Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/dmX-u7noGRNsAaIA5tTocH52N0M.roa
File: dmX-u7noGRNsAaIA5tTocH52N0M.roa (raw, json)
Hash identifier: ZWUUCsVckk1QMwm09zqRyGnXqlMQCNvev5fLYQ+Da6Y=
Subject key identifier: 76:65:FE:BB:B9:E8:19:13:6C:01:A2:00:E6:D4:E8:70:7E:76:37:43
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 083A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/dmX-u7noGRNsAaIA5tTocH52N0M.roa
Signing time: Tue 29 Sep 2020 09:58:29 +0000
ROA not before: Tue 29 Sep 2020 09:58:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20940
IP address blocks: 203.74.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2106 (0x83a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7665FEBBB9E819136C01A200E6D4E8707E763743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:49:f4:95:a4:b9:f9:da:c1:5a:02:66:bf:87:
da:65:22:b0:84:e4:ee:3b:59:62:f9:80:f5:45:5e:
db:57:0c:fb:8a:23:9d:ff:6e:2e:a0:4b:22:ab:4d:
f0:95:0e:94:2e:e3:16:cd:89:cc:f3:77:a1:c8:c5:
94:3c:9a:f7:e8:79:30:bc:22:dd:c2:39:2b:05:bc:
23:7c:10:c5:fb:fb:3f:d8:77:d7:16:42:98:d9:00:
fa:9a:17:5e:77:28:9c:0b:68:9d:69:49:6f:b1:f1:
97:54:1e:50:c4:63:f8:12:27:9b:ba:a4:0f:fd:19:
96:b2:93:d1:90:6a:58:c6:61:53:40:7f:0f:5e:35:
b3:81:00:9a:39:26:4a:d1:5e:14:01:46:cf:a4:cf:
7a:bf:30:e9:21:45:b3:9e:de:f8:4f:43:4c:f8:63:
8e:49:ab:6a:9c:b5:e9:50:0c:7d:dd:d4:14:93:6a:
88:3c:db:49:8f:6e:44:65:6d:64:64:e6:94:75:0c:
2a:65:4b:f7:71:b0:f8:e2:33:9e:b8:1f:d8:c4:26:
78:06:26:a6:f3:a5:ca:f9:8d:97:7b:72:b8:d1:2e:
ab:7a:6e:7f:69:96:d3:56:cd:52:b1:05:0a:c1:50:
39:fb:29:aa:6d:60:3e:e5:8a:60:ce:75:75:2f:73:
56:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:65:FE:BB:B9:E8:19:13:6C:01:A2:00:E6:D4:E8:70:7E:76:37:43
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/dmX-u7noGRNsAaIA5tTocH52N0M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.95.0/24
Signature Algorithm: sha256WithRSAEncryption
20:34:4f:35:31:bd:b4:9d:54:14:5b:7b:4e:c4:2c:86:d9:0b:
82:6e:13:25:d9:25:16:e6:26:a3:07:f4:5b:5b:25:41:56:13:
4b:99:3d:48:61:eb:4e:bd:9f:03:b3:bf:bc:22:09:f7:78:0c:
b0:bd:32:d1:32:b6:1e:65:d4:20:6b:90:d7:d4:4e:99:29:50:
aa:0f:25:f5:b5:d9:9b:da:e3:20:51:af:90:cd:cc:27:55:ab:
a4:06:f8:b5:ca:5f:c3:25:21:37:5f:41:e2:39:ec:80:47:f9:
6e:c9:37:30:f9:03:58:7d:d8:17:5f:71:4c:91:b0:6c:e3:91:
d4:24:01:25:5c:05:4d:21:8f:17:36:02:b6:0d:1c:ea:86:01:
0b:d2:a9:43:c6:3b:26:d3:a5:b0:d1:bf:10:50:1e:69:4e:47:
ff:8e:1e:01:05:25:d5:05:5e:c3:2b:b5:34:72:46:7b:41:12:
7e:7f:ed:4b:3a:65:14:f6:3d:f5:31:fa:6c:bd:97:29:d8:7c:
df:ef:a0:fb:a5:98:58:99:46:72:52:9c:2d:09:ef:c7:8f:8c:
5d:8b:71:31:67:c4:c2:09:7f:f7:d3:4f:73:66:cf:52:30:06:
97:22:53:17:64:d9:8d:ae:06:ef:96:0c:de:e2:9c:ed:1f:1d:
80:fd:c0:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org