Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/i5HTq_doRW1c-e38zBdjsj9Ko7k.roa
File: i5HTq_doRW1c-e38zBdjsj9Ko7k.roa (raw, json)
Hash identifier: xjh0UKNZprS8t7BmZnc3I+7HnoqK+9Asp6CaHSImBvM=
Subject key identifier: 8B:91:D3:AB:F7:68:45:6D:5C:F9:ED:FC:CC:17:63:B2:3F:4A:A3:B9
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0ADF
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/i5HTq_doRW1c-e38zBdjsj9Ko7k.roa
Signing time: Sun 07 Feb 2021 11:39:28 +0000
ROA not before: Sun 07 Feb 2021 11:39:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 202.39.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2783 (0xadf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:39:28 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8B91D3ABF768456D5CF9EDFCCC1763B23F4AA3B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:cd:af:03:43:23:f8:e1:c7:a4:54:dc:10:08:
d3:79:da:5e:d3:35:4e:f5:9c:f0:fc:21:57:af:e2:
bb:e5:3e:bb:1b:8e:7d:83:4f:9f:f8:2c:72:99:7d:
4a:1f:a0:cb:2d:35:53:b3:34:4b:f2:05:ab:3e:03:
32:96:11:cc:9e:c8:5e:06:57:d0:18:99:b0:a7:e8:
a8:7c:ec:4e:1c:d3:56:1c:fd:ce:98:3f:b7:56:d7:
15:1a:72:d1:e0:2d:42:42:e8:d0:d4:b3:94:d7:03:
50:78:df:ee:6c:a8:92:05:8d:a8:8f:9f:69:ba:b2:
26:3d:a4:df:68:3c:df:e2:cf:5b:cf:22:5a:83:68:
78:30:f6:2a:cb:94:44:0f:b2:ce:ba:60:b5:b4:19:
7c:4c:ac:e9:4e:f8:f9:86:a6:bd:a5:2b:3d:21:d2:
03:45:07:30:c9:7f:9a:a7:d4:8f:39:c8:76:ca:4d:
e6:a9:38:ed:cd:d5:d7:18:51:bb:7b:39:99:75:c9:
35:59:2f:9a:73:ae:ae:77:ee:9c:08:fa:fd:7e:25:
47:b2:78:e7:8d:45:00:27:76:1b:59:7b:0a:27:54:
6a:8c:79:a6:99:93:2f:a0:6f:ed:d3:52:a7:de:c5:
80:e6:6c:65:99:a2:47:5d:26:74:5c:f9:b3:0c:45:
4a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:91:D3:AB:F7:68:45:6D:5C:F9:ED:FC:CC:17:63:B2:3F:4A:A3:B9
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/i5HTq_doRW1c-e38zBdjsj9Ko7k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.64.0/19
Signature Algorithm: sha256WithRSAEncryption
1b:8f:c6:8e:aa:c1:76:47:53:fa:7b:65:3b:ee:c6:31:d2:c3:
78:3a:93:ee:37:71:71:ad:cd:d3:bd:67:d7:78:18:25:10:ee:
a6:e9:18:b4:9c:48:a1:b4:a7:4b:32:07:ec:49:bf:c2:d1:a1:
fa:36:68:ed:95:04:10:b0:22:a5:69:d0:28:d0:0c:1a:3c:17:
62:29:51:c8:3e:e8:61:f1:d9:80:20:83:d4:28:f8:a6:5c:11:
81:45:8d:30:af:c4:4a:e1:eb:a1:ae:ea:39:80:ba:51:dd:c8:
1e:8b:25:c8:65:f5:15:dc:28:94:39:b9:af:5c:b9:2d:d6:0a:
8d:46:73:b8:91:ff:5d:d7:11:2a:c8:14:14:3d:2d:8b:3f:67:
f7:f3:c4:af:6d:ad:7c:cf:3d:f4:e4:4a:6d:5d:32:b4:64:ac:
ac:c4:4d:51:2b:c9:3b:a6:5c:5e:00:94:61:fb:27:f5:f7:85:
f2:28:cc:f4:4a:96:27:64:9e:98:07:5b:63:99:95:f5:cb:f5:
ad:09:f4:c8:66:c2:a5:39:60:f9:4d:4d:8e:b6:a5:be:ee:56:
f0:bb:40:69:61:48:3b:34:00:93:0d:58:bd:60:f1:f8:99:0c:
65:cf:2b:6b:34:5a:c3:c1:19:a7:2d:0a:89:ca:5a:3a:1c:29:
5e:6d:a5:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org