Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/vVZ1xAeyChMA0WwW1uICiQw352E.roa
File: vVZ1xAeyChMA0WwW1uICiQw352E.roa (raw, json)
Hash identifier: 0HUO6+tnprNc7AVBUu5i6LDvWpC5n7YXCNtElbI4iHA=
Subject key identifier: BD:56:75:C4:07:B2:0A:13:00:D1:6C:16:D6:E2:02:89:0C:37:E7:61
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C07
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/vVZ1xAeyChMA0WwW1uICiQw352E.roa
Signing time: Wed 29 Sep 2021 02:50:46 +0000
ROA not before: Wed 29 Sep 2021 02:50:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 20940
IP address blocks: 203.69.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3079 (0xc07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=BD5675C407B20A1300D16C16D6E202890C37E761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:da:cd:c7:39:8e:17:03:14:eb:85:39:6d:66:
0e:82:c0:b3:75:45:98:c8:08:65:55:95:7a:ae:9b:
10:38:b4:ce:a9:33:9f:4c:dc:db:d5:1a:4d:fd:2c:
c5:8d:48:e7:71:a1:c5:6e:2e:f6:85:f1:4f:d1:75:
ec:24:c3:da:0b:5b:71:25:b1:a0:da:6e:e3:fd:a2:
4d:0c:cb:9a:12:9a:1d:7c:72:23:d0:9f:2c:07:9c:
ce:05:c1:97:1a:10:3f:e8:44:76:6b:5c:5d:c4:5d:
71:88:1e:85:23:18:55:ab:93:b6:8b:36:8a:50:09:
16:94:11:e6:39:a6:05:85:42:93:16:e8:86:ef:cc:
c2:4a:97:58:8f:9e:e7:f3:69:b1:9f:d5:0b:97:b6:
48:57:71:4b:1b:f0:9a:32:00:1a:2a:ae:7d:dc:a6:
98:05:08:46:ca:dc:27:f3:9d:1d:3a:56:63:70:e6:
7e:49:06:23:77:ae:e7:88:93:c0:f6:d5:b0:4c:87:
2b:0d:94:56:88:d1:14:d1:69:d6:0d:fb:6c:e3:05:
86:20:79:c3:68:95:2e:cb:11:82:45:3a:8c:7f:54:
24:eb:15:8f:13:0e:0b:3e:a1:02:b0:ad:47:00:d3:
28:92:dd:83:8f:02:ed:05:d4:b3:72:3e:8c:dd:52:
24:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:56:75:C4:07:B2:0A:13:00:D1:6C:16:D6:E2:02:89:0C:37:E7:61
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/vVZ1xAeyChMA0WwW1uICiQw352E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.141.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:32:b0:e2:f3:e9:66:d7:b2:cc:a3:02:fe:56:8c:b0:1d:4b:
71:a1:94:e4:f1:98:ab:7d:eb:82:0e:37:19:7c:28:ad:7e:ce:
ff:52:5b:87:ef:52:51:e8:39:34:85:23:3a:bc:3a:4b:98:14:
92:e1:75:89:45:b8:75:04:57:4d:f2:76:38:5b:9c:ec:1d:dd:
b1:c2:ea:e9:63:20:d8:14:ee:74:cb:39:fa:ed:9f:bd:b0:1c:
e2:79:f1:2f:cb:e5:fb:03:df:53:f4:7a:0e:ed:32:0f:08:e7:
c7:20:b1:cd:30:b4:9e:01:32:82:e7:99:56:aa:a1:94:6d:69:
a7:94:f5:ae:f2:2d:56:98:70:11:c9:66:59:8a:4d:e4:56:c6:
43:54:8c:57:36:64:89:04:7d:02:bb:f0:4d:bf:d4:3d:41:73:
91:3c:22:65:bf:15:13:59:d5:09:a5:f6:78:f2:fc:9e:99:d5:
e8:7f:c9:35:40:46:e8:42:5c:96:ac:a1:6b:1f:32:ec:2c:3c:
43:e5:99:65:3b:ef:19:26:46:f1:d0:44:c2:3e:82:ee:a3:32:
a1:ac:c7:67:d9:96:b1:01:b9:10:5e:60:82:e1:9f:a4:89:8b:
fb:51:83:92:f3:f5:e6:5e:04:26:3d:a1:dc:38:29:9e:88:ec:
95:2f:05:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org