Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/xF_yBDMO1yleYBsnYXomJHuE52I.roa
File: xF_yBDMO1yleYBsnYXomJHuE52I.roa (raw, json)
Hash identifier: xHFeYakei+zC7KsrKHQpJ4IAfz825rLd0qFn7tWUoH8=
Subject key identifier: C4:5F:F2:04:33:0E:D7:29:5E:60:1B:27:61:7A:26:24:7B:84:E7:62
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C0F
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xF_yBDMO1yleYBsnYXomJHuE52I.roa
Signing time: Wed 29 Sep 2021 02:50:49 +0000
ROA not before: Wed 29 Sep 2021 02:50:49 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 118.168.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3087 (0xc0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:49 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C45FF204330ED7295E601B27617A26247B84E762
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c6:73:25:d2:2b:57:a3:16:77:be:f3:67:80:
cb:6d:fc:e9:9b:72:17:36:ec:e4:6a:7a:b3:0b:c1:
93:24:1e:58:33:68:5f:2f:88:91:e2:18:19:de:0c:
38:2a:51:5d:16:7d:70:16:06:10:b6:59:f4:df:d9:
1b:02:af:67:7b:c8:19:14:8c:03:03:60:23:3d:fa:
c5:31:de:f9:20:4b:62:e6:82:23:fd:d5:db:e3:65:
b1:b1:b3:0c:60:ba:91:d8:f6:d9:0e:38:6b:a9:26:
32:d3:8a:22:fc:a8:cc:85:8a:93:df:2b:38:b1:23:
a1:63:d8:99:96:7a:8e:d7:b7:f2:b2:0f:12:7e:ac:
85:b9:5c:6b:2b:1b:45:65:b5:cb:8f:59:28:65:a6:
a3:e1:74:32:81:80:f6:4f:2e:5c:e2:c4:42:ad:b2:
39:26:45:1e:1c:7f:4c:77:a4:a9:4d:54:82:7c:e3:
9d:b1:fa:2c:8b:65:0c:f2:d3:5f:9c:11:a1:d9:a0:
67:3d:d3:e6:47:8c:14:b5:50:ad:90:d0:4e:b5:2f:
6b:a1:9d:d8:3c:46:84:09:8f:48:9f:55:26:b5:97:
b6:1d:35:aa:a2:1a:ab:a9:5c:c5:e8:3e:e9:a3:d7:
05:af:cc:f2:e0:08:d0:1f:8f:b3:f1:9b:0d:da:a9:
10:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:5F:F2:04:33:0E:D7:29:5E:60:1B:27:61:7A:26:24:7B:84:E7:62
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xF_yBDMO1yleYBsnYXomJHuE52I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.168.0.0/14
Signature Algorithm: sha256WithRSAEncryption
bc:79:54:0b:46:33:b0:22:e2:9f:98:4f:10:32:46:e3:29:de:
d3:ae:e1:61:7c:46:e7:6a:d3:24:66:2c:77:e4:14:e3:40:ce:
84:13:1a:de:4c:ab:8b:2a:91:51:3a:a8:76:20:78:4b:3f:e6:
da:ea:af:9c:26:3a:15:00:8d:f6:2c:e2:72:9a:64:c1:70:7a:
a2:9b:31:60:e1:4f:84:3c:79:85:46:1f:9b:5c:c8:6d:5e:0d:
9c:56:df:55:24:c3:b5:41:85:4f:1b:5b:14:7a:05:4a:7a:25:
70:a2:9a:39:34:f7:4f:a2:c2:f7:40:8f:9c:ea:5e:7c:bf:5a:
7d:eb:15:88:00:20:3e:b7:a5:1a:17:2a:a7:1d:9f:f7:47:6f:
6e:37:a1:b9:72:4e:ca:9a:df:bd:c8:22:a2:8b:93:66:0e:fb:
42:10:89:58:0b:ae:18:2b:82:fe:a6:69:02:ec:15:17:b6:15:
88:2e:ac:34:2e:7c:d2:c6:2c:74:1a:48:14:7e:cf:35:75:b7:
de:66:20:f5:0d:52:31:48:24:b5:fa:1d:fd:1a:3e:04:59:ab:
9e:91:ee:b7:97:4b:79:98:97:24:2b:99:a4:c1:96:ea:55:c3:
aa:a3:59:50:0e:26:f9:b2:d1:6c:61:3f:4d:6f:4f:57:02:79:
96:3e:07:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org