Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/kMOrv-jyHHh4BBRGEyCarny6Y6Q.roa
File: kMOrv-jyHHh4BBRGEyCarny6Y6Q.roa (raw, json)
Hash identifier: UyDVT1n8KK+TvARkr3i6UB5u89toU+VdBvu3VIbAnlc=
Subject key identifier: 90:C3:AB:BF:E8:F2:1C:78:78:04:14:46:13:20:9A:AE:7C:BA:63:A4
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A89
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kMOrv-jyHHh4BBRGEyCarny6Y6Q.roa
Signing time: Sun 07 Feb 2021 11:38:11 +0000
ROA not before: Sun 07 Feb 2021 11:38:11 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 202.39.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2697 (0xa89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:11 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=90C3ABBFE8F21C787804144613209AAE7CBA63A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:80:48:0e:5e:1a:89:2f:35:8b:a4:f4:af:56:
b8:a7:b2:99:8c:f3:ac:4c:45:8e:94:b1:3e:6d:48:
15:c6:98:ac:28:02:65:4d:21:32:a4:ee:36:9b:e1:
66:c5:48:62:e2:f1:e2:7e:d1:08:54:71:64:6e:d6:
72:92:29:46:8f:d0:e7:eb:a2:8e:e7:ed:59:94:44:
ed:c5:f7:f2:2e:96:54:5a:73:36:11:bd:ea:3c:8d:
ba:62:9f:21:aa:1a:70:20:f5:12:6b:05:1d:d7:66:
d0:b5:b8:e6:a0:e7:2a:80:e9:15:49:b6:46:95:7c:
7c:6e:ce:eb:4a:b4:46:8a:dd:89:67:56:2f:77:23:
e9:06:ab:9c:eb:3b:75:b2:98:b9:a0:6f:92:dd:4d:
d4:68:fa:d6:31:8f:1e:69:2b:93:e5:32:ba:16:8c:
01:5c:ce:44:e2:03:b7:1c:7b:96:4e:b4:98:91:73:
63:ad:c2:df:95:ad:70:58:5d:de:94:9e:a1:02:2a:
ea:4f:e6:05:ea:53:84:59:b6:7e:f1:e6:0d:a6:f1:
d2:e8:85:f6:16:49:7c:38:71:4e:b1:aa:e7:f7:db:
57:f5:43:2d:79:97:37:0a:84:15:d9:4b:42:89:06:
91:be:df:85:ae:2a:bf:d8:44:23:e1:28:1c:ac:f1:
3b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C3:AB:BF:E8:F2:1C:78:78:04:14:46:13:20:9A:AE:7C:BA:63:A4
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kMOrv-jyHHh4BBRGEyCarny6Y6Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.128.0/17
Signature Algorithm: sha256WithRSAEncryption
99:6d:8f:f2:56:3a:81:40:b0:27:2c:21:f4:8a:d8:55:9f:68:
95:0e:d3:0d:29:4f:22:2b:9a:35:b5:a9:cb:cf:92:6e:1a:7c:
98:a9:e9:a2:7a:6d:76:88:8d:95:32:db:21:ed:fc:e6:83:4e:
34:2d:d4:c4:b2:da:a3:91:fe:fc:4c:76:84:b6:58:6f:b3:ca:
c7:f7:d4:a8:0f:0f:dc:9b:8a:8e:4b:12:e5:30:50:66:37:8c:
e1:2e:5c:88:80:ad:b4:a0:4c:da:ec:da:aa:7f:70:c0:02:74:
13:47:70:2c:af:01:5a:32:35:32:b3:57:e1:06:b2:8e:e8:39:
d1:8e:61:f7:98:b3:2a:65:07:56:f4:2c:7c:94:56:f7:55:1f:
61:4f:67:89:83:87:cc:38:29:61:2f:d1:4a:1f:70:2e:83:0f:
8c:e8:b5:b3:64:37:9e:4c:31:4a:ec:3f:8c:36:40:72:df:3e:
36:db:87:3c:2f:a3:a9:1b:7f:13:cf:ad:ae:52:93:26:57:88:
ea:c6:19:b7:e8:54:0d:6d:48:07:4d:f2:89:23:0f:fe:ec:c0:
fd:35:a6:61:23:60:d9:93:0c:ee:04:65:1f:fa:d9:e4:a9:cd:
ab:6e:11:fb:a8:76:07:36:75:85:da:a9:93:7e:98:0e:d2:bf:
8a:8c:10:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org