Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/m3-l-dPADpPQyZneWcX07Tbv0ww.roa
File: m3-l-dPADpPQyZneWcX07Tbv0ww.roa (raw, json)
Hash identifier: qLzQMXWq4f31odwdwE3tNAAFtWDVNtq32W2S6PG+A8Q=
Subject key identifier: 9B:7F:A5:F9:D3:C0:0E:93:D0:C9:99:DE:59:C5:F4:ED:36:EF:D3:0C
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AF7
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/m3-l-dPADpPQyZneWcX07Tbv0ww.roa
Signing time: Sun 07 Feb 2021 11:46:23 +0000
ROA not before: Sun 07 Feb 2021 11:46:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9505
IP address blocks: 203.78.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2807 (0xaf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:46:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9B7FA5F9D3C00E93D0C999DE59C5F4ED36EFD30C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:47:a0:9f:11:11:66:ff:da:c1:6d:b2:d8:bb:
47:28:53:a0:45:52:62:aa:c4:e0:19:5c:e6:56:f4:
8d:8a:f1:43:c5:1c:e0:b2:10:3e:05:3c:f2:e8:ad:
b4:34:84:da:e9:52:52:5d:28:33:02:7f:3b:11:c3:
17:8b:50:c3:b1:10:7c:11:53:53:55:4a:a3:b7:9c:
79:88:8d:74:ba:c4:16:eb:55:34:10:6b:03:17:07:
4f:8c:ce:26:56:15:51:71:63:2e:43:d5:35:69:95:
b6:99:a5:5b:f2:0b:f4:35:a0:be:a8:c1:f2:9f:9c:
cf:29:18:1f:28:f7:89:7e:4f:a1:e9:41:f5:61:06:
72:ed:83:43:cc:1e:0e:c1:8c:92:df:4e:57:a1:c1:
39:b3:55:89:8e:80:a3:8b:44:41:df:76:a1:c0:63:
21:5d:91:3c:45:84:6b:36:c1:d3:a3:49:80:22:a1:
d5:ff:73:46:33:be:2a:1c:a2:6b:c9:5b:bd:d9:0c:
b2:41:22:2c:31:dc:b7:cb:14:92:79:83:07:16:08:
71:e2:c8:2f:d0:d2:21:7d:38:86:92:58:57:e7:a2:
8b:7e:ab:09:e9:58:90:f1:5a:73:75:60:4f:f8:22:
8d:73:89:ac:55:eb:62:ed:af:70:19:6d:47:17:a1:
9d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:7F:A5:F9:D3:C0:0E:93:D0:C9:99:DE:59:C5:F4:ED:36:EF:D3:0C
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/m3-l-dPADpPQyZneWcX07Tbv0ww.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.78.176.0/20
Signature Algorithm: sha256WithRSAEncryption
33:47:9c:6c:d6:96:16:0e:a7:c8:68:f5:64:b7:08:8a:69:a3:
41:33:aa:4e:0a:46:86:75:17:66:a5:48:e0:c5:40:87:3f:56:
8f:2c:11:c8:e1:6c:3c:8a:1f:80:82:ec:bc:85:dd:21:d3:c3:
10:3f:1d:3d:42:ce:0d:c2:62:a1:5e:7f:20:8c:b4:8c:3a:b1:
df:1f:40:c2:4c:81:dd:b9:ec:00:96:4a:78:65:58:8a:03:3c:
ba:33:3d:f7:1b:79:bf:e8:0b:da:3b:5d:0c:35:29:46:fe:33:
e1:20:84:b5:d2:36:01:f6:cf:9d:d4:bb:ed:90:18:31:90:cd:
29:96:3f:b0:b1:47:ca:9d:20:ae:72:21:77:cd:7d:e8:c4:b0:
21:d9:e3:67:d5:f6:91:d4:82:8b:c0:6e:60:5b:2e:dd:16:ff:
07:59:83:bc:b0:6c:f4:a7:c6:d4:bc:06:01:6f:68:50:d8:7a:
01:12:59:ae:56:f8:3a:9d:cb:f5:62:d4:cc:09:5a:b8:30:c8:
fc:da:b7:c7:64:ca:ac:32:60:63:5a:44:6e:f2:98:d9:e8:5f:
a5:2c:be:d1:97:45:af:83:e2:66:8e:d6:34:97:47:29:93:39:
38:53:4d:80:31:bd:52:80:4a:6c:d6:3e:90:56:3c:15:f2:45:
71:00:c9:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org