a:7e:82:d8:f3:1e:b7:92:54:8f:f9:55:
ca:a3:2e:44:6a:22:d2:6c:a7:f8:b1:5d:29:40:4f:
21:cc:b2:b3:c8:a4:9b:6e:55:4b:77:62:06:14:98:
c2:1e:65:18:1f:e7:3c:6a:93:b1:2e:34:4b:86:37:
29:3a:79:20:14:7e:34:9d:84:d5:6b:6f:c5:c9:4c:
d9:96:2e:c1:17:a2:bc:7b:a7:93:1a:d3:97:60:2c:
52:1d:48:6f:65:cb:0d:cf:d2:50:18:64:2d:cb:09:
17:cc:31:02:39:1e:13:0b:9f:0f:f3:11:9c:8c:58:
08:d6:e1:c8:d4:f0:31:98:a9:60:4b:18:04:00:93:
7c:a5:71:09:54:44:14:dc:f8:49:03:54:43:56:56:
07:1b:d2:95:a3:da:89:46:31:55:b5:52:6b:77:f7:
f2:1d:43:c1:78:7e:f0:7b:9f:51:f7:25:2e:3b:07:
7b:c0:37:4a:f4:23:ed:ae:81:c4:82:a0:d8:b7:c0:
11:b8:c1:2b:e8:43:b9:42:0a:0c:71:e4:82:7c:84:
d3:e6:6f:7b:08:f6:56:d8:38:4e:79:cd:7c:14:7f:
98:b0:3c:e0:18:79:3c:e6:aa:39:13:db:d6:7b:6f:
11:6a:59:6d:14:48:6e:80:0d:54:8c:33:3b:11:f7:
b1:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:CA:DF:58:16:EC:C2:D7:1A:C4:B8:A2:97:3D:CA:7C:44:15:FC:E6
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/c8rfWBbswtcaxLiilz3KfEQV_OY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.78.180.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:8b:55:20:f7:78:cb:4f:29:50:7c:cf:96:1c:e6:0e:bc:47:
80:89:71:aa:10:8d:f0:02:f5:16:9a:08:c3:90:16:6a:1f:33:
47:94:a2:df:da:3d:3b:52:2c:01:cb:4c:82:98:7a:f3:ed:e6:
af:9f:92:08:65:30:d1:f1:09:c2:26:c4:22:3c:d8:85:f0:03:
c8:f0:ee:1c:86:c1:09:24:b7:7c:c0:45:74:c4:1c:9a:4c:2f:
90:be:81:dd:a8:b3:01:28:b8:e6:a3:f8:7f:d4:83:ce:03:84:
f9:6f:3c:b9:16:9a:5e:ca:31:c4:b9:d5:64:19:51:e7:87:78:
54:70:00:43:2c:fe:2a:40:94:93:13:02:2e:c4:18:54:c4:50:
f8:96:e5:fb:1c:57:a0:51:ed:6a:6b:70:aa:cf:96:b8:ce:8a:
a4:42:3c:d8:ac:2a:17:7a:5e:93:11:81:fa:73:2f:a0:47:2c:
75:54:2c:c5:6a:69:1a:26:58:43:00:4e:8b:53:c9:94:c3:07:
14:ce:d0:7e:b9:fd:da:0b:4f:8c:17:4b:89:b5:52:a9:ce:dc:
02:5d:b2:34:9d:48:77:cc:e6:9a:55:f1:28:30:51:45:ff:3d:
62:e0:93:ba:e4:96:e0:79:57:0d:84:13:28:70:41:3f:b0:4a:
a9:16:aa:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org