Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/jrxEAso7bpmorvGysXVbIgPqNRc.roa
File: jrxEAso7bpmorvGysXVbIgPqNRc.roa (raw, json)
Hash identifier: gzCsj9ff9NeRBG9S4gGKfhnAW0QjSMrT9LXTvULylXY=
Subject key identifier: 8E:BC:44:02:CA:3B:6E:99:A8:AE:F1:B2:B1:75:5B:22:03:EA:35:17
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 081D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/jrxEAso7bpmorvGysXVbIgPqNRc.roa
Signing time: Tue 29 Sep 2020 09:58:22 +0000
ROA not before: Tue 29 Sep 2020 09:58:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20940
IP address blocks: 203.69.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2077 (0x81d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:22 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8EBC4402CA3B6E99A8AEF1B2B1755B2203EA3517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b1:22:81:93:50:af:40:90:a8:0e:49:59:4d:
d3:8e:ec:d4:a8:57:8c:15:f2:38:8c:3a:20:9c:dd:
d9:10:12:9f:74:b3:ba:63:8f:fa:e7:e5:42:44:96:
c0:6f:60:f0:2f:d7:10:55:e6:53:d9:d0:b0:ff:d9:
57:b4:6c:7e:05:2e:97:38:28:36:4b:84:27:53:95:
34:83:81:26:8d:f4:c0:6a:e7:a7:48:b3:45:f3:d7:
0e:4e:84:f8:b0:3e:a7:5c:f5:be:2c:9f:02:e5:43:
ae:7e:8c:03:70:55:6f:37:6a:fc:c7:b1:03:4c:14:
fa:e4:b3:b5:d0:ef:e1:d1:98:f5:ff:78:46:0b:2b:
ba:d2:59:14:34:4a:fc:0b:16:3c:47:58:12:68:a3:
c8:e5:c7:cd:ee:0a:a9:89:19:9b:a5:1e:dc:24:2d:
91:49:88:27:83:65:21:2d:e4:2e:89:da:94:06:37:
bc:21:58:5e:d8:ae:dc:79:71:a5:60:60:f3:00:aa:
25:9d:04:92:63:69:a4:5d:87:26:68:94:f9:cb:9a:
44:1d:cd:da:86:51:81:be:db:8c:d9:c6:54:e6:7e:
69:6f:f9:39:80:c2:0b:75:69:53:0f:10:0b:c3:f1:
2e:14:43:db:84:ad:db:7e:2c:70:17:62:93:e7:24:
b9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:BC:44:02:CA:3B:6E:99:A8:AE:F1:B2:B1:75:5B:22:03:EA:35:17
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/jrxEAso7bpmorvGysXVbIgPqNRc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.141.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:99:b8:f4:7d:62:7c:d2:4b:3d:55:5f:fb:34:6d:17:54:91:
af:06:1d:d8:1d:c2:63:a4:81:c3:59:8d:39:7c:4c:53:7e:ce:
99:b9:05:28:5d:de:58:51:56:9b:8f:a2:61:ab:96:56:0c:46:
85:3b:5d:5d:97:fd:a0:a8:aa:08:13:cb:0d:c6:93:25:24:89:
88:80:67:fe:b1:b8:d7:8c:ed:89:df:b6:b1:78:f9:fd:36:fb:
47:3f:f7:46:88:35:4f:78:b9:ee:86:4a:ac:c1:f3:36:73:b5:
11:cb:06:d8:d6:f9:a7:aa:a2:cc:cd:d1:88:53:86:b3:07:79:
8a:ef:5e:98:4c:7f:42:57:2b:37:5c:db:10:3e:ec:6e:84:27:
96:38:a6:3f:56:9e:52:96:f4:64:a1:d7:34:96:40:3d:be:7b:
81:61:d6:36:68:ca:00:7f:0f:08:84:31:b8:fb:b3:cd:6b:65:
3d:35:ae:93:89:97:3d:eb:49:7b:bd:d7:cd:57:33:3d:02:e2:
52:6c:ad:54:c6:db:d0:03:78:6c:20:2f:97:d5:60:1f:d0:cf:
28:26:cd:21:ae:a0:90:10:18:27:80:c2:23:4c:7d:b5:68:fc:
77:06:4d:00:db:11:34:c7:b3:91:8b:83:bf:6c:6f:8d:d6:fd:
d9:37:e8:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org