Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ecp-DgduUep_knI3r-87tJ6Wad8.roa
File: ecp-DgduUep_knI3r-87tJ6Wad8.roa (raw, json)
Hash identifier: lBFQHsxmjDowRPP9D97ms7yZJknhaz/BI6pABqFzomc=
Subject key identifier: 79:CA:7E:0E:07:6E:51:EA:7F:92:72:37:AF:EF:3B:B4:9E:96:69:DF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0DBB
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ecp-DgduUep_knI3r-87tJ6Wad8.roa
Signing time: Thu 22 Dec 2022 09:08:57 +0000
ROA not before: Thu 22 Dec 2022 09:08:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7500
IP address blocks: 2001:b000:19e::/64 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3515 (0xdbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Dec 22 09:08:57 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=79CA7E0E076E51EA7F927237AFEF3BB49E9669DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:0a:22:ae:b3:99:42:14:80:1d:bc:a6:27:88:
d1:b1:a8:69:d4:ff:24:ec:40:31:8d:84:e9:bd:8b:
33:eb:93:d7:31:95:c2:8e:27:1e:7e:6f:6f:2c:39:
84:de:3b:f7:00:6d:3f:ac:bc:8e:5e:b5:61:a4:93:
47:bc:d6:db:31:63:3b:32:5d:d7:e3:8b:5e:3a:28:
b8:9d:e4:de:d8:a2:7c:9d:7b:8b:ec:87:bf:eb:c1:
44:ff:3a:84:97:8e:31:eb:d9:26:01:1b:48:17:4a:
79:eb:ac:10:c6:f4:e1:65:85:f0:13:21:41:3d:a5:
05:a3:6a:d1:5d:53:62:23:f2:28:5c:20:db:81:85:
68:e5:e0:f3:b3:fc:bc:36:ad:44:c1:be:92:a8:7f:
09:d1:15:18:21:da:0c:b2:ea:a9:f4:74:9f:6b:9c:
07:52:d4:02:be:c0:a5:4a:ae:ff:71:1b:23:2b:11:
80:96:cd:6b:ea:11:3b:0d:5e:73:bd:a2:57:ad:e1:
a2:4c:bb:f3:2d:5e:76:20:33:8d:d2:93:61:c6:a3:
94:2a:27:ca:67:07:f7:e3:11:ae:c5:18:26:49:8c:
ce:08:de:9b:aa:ed:bf:0e:5c:66:7a:a7:6e:17:fe:
ec:12:5e:a6:34:3f:f2:dc:29:aa:44:b4:b1:80:d6:
77:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:CA:7E:0E:07:6E:51:EA:7F:92:72:37:AF:EF:3B:B4:9E:96:69:DF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ecp-DgduUep_knI3r-87tJ6Wad8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:19e::/64
Signature Algorithm: sha256WithRSAEncryption
c9:86:95:ea:49:e1:ea:54:53:ad:c5:7b:91:40:ec:7d:74:e1:
d7:c7:81:02:e4:47:31:85:58:8c:bc:b8:c5:44:cc:95:b7:48:
ea:24:46:64:4a:10:03:20:4a:12:96:db:57:3b:19:2f:7b:68:
0f:ed:12:81:77:e7:e1:ce:c6:07:96:52:7c:28:cd:b6:f0:7b:
fb:2f:75:64:36:9c:51:0a:4d:7c:5e:c0:9e:5a:c8:df:a2:1b:
19:9e:3f:6e:09:dc:48:ca:c5:89:fc:d2:3c:30:29:39:66:b4:
c7:f6:90:b6:93:94:e1:a9:95:a5:f7:4b:b8:52:8e:85:e1:6a:
c7:e7:cd:45:91:2b:f1:ab:35:1b:f6:57:d0:f2:ca:1c:6e:a7:
67:56:c0:8b:b5:f7:f9:cd:85:76:62:4e:18:7a:3d:9d:91:01:
e1:4c:78:76:c0:bf:a3:80:b9:c3:04:38:40:ac:c4:b7:10:a5:
30:8b:88:e9:f7:3b:b9:ad:2b:38:bf:83:e7:9e:08:7e:65:85:
f4:62:6c:bd:a6:bf:1c:64:ba:01:e0:5c:74:58:92:42:f2:6f:
a6:01:01:9a:8d:03:bb:92:40:08:15:98:49:ec:cf:84:20:f0:
1d:ef:5c:7a:f3:96:e2:28:97:f6:34:f5:c4:2c:7b:9e:80:14:
b0:a6:2c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org