Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/uryvEKozp-iwKg1_hYMSnTJueIs.roa
File: uryvEKozp-iwKg1_hYMSnTJueIs.roa (raw, json)
Hash identifier: tJmyrT0O72B8iO8RZYJP8oNFAoe50Tir4enIpTgO/No=
Subject key identifier: BA:BC:AF:10:AA:33:A7:E8:B0:2A:0D:7F:85:83:12:9D:32:6E:78:8B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AF9
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/uryvEKozp-iwKg1_hYMSnTJueIs.roa
Signing time: Sun 07 Feb 2021 11:46:25 +0000
ROA not before: Sun 07 Feb 2021 11:46:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9505
IP address blocks: 203.160.224.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2809 (0xaf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:46:25 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BABCAF10AA33A7E8B02A0D7F8583129D326E788B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:10:0d:35:8e:1b:84:85:69:1d:05:69:e3:d9:
6c:f7:51:2e:16:06:fb:32:ce:02:22:16:6b:2a:3c:
07:36:77:22:f9:35:58:53:82:07:77:c5:ab:9c:a2:
ed:3a:41:0d:d2:5c:f0:ea:cf:ec:8d:51:0c:aa:50:
3c:d9:01:b5:21:c4:9e:52:0f:97:8e:77:35:ca:88:
8e:44:89:e9:bb:70:6f:19:e4:b2:67:ae:da:65:93:
3a:97:df:5b:f2:e9:0c:d5:d7:a8:66:aa:b1:64:04:
0e:63:7a:a0:e7:07:22:19:47:58:24:f9:e1:3e:61:
3d:33:1c:11:cb:f2:e1:f3:61:fa:1a:0e:e1:d6:4a:
0c:48:5c:af:cf:97:ed:10:ee:e9:ab:8d:80:3d:32:
6f:07:15:a6:1e:b1:e0:e9:ce:0f:5a:11:67:78:1a:
b1:a4:85:48:3e:d8:2b:a6:6d:13:60:c0:d1:ce:a1:
0c:d0:f4:a7:b5:03:7f:fd:b6:c3:fb:ca:a6:2d:86:
8c:b4:e0:ad:05:66:c9:8c:88:9f:e9:99:cc:4e:d8:
ec:d3:8f:52:bb:d1:30:23:23:69:0b:8e:11:3a:76:
d4:dd:13:6e:3a:9b:e0:d3:cb:71:11:80:b5:01:ec:
ab:07:01:81:58:46:73:a6:e1:0c:8e:ff:b1:7b:c6:
25:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:BC:AF:10:AA:33:A7:E8:B0:2A:0D:7F:85:83:12:9D:32:6E:78:8B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/uryvEKozp-iwKg1_hYMSnTJueIs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.224.0/20
Signature Algorithm: sha256WithRSAEncryption
74:08:e8:1c:dc:51:e1:26:e4:ce:42:c5:fc:2b:e4:3c:14:69:
2c:f8:b1:e3:8b:ad:31:10:c3:b6:80:c2:65:26:35:5c:bd:1f:
a3:b9:ba:fe:cd:08:e0:66:99:13:9c:ec:0b:09:a2:4a:73:0c:
b7:9c:eb:da:97:dc:8a:a5:af:c9:ca:ed:d7:fa:c1:89:e3:66:
c1:9b:0d:5e:79:69:72:a1:29:23:39:92:ec:f1:f6:93:92:86:
4b:43:5d:73:e1:05:d9:81:d8:6d:43:7e:d2:25:14:d0:d6:f7:
10:ba:45:92:b1:9e:75:d7:23:fc:57:35:9b:1d:13:e7:ba:0a:
4b:9b:96:ae:20:01:3e:af:2a:52:81:94:bd:18:4a:71:6c:f5:
fe:7c:38:a2:56:9d:0a:bb:81:86:b9:c1:44:de:6f:cb:c2:89:
1b:d2:06:bb:a9:03:07:d3:db:40:8e:73:21:88:c3:6d:64:84:
db:93:f6:be:0c:09:4e:77:f7:48:ec:4a:21:a0:67:b5:70:cc:
8e:f5:43:ed:03:54:8e:a4:90:dc:4f:de:c8:6c:5a:e9:58:a2:
1b:c4:2f:c6:32:fc:8a:ac:cc:52:bd:e5:56:53:a3:e8:64:a9:
df:03:c3:57:4b:39:89:21:43:02:96:91:1f:72:86:80:99:08:
48:f7:86:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org