Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/jlfJ2-bzH8qcwxGxtXSWpwoOn8o.roa
File: jlfJ2-bzH8qcwxGxtXSWpwoOn8o.roa (raw, json)
Hash identifier: Ty0Boe+XXsq9fXfwbpR2uLyRxkqcN4XBRp2DzaQZj/w=
Subject key identifier: 8E:57:C9:DB:E6:F3:1F:CA:9C:C3:11:B1:B5:74:96:A7:0A:0E:9F:CA
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/jlfJ2-bzH8qcwxGxtXSWpwoOn8o.roa
Signing time: Thu 15 Sep 2022 02:48:37 +0000
ROA not before: Thu 15 Sep 2022 02:48:37 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 20940
IP address blocks: 203.69.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:37 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8E57C9DBE6F31FCA9CC311B1B57496A70A0E9FCA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c8:b7:76:6a:f0:3f:6b:b0:90:a0:d1:e8:c1:
5d:2c:bf:78:af:b3:ce:22:13:13:66:d2:1e:50:3e:
40:29:03:dc:9a:2c:e9:ed:05:6b:07:9f:80:a4:a6:
6b:ee:43:8a:07:8c:5c:a8:38:51:00:8d:b1:fc:19:
3e:62:20:6f:3c:2a:1b:e5:79:7b:46:39:93:4f:4e:
ab:6d:17:ff:cb:3a:86:27:f9:14:4c:f3:6d:ff:1f:
71:e1:a9:c5:19:1a:b5:99:a0:8e:59:23:6d:6f:43:
19:2c:0d:3a:06:56:8e:6c:4f:00:bc:ae:bd:11:37:
1f:85:1d:cf:0c:40:af:c8:06:33:ae:e0:11:a3:f9:
40:70:10:01:94:b4:ef:90:f3:cc:63:49:b4:02:c5:
d0:ef:23:a1:da:fa:d8:96:a7:4d:cd:b1:b8:f8:5a:
d6:1d:5b:6e:38:e2:97:10:69:68:7a:d0:f2:8c:82:
2b:c1:e5:61:d9:f1:f6:ae:d9:fd:b2:11:5a:23:00:
61:88:c0:67:b9:d8:77:d4:59:d9:ff:15:c2:5f:e8:
07:0d:23:45:36:a2:5c:d7:c0:c8:59:e8:52:65:e6:
e2:ba:5e:8d:9b:6d:71:cd:27:1e:4e:02:d0:78:a4:
43:33:1e:23:83:31:f7:ce:45:d7:f1:da:51:c6:bc:
ec:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:57:C9:DB:E6:F3:1F:CA:9C:C3:11:B1:B5:74:96:A7:0A:0E:9F:CA
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/jlfJ2-bzH8qcwxGxtXSWpwoOn8o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.138.0/24
Signature Algorithm: sha256WithRSAEncryption
55:1f:b9:03:7d:ff:61:cb:80:66:b5:18:cc:cb:12:9d:84:52:
41:19:12:b4:50:35:38:3b:6b:3c:61:9c:68:36:0e:05:7f:d6:
fc:10:69:da:ec:e9:43:3d:c8:11:c3:b2:0e:08:47:45:db:b7:
89:89:da:04:9c:ef:ae:97:c7:e8:5d:60:21:d5:0c:97:45:0b:
90:cd:21:2e:a5:fb:77:4a:fe:b8:43:ca:3e:30:c3:22:bd:fc:
cd:0a:ef:7c:71:55:74:40:42:d4:8e:ba:12:6d:c8:50:b3:0f:
93:1c:05:0d:9e:d3:b6:79:1a:e2:63:44:0c:a1:16:32:8e:23:
bf:d6:15:ae:fe:de:46:1e:e5:a9:6d:e5:1c:cd:7c:d8:cf:c5:
3e:e0:4d:0d:12:7a:3c:10:75:62:a0:40:a0:a7:ff:99:cd:a4:
81:64:2c:99:d7:72:c1:24:7b:98:de:54:5a:a9:65:29:b8:32:
8f:c0:08:5a:08:47:38:a4:ee:e4:1f:a0:c7:e8:f0:37:74:c5:
b4:61:50:ba:94:72:1b:17:4b:cc:54:8e:5e:f6:8f:64:27:f8:
54:55:22:d1:92:68:60:32:91:3c:78:b5:a0:81:c2:f4:d0:3a:
11:78:d8:52:6d:44:1d:63:da:66:16:48:5d:58:ad:0c:2b:b8:
b7:21:c6:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org