Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/l6CLHQv1pyglMqEk33rihmftWiA.roa
File: l6CLHQv1pyglMqEk33rihmftWiA.roa (raw, json)
Hash identifier: U1eaQ6WyFFoYol7d+RKCoXNCLmlg2yP0GY/Pu0aUvHU=
Subject key identifier: 97:A0:8B:1D:0B:F5:A7:28:25:32:A1:24:DF:7A:E2:86:67:ED:5A:20
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A8F
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/l6CLHQv1pyglMqEk33rihmftWiA.roa
Signing time: Sun 07 Feb 2021 11:38:16 +0000
ROA not before: Sun 07 Feb 2021 11:38:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 203.74.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2703 (0xa8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:16 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=97A08B1D0BF5A7282532A124DF7AE28667ED5A20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1f:28:c7:d5:8d:26:aa:30:00:94:cc:9c:f2:
0b:a8:f3:79:18:fe:f8:64:a0:18:95:00:80:23:69:
a4:ba:ff:37:79:af:9e:f5:16:11:a4:4a:3c:fb:48:
33:33:37:df:cc:b2:19:de:22:85:78:bf:fc:a7:7f:
fe:86:fa:4a:0f:2f:56:86:6e:af:7a:14:7a:d7:96:
02:1a:c0:ca:e4:33:b3:b3:73:78:38:ec:17:d7:47:
38:76:22:f5:cd:61:53:33:f0:e7:91:67:81:3e:dc:
ee:08:4d:17:51:c2:ae:e8:9d:70:00:50:6b:ba:ef:
c4:05:fb:26:17:f2:5c:01:c1:0a:a3:c6:48:49:4f:
cd:8d:6b:c8:d0:d9:4a:7a:56:fe:e6:bb:7d:95:b4:
ac:dd:3c:7a:26:6c:b2:25:bd:88:64:b0:03:99:5c:
f9:96:0a:ec:22:c4:21:59:ca:cc:13:a6:1d:4a:73:
12:f0:8c:6a:78:dd:0f:d2:8d:71:ba:d7:92:48:20:
8f:de:0a:7d:72:a8:4f:c7:9a:61:6b:4c:28:2d:0f:
c3:9e:2b:4b:cc:b3:38:28:a7:0f:61:b3:ac:02:01:
61:b2:31:6e:9f:37:0b:68:b4:23:9c:07:9a:0d:19:
ca:12:d1:1a:75:ff:41:06:e1:26:e9:43:45:12:ec:
ff:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:A0:8B:1D:0B:F5:A7:28:25:32:A1:24:DF:7A:E2:86:67:ED:5A:20
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/l6CLHQv1pyglMqEk33rihmftWiA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a7:25:e6:7d:26:17:28:1b:d4:39:18:44:f4:5f:63:53:8b:62:
bc:a7:94:5b:2f:95:f3:45:04:14:4a:cb:60:0f:ba:92:14:3c:
06:13:c8:3c:da:86:cf:26:20:f9:a2:a8:90:b4:36:7e:b6:1a:
42:41:d4:0a:0a:0a:4a:64:62:76:b0:04:28:de:45:fc:a1:d4:
4d:b1:52:0f:14:d4:22:45:c6:d9:27:87:96:b5:78:9d:4e:0e:
34:85:e6:5f:8c:7d:2a:24:6c:e2:77:bc:b8:cc:9a:cd:5b:2f:
52:24:29:18:81:77:55:31:e9:e3:8a:29:76:fd:6c:42:9f:4e:
32:42:7e:22:30:85:c7:05:4f:68:05:73:f8:de:e9:96:01:a8:
ea:88:b4:9a:37:90:2d:18:32:01:b7:78:db:b4:26:af:74:35:
ae:f7:11:63:46:c2:db:0b:65:05:a2:e9:63:76:a4:25:be:24:
bc:f3:4f:2c:7a:ba:41:b6:bc:aa:63:a2:7f:3c:14:2a:f7:92:
10:e0:e7:b8:73:ce:bb:d1:cd:11:10:ec:d6:84:a2:d6:d5:91:
46:d0:30:b7:17:20:73:37:ed:c1:3a:41:af:97:1b:96:87:69:
14:75:78:15:6e:bc:20:ed:b9:fb:2a:4e:e6:67:ed:42:2f:9a:
5f:29:e0:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org