Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/gVNMNGK6K8BqlkZM0RQhVOLWE_M.roa
File: gVNMNGK6K8BqlkZM0RQhVOLWE_M.roa (raw, json)
Hash identifier: maH00pvm1xjKav5Lc9OL6zWX2/2JztaWz+HnFuXASRw=
Subject key identifier: 81:53:4C:34:62:BA:2B:C0:6A:96:46:4C:D1:14:21:54:E2:D6:13:F3
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C7A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/gVNMNGK6K8BqlkZM0RQhVOLWE_M.roa
Signing time: Wed 29 Sep 2021 02:51:19 +0000
ROA not before: Wed 29 Sep 2021 02:51:19 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131660
IP address blocks: 114.25.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3194 (0xc7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:19 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=81534C3462BA2BC06A96464CD1142154E2D613F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:42:05:de:c1:51:34:00:35:6c:e1:7b:f5:8a:
1a:b1:7d:6f:6a:b2:35:3e:a9:7f:ab:fe:7a:53:59:
e4:72:71:13:c3:57:9e:00:7d:ba:9f:2c:7f:4d:73:
d8:e6:8e:7d:c7:91:87:70:ff:5f:b2:44:9e:0b:a6:
6d:70:b5:d9:80:59:3a:4b:5c:08:74:5f:1f:da:e1:
8a:ad:71:7f:b8:d3:88:4c:20:f0:7a:93:90:75:63:
d7:27:43:dc:d6:96:4b:82:e5:f7:bd:ac:b0:26:88:
40:4a:c3:17:fc:9f:66:a3:11:0c:ac:0f:fc:63:df:
d0:a4:3b:f2:88:f4:92:3d:72:41:4d:d8:a8:f1:32:
7c:8d:5d:bf:5f:75:a9:21:6e:87:e2:fa:9b:4f:0b:
46:11:ab:51:1e:b3:d8:24:31:35:b3:4e:65:a3:41:
01:3f:0d:6f:fc:76:17:66:b1:d6:68:6e:ee:2d:ba:
e8:0a:92:43:1b:38:8b:3e:07:f5:46:fa:03:ff:19:
ef:7d:28:09:10:61:7b:e7:de:14:ef:6c:00:be:db:
59:03:32:6e:38:e9:e5:00:d1:4d:77:f7:83:49:f4:
d9:64:0f:b8:3b:04:4d:1b:77:07:5d:78:ea:de:ec:
c6:ee:6f:3a:59:c0:48:44:2f:55:b8:25:72:52:fe:
ea:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:53:4C:34:62:BA:2B:C0:6A:96:46:4C:D1:14:21:54:E2:D6:13:F3
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/gVNMNGK6K8BqlkZM0RQhVOLWE_M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.25.251.0/24
Signature Algorithm: sha256WithRSAEncryption
73:ef:bb:dc:ca:d0:30:67:1d:95:d0:0d:f7:7b:64:12:6d:92:
ee:2c:31:0d:20:5a:fa:eb:bd:75:1c:bb:51:69:4f:50:9f:a3:
95:8e:eb:d2:ac:53:a0:ea:ce:b6:ab:43:b6:e1:c2:84:3f:ec:
18:e4:bf:3c:08:ba:6a:09:c7:22:5e:7f:41:0a:4a:b7:15:59:
0c:2b:ff:88:12:51:11:22:a6:04:c4:6c:d7:20:61:7f:ed:a1:
25:ea:a1:ac:e4:93:23:b6:34:47:3b:0e:e8:65:1e:d6:b9:88:
df:00:62:a7:19:0b:1a:a0:04:68:fb:d8:19:9b:b0:2f:d8:3f:
4c:2b:bc:f1:2f:90:ce:7c:70:70:d3:52:50:f7:c8:90:88:e2:
22:d6:fd:e9:5f:9f:26:97:95:bb:81:a4:a8:48:dd:f9:a3:ae:
87:ff:7b:dd:ea:e2:99:8a:1e:fb:60:0f:0f:4a:b8:42:fe:c4:
c9:4c:97:e1:29:b8:b7:18:55:6c:67:24:b5:11:f1:7d:36:3c:
ac:d4:33:31:d7:d0:4d:28:3d:db:8f:90:fc:13:74:b1:8f:38:
00:2c:82:50:0d:84:1f:c5:18:40:60:6f:87:8f:17:a9:9f:5f:
ed:bc:4f:d1:b3:7c:53:8b:65:c9:61:8c:53:6d:13:99:4f:7c:
2f:09:ae:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org