Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/uRLkOqP0moIxCz21_r8OAuGJWFc.roa
File: uRLkOqP0moIxCz21_r8OAuGJWFc.roa (raw, json)
Hash identifier: 79XrKL6Er9fqIRJNxEaV718Q+Z3e2Hzz8Z1GrVmjym0=
Subject key identifier: B9:12:E4:3A:A3:F4:9A:82:31:0B:3D:B5:FE:BF:0E:02:E1:89:58:57
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/uRLkOqP0moIxCz21_r8OAuGJWFc.roa
Signing time: Thu 15 Sep 2022 02:48:09 +0000
ROA not before: Thu 15 Sep 2022 02:48:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 61.228.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B912E43AA3F49A82310B3DB5FEBF0E02E1895857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c3:dd:15:1b:d3:6f:b5:48:c9:ca:ff:19:89:
09:73:c5:b1:74:b9:24:d3:1a:15:da:a2:f7:46:be:
49:08:c9:8f:9f:f2:d5:9c:df:c5:a6:b2:44:22:8e:
72:05:19:e1:e9:5e:64:54:dd:09:09:52:20:c7:1c:
ab:4f:76:2a:e4:2f:33:c9:d5:d0:83:f3:c9:17:36:
e7:a2:bf:dc:af:05:f0:f0:1a:ce:43:af:dc:61:01:
ae:c9:ec:b4:80:99:2b:22:dc:ab:14:ff:0a:d0:c7:
f5:ee:b4:c7:fe:0f:db:9f:aa:76:d3:a0:82:73:e6:
05:4d:6f:8d:79:ba:4c:b3:c4:db:fc:99:de:bc:76:
dc:8a:40:aa:a6:b2:49:1d:dd:15:97:1a:15:05:d2:
92:b8:d4:99:f4:41:7f:54:f8:6a:9d:ec:ee:2d:18:
f2:31:7c:6d:dd:9f:4e:8d:50:fc:5b:cb:f8:8c:b2:
07:15:f0:69:b8:27:5c:55:a0:fe:18:73:90:a3:29:
df:eb:3a:5e:75:ca:39:53:16:19:fe:64:1b:49:19:
d5:f0:34:c9:7a:6c:fd:6b:fc:df:f4:9d:52:4d:8b:
80:94:98:22:e8:f7:c4:f6:d4:61:75:02:63:e6:4a:
3f:fa:e6:1d:be:2a:7d:f3:80:23:f4:e0:b2:ca:ea:
26:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:12:E4:3A:A3:F4:9A:82:31:0B:3D:B5:FE:BF:0E:02:E1:89:58:57
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/uRLkOqP0moIxCz21_r8OAuGJWFc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.228.0.0/14
Signature Algorithm: sha256WithRSAEncryption
75:72:b7:bd:09:53:af:ae:b4:b9:31:98:e5:b4:15:62:f4:5c:
94:91:a8:65:11:da:7b:29:82:f0:bc:98:d7:99:0e:8b:1a:99:
44:44:8a:b9:3c:07:79:e3:09:3d:b2:23:c6:c7:e2:37:08:49:
14:bd:a8:37:69:55:31:70:b5:b5:19:3e:a0:ac:29:2b:a1:d9:
6e:81:f9:b1:4b:22:8d:75:d6:2b:8d:ce:a5:bb:e6:fb:43:70:
cd:55:f4:b2:f0:70:6f:70:27:c8:42:00:cb:cb:cf:ad:9c:32:
a7:ff:53:ae:ec:a3:cf:1e:11:04:89:38:b5:a7:bb:9e:aa:ba:
f8:2c:b8:97:45:20:8e:1e:79:42:df:40:e9:28:83:82:11:4d:
2f:9c:48:9f:d1:5c:fc:75:83:1b:29:ba:1e:ae:a0:a7:d0:fa:
65:91:b0:19:a6:be:d1:58:78:ad:53:91:d6:61:c7:98:9c:6f:
4e:3c:5d:9a:6e:1d:ac:3d:d2:e4:0a:ac:32:43:ce:7e:77:2a:
dc:6b:69:58:68:fd:e2:f3:7f:4b:b9:75:e1:d5:4b:44:50:bf:
ab:08:fa:7e:a8:aa:9b:33:74:86:40:95:8b:36:49:79:2c:a2:
97:28:1a:4b:02:97:fb:1a:a5:fe:c7:ca:30:2b:a2:4a:42:71:
7a:67:a6:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org