Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/extEkor2Ynz0gHQR5-yhmozIhW8.roa
File: extEkor2Ynz0gHQR5-yhmozIhW8.roa (raw, json)
Hash identifier: rO7MxQQXWPDrPWmY+AM35bdpVEBbYXRTh4ODrvNhl30=
Subject key identifier: 7B:1B:44:92:8A:F6:62:7C:F4:80:74:11:E7:EC:A1:9A:8C:C8:85:6F
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/extEkor2Ynz0gHQR5-yhmozIhW8.roa
Signing time: Thu 15 Sep 2022 02:48:06 +0000
ROA not before: Thu 15 Sep 2022 02:48:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 59.112.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:06 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7B1B44928AF6627CF4807411E7ECA19A8CC8856F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1f:32:00:a7:8d:64:c9:93:56:d2:af:4a:73:
b4:a8:a5:17:66:45:6f:b8:ee:b7:14:a9:c9:12:b5:
53:ff:28:d1:7b:60:d8:5d:65:8c:1f:66:90:ff:d3:
3b:c7:60:1b:71:b0:78:2e:88:6a:5e:87:54:2d:df:
29:cd:a8:0f:85:dc:e8:7f:0b:78:98:1c:59:34:bf:
be:ee:88:9f:07:da:90:1c:1b:8f:3c:a9:fa:f3:28:
7c:0f:a6:6c:00:50:62:18:8e:11:2b:a6:14:e8:e3:
e1:ca:a0:bc:87:06:da:d1:6a:27:12:4d:0c:47:13:
06:a5:be:0d:66:90:5e:8b:2d:30:52:19:0d:90:71:
cf:2a:9b:f9:92:98:34:57:39:37:70:3d:e2:aa:e3:
1f:c9:a0:82:f0:93:44:44:1f:d3:eb:4a:91:29:68:
43:ea:57:6f:6a:94:e4:ae:a8:a9:97:3f:f2:9d:bb:
91:ad:a7:6a:5b:da:f6:e3:c1:f6:df:ef:30:4f:3a:
74:62:18:00:a2:60:bc:42:3c:87:56:ad:04:51:de:
c3:b8:7e:07:46:b8:e3:c9:4f:45:7f:57:f0:dd:1c:
6f:9e:1f:1a:4f:4f:31:d7:1f:8a:4d:44:23:79:bd:
22:33:72:37:42:b9:93:86:a1:20:95:f3:01:10:43:
e1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:1B:44:92:8A:F6:62:7C:F4:80:74:11:E7:EC:A1:9A:8C:C8:85:6F
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/extEkor2Ynz0gHQR5-yhmozIhW8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.112.0.0/13
Signature Algorithm: sha256WithRSAEncryption
62:42:c0:24:33:6e:21:8d:32:ec:aa:c5:26:83:3e:8f:2f:60:
85:21:dc:8f:1f:93:69:51:00:a5:6f:e4:7b:5e:8c:fd:d4:4a:
85:04:a8:27:82:5f:cd:08:e6:f6:e5:bc:dd:61:bd:4a:3a:a2:
06:18:35:7a:44:6d:8e:b6:d5:6a:35:91:cf:95:83:a8:6e:b2:
24:be:22:cd:15:3a:48:eb:f8:cb:e4:d8:fd:a5:a2:47:a5:d7:
7c:9e:81:af:6d:be:e2:5e:03:46:99:fd:d8:98:08:c3:6b:24:
41:f4:28:c0:83:98:98:2a:34:77:71:4d:75:40:52:ea:7b:96:
7a:f0:93:bc:72:c4:eb:d7:5b:eb:c3:b9:d8:ba:38:e6:fc:b4:
e5:f6:d4:6c:87:9f:04:e9:17:35:99:b6:1e:c7:04:07:16:43:
8e:95:10:9d:11:07:74:2f:99:bd:c4:89:32:12:3b:fb:17:67:
c3:f0:3c:58:13:30:9d:06:67:fa:86:85:eb:54:ff:da:39:7b:
ba:de:c8:ac:f8:7f:de:61:45:97:76:ae:01:b5:bc:17:38:f7:
c0:47:38:68:d7:9c:a1:d9:ac:bc:b4:91:ee:36:91:21:4a:7b:
5d:c2:6f:cc:da:7e:4b:87:dc:7f:2e:64:e1:42:f9:bb:2a:c4:
f3:f4:a8:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org