Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/qLPA6LiSg1bFb7EBzBes0dk6XpA.roa
File: qLPA6LiSg1bFb7EBzBes0dk6XpA.roa (raw, json)
Hash identifier: 9TZIC4oDQ1orYsWRLTWPzIj5gfnabe98CMdXo6K4I68=
Subject key identifier: A8:B3:C0:E8:B8:92:83:56:C5:6F:B1:01:CC:17:AC:D1:D9:3A:5E:90
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/qLPA6LiSg1bFb7EBzBes0dk6XpA.roa
Signing time: Thu 15 Sep 2022 02:48:00 +0000
ROA not before: Thu 15 Sep 2022 02:48:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 203.66.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A8B3C0E8B8928356C56FB101CC17ACD1D93A5E90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:cc:b4:b3:b6:ab:bc:6f:04:f4:fa:a6:dc:d4:
05:48:e0:51:80:01:73:f1:9f:a2:df:f7:b7:96:e3:
f3:d1:20:be:64:bf:88:77:f8:33:6e:e0:6d:20:ba:
61:c2:6b:86:eb:95:4b:7f:b2:9a:45:29:d0:26:2a:
f4:5e:24:5b:92:90:ca:96:9a:98:01:3c:f0:a6:90:
90:7e:58:16:f9:e5:71:c1:fc:9b:f9:9a:2c:89:a5:
01:76:f5:4d:67:91:c6:53:07:ff:2d:25:e8:a5:3f:
71:02:e8:10:74:89:c6:7f:c3:bf:f9:a0:50:2c:e7:
ab:83:1c:a2:1b:98:14:8e:b5:5a:0c:84:0f:2d:d9:
d9:86:85:18:75:56:de:53:95:fc:eb:5e:c2:e1:90:
bc:f0:d4:7c:68:d2:4b:18:de:63:26:52:ed:7e:27:
2d:c6:96:f9:22:fe:6a:5a:71:24:53:15:78:97:e4:
4b:fb:f1:5c:12:d6:0d:1b:90:8d:94:63:af:a2:55:
e0:ed:65:b3:43:4b:a5:16:d1:ac:47:5c:94:52:7d:
18:70:b8:13:2e:77:2c:e7:33:71:33:8d:8b:92:28:
7b:5b:9b:a2:2d:f1:b1:c1:13:15:24:02:5f:2c:7f:
dd:40:1d:e0:80:12:88:91:bc:2b:c6:2a:56:c5:aa:
c3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:B3:C0:E8:B8:92:83:56:C5:6F:B1:01:CC:17:AC:D1:D9:3A:5E:90
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/qLPA6LiSg1bFb7EBzBes0dk6XpA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
51:0b:90:e5:81:bb:9c:fb:4b:49:54:ef:8d:0a:81:28:4f:93:
fb:15:61:f1:a7:ac:af:0c:85:5e:c3:5d:44:c3:e9:2c:0e:18:
86:04:15:77:2a:a0:5d:40:d8:c7:b2:1f:be:f8:c4:83:ee:9e:
9f:db:ab:ae:66:2d:8a:ce:11:27:67:f0:3c:63:44:27:70:f9:
09:9f:c5:4a:24:b6:18:17:a1:aa:34:9d:36:68:98:cc:a4:3d:
d2:26:c5:96:dc:36:5e:50:ff:a2:46:ef:e9:91:59:7d:48:d1:
c8:89:f1:24:17:25:d1:15:1f:db:94:74:c1:f7:b5:e2:8b:da:
b4:f7:cb:6c:45:d5:39:50:37:a0:26:07:f7:68:a4:97:de:13:
de:9d:0c:95:95:70:b6:aa:19:54:4d:4b:42:53:38:4c:87:87:
78:0a:b1:6c:dc:48:61:f3:f3:ba:4f:d5:21:37:f4:be:10:17:
45:b2:01:ff:c3:50:08:86:e5:97:a1:57:40:19:2e:e7:c9:4e:
ea:40:75:0d:ba:5f:bb:1a:ee:a4:7b:c9:84:47:75:01:12:2f:
90:93:80:52:a6:f7:96:ca:dc:9b:a2:44:ac:c5:06:f6:0c:e2:
e0:04:eb:40:91:ae:c7:19:f6:f9:7b:12:46:d4:e1:dd:a3:f1:
fc:8a:6d:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org