Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/hDqaZUN_39Y0kqbgnJKOsrp9ImI.roa
File: hDqaZUN_39Y0kqbgnJKOsrp9ImI.roa (raw, json)
Hash identifier: dz6TN03wBOPYcC4rO2smlIL6LCLnNXXXRVdrDCtWskI=
Subject key identifier: 84:3A:9A:65:43:7F:DF:D6:34:92:A6:E0:9C:92:8E:B2:BA:7D:22:62
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C16
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hDqaZUN_39Y0kqbgnJKOsrp9ImI.roa
Signing time: Wed 29 Sep 2021 02:50:51 +0000
ROA not before: Wed 29 Sep 2021 02:50:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 202.39.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3094 (0xc16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=843A9A65437FDFD63492A6E09C928EB2BA7D2262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3f:36:03:c8:ff:35:7c:73:fd:bc:6f:cc:6f:
d4:da:fd:8b:44:a2:e4:60:af:38:e5:5c:51:df:67:
fb:0d:ad:08:b1:b6:eb:77:d6:20:de:93:e9:2e:f1:
e7:00:4c:41:d6:f2:1a:80:4c:ba:fb:2f:4c:ac:82:
15:40:8d:13:e1:4d:8b:74:34:9a:b0:7d:d7:7e:55:
c9:cf:78:6a:dc:f4:c9:f5:c0:31:74:3f:15:ea:61:
85:0e:8c:1e:a0:9d:68:57:43:46:e6:0f:aa:5c:e8:
71:cb:28:74:31:3a:c6:82:e9:93:e4:f0:73:85:9a:
37:d7:23:0b:08:81:b6:7c:65:29:56:61:94:82:95:
d6:87:37:c4:f7:9c:08:c5:49:d1:11:ec:9c:a2:80:
f6:b6:84:ce:d7:fb:2a:0d:3c:99:df:50:bd:28:93:
20:3c:c5:ed:b1:43:60:c9:0a:92:e4:e4:1f:59:12:
a9:07:70:59:6e:0f:f2:85:42:c0:c4:16:d3:a2:60:
ce:70:5f:d0:20:72:eb:37:b7:a7:65:06:ee:85:e6:
61:a7:7d:6c:6d:77:9e:e5:2a:e5:43:df:6e:9d:20:
bb:7c:26:00:52:ea:ec:ce:2f:50:5b:ab:95:5c:92:
40:5e:30:0c:81:77:65:4d:2e:1f:94:ea:da:b6:cf:
c0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:3A:9A:65:43:7F:DF:D6:34:92:A6:E0:9C:92:8E:B2:BA:7D:22:62
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hDqaZUN_39Y0kqbgnJKOsrp9ImI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.128.0/17
Signature Algorithm: sha256WithRSAEncryption
40:aa:58:42:71:bb:c6:f8:c6:ba:b6:f2:10:25:2c:d1:e1:6b:
3b:93:69:74:a9:57:ea:13:18:bf:67:2e:27:18:ff:be:af:38:
e7:7f:19:6e:f9:be:b0:f9:cc:02:8e:86:bc:d6:ce:fe:81:47:
b4:c9:6d:2d:d5:1b:ab:69:40:b0:e8:ba:d6:4d:80:6c:28:09:
02:87:46:96:cd:9e:5b:a2:ef:cf:1d:89:f0:5c:97:11:62:92:
2d:6e:49:6a:0d:a1:7d:04:ea:d2:41:f7:5d:53:be:a6:7b:84:
1c:e1:c8:c9:85:ba:6b:77:bc:eb:83:e9:1e:f3:66:db:31:1d:
2c:db:02:75:34:f9:01:be:19:37:92:56:bd:78:26:e9:32:8f:
8f:e5:bb:93:b0:4b:5b:2b:a5:4d:f9:96:75:d8:c5:fa:44:58:
36:ff:8e:b8:eb:e3:8e:55:10:82:88:73:cd:76:48:af:f6:e9:
8d:32:ab:5b:79:49:a1:f7:5a:a3:07:7e:fa:99:f2:c5:51:92:
9f:0b:30:5a:35:59:95:42:ed:b0:03:eb:5c:b0:ca:10:b2:18:
7a:c1:96:d0:3f:d5:9a:98:ae:40:b1:c0:4b:49:31:10:5c:9f:
6c:58:d2:da:79:37:28:52:1e:2d:11:a7:75:2c:f0:c7:d0:02:
61:2f:6d:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org