Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/sEWp012XlD5TjiUOCzQDAe03nyI.roa
File: sEWp012XlD5TjiUOCzQDAe03nyI.roa (raw, json)
Hash identifier: ds5RafPIVFRIx0JrcQ0gqV3aWBefl1TnJcnUPcotuIk=
Subject key identifier: B0:45:A9:D3:5D:97:94:3E:53:8E:25:0E:0B:34:03:01:ED:37:9F:22
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 082F
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/sEWp012XlD5TjiUOCzQDAe03nyI.roa
Signing time: Tue 29 Sep 2020 09:58:27 +0000
ROA not before: Tue 29 Sep 2020 09:58:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 203.74.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2095 (0x82f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B045A9D35D97943E538E250E0B340301ED379F22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b8:d6:5e:91:72:ab:d7:94:a5:81:8e:fc:df:
7f:0f:04:56:b5:14:2e:07:35:77:be:53:80:cf:1e:
02:86:4c:d2:47:cc:4f:e4:b2:a8:00:53:86:40:5b:
c7:59:22:4b:4d:75:c9:97:5e:90:b9:e5:d7:0b:41:
03:17:8d:d5:45:94:01:1a:75:d2:63:43:47:ca:cd:
64:61:66:d9:19:c1:a9:16:df:b1:5f:6a:2f:ce:c0:
b0:76:cc:6b:14:59:64:b3:7b:a8:16:d3:18:40:56:
80:15:a3:30:d3:87:85:11:32:7a:66:f3:c7:59:30:
85:55:18:f6:16:ac:c1:fb:c8:af:29:f4:7f:92:ec:
11:e5:2e:a1:19:08:f5:56:ef:c0:90:52:4d:27:1b:
54:d1:ae:ca:6e:2b:ff:39:85:fa:0c:4e:90:9e:5e:
96:35:da:52:b3:14:eb:a9:52:42:f6:fa:19:d4:ea:
a9:2d:9e:37:cc:d9:be:9b:cc:6f:79:ff:88:98:0c:
23:4a:0d:ea:b1:8b:d5:71:86:6c:ea:a6:5e:e6:f9:
b3:6f:d0:0f:3c:50:7b:22:69:61:cd:65:76:a8:c2:
77:bd:d8:e4:69:24:9d:1f:c9:33:91:ce:96:dc:a3:
d8:45:b0:52:b3:1b:9c:df:6a:35:05:62:e0:e0:aa:
66:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:45:A9:D3:5D:97:94:3E:53:8E:25:0E:0B:34:03:01:ED:37:9F:22
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/sEWp012XlD5TjiUOCzQDAe03nyI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3f:79:52:a4:f0:ca:d5:ba:c1:c0:34:4d:6f:50:83:ea:36:6e:
1d:e8:df:0c:ae:53:01:8a:f2:dd:f6:03:bf:dc:87:ac:ef:6f:
15:c6:1d:a5:85:22:85:f2:cb:c2:91:5b:a8:37:bc:43:40:b9:
45:57:ca:b1:d7:c6:11:c0:63:53:e4:69:03:20:fb:24:cb:7b:
80:cb:98:f6:97:4b:0c:49:60:1f:a2:81:4a:1f:9a:34:f2:04:
49:02:0d:cd:e4:03:90:9e:fc:d7:01:44:93:97:b6:f2:28:ae:
20:44:e4:10:42:af:8b:48:b1:d2:d8:eb:24:7b:37:e7:87:9c:
56:00:a4:a1:9b:15:6e:02:82:31:53:ca:9b:11:dd:74:f3:f8:
ec:4a:38:37:98:53:af:d8:7e:32:7d:64:5a:fd:0d:e0:23:77:
f7:ba:a5:28:07:c7:ea:e0:03:af:3b:cc:14:18:8e:29:a7:ec:
47:fd:c8:00:91:83:66:7b:48:5e:c5:c5:49:97:13:af:30:5b:
0d:6e:8c:b9:fc:f3:59:46:22:b9:54:d6:a4:90:02:27:59:18:
10:13:8a:bf:e8:46:5f:c8:dc:cd:43:a6:54:be:0a:8a:5a:e7:
8f:ee:2e:3b:b1:c8:d8:7a:55:34:45:01:d5:f9:ee:eb:6e:ae:
c8:98:94:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org