Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/xdkGR_PNzKX6r8swF_FXEhTdrDY.roa
File: xdkGR_PNzKX6r8swF_FXEhTdrDY.roa (raw, json)
Hash identifier: jsnH4F7BGhsZYnv6G0TgZhZukJDBw/CJpCXQ7fvOD/I=
Subject key identifier: C5:D9:06:47:F3:CD:CC:A5:FA:AF:CB:30:17:F1:57:12:14:DD:AC:36
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A6C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xdkGR_PNzKX6r8swF_FXEhTdrDY.roa
Signing time: Sun 07 Feb 2021 11:37:46 +0000
ROA not before: Sun 07 Feb 2021 11:37:46 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 1.160.0.0/12 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2668 (0xa6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:37:46 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C5D90647F3CDCCA5FAAFCB3017F1571214DDAC36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:54:c8:fc:13:ac:20:cc:d6:af:c8:ba:46:29:
0c:41:d2:76:08:eb:67:d7:f8:af:be:47:b5:26:bf:
2d:e0:1c:4a:1b:5d:3c:33:fa:ef:54:06:86:e1:60:
9e:3e:f0:7e:a8:37:f4:a8:e8:26:d8:7c:d3:91:92:
61:e6:4f:70:37:80:27:3d:4c:1c:02:36:dd:a1:70:
18:67:6e:e1:d6:2d:a1:00:e1:96:65:1b:d4:db:c7:
de:3d:40:26:bb:dc:6d:3f:ce:78:ff:da:e5:ec:2b:
d7:97:7a:63:9e:c6:dd:99:e9:a6:2c:90:3b:49:8d:
27:32:87:d3:bf:39:80:00:63:ed:ae:03:1f:bd:dd:
09:53:c3:96:4c:9d:66:69:93:e2:fe:14:93:6d:04:
9e:7b:d4:0e:81:f0:8f:9b:52:a8:29:83:d0:c3:10:
da:89:ee:a1:bb:62:8d:b4:dd:10:6a:c4:90:bf:0c:
0e:89:24:fb:b7:54:9b:1f:14:61:8f:e7:d5:16:ee:
5b:24:23:3a:b9:cb:7d:0d:f9:c2:f1:8f:aa:f1:b8:
bb:fb:13:c6:73:4a:96:f2:78:40:64:87:67:8f:73:
c8:17:31:f2:66:03:bd:a2:b2:bd:f1:c1:9d:d6:37:
e1:81:f3:45:a5:0d:cd:e5:92:72:db:04:fe:97:c0:
b4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:D9:06:47:F3:CD:CC:A5:FA:AF:CB:30:17:F1:57:12:14:DD:AC:36
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xdkGR_PNzKX6r8swF_FXEhTdrDY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
1.160.0.0/12
Signature Algorithm: sha256WithRSAEncryption
9b:04:cf:62:b4:dc:cf:9d:ff:06:3c:dd:6d:3d:6a:94:6f:79:
06:57:65:9a:24:18:58:f1:a6:4c:21:2e:c5:14:c4:71:97:30:
53:7e:b4:e7:3b:05:02:64:ff:0e:21:ad:e7:50:8b:bc:ae:13:
bd:1a:ae:05:ce:14:78:22:7e:ef:cc:21:50:20:82:f3:73:65:
d4:31:c0:4d:24:9b:2f:e5:60:99:b6:eb:47:44:dc:f8:2d:9a:
02:81:f5:f3:a4:57:62:6b:22:33:04:d2:f8:4c:29:dd:e8:61:
d6:88:d0:96:ae:a5:32:3b:38:f7:0b:6d:bd:8d:69:6f:1b:17:
6b:b3:89:ef:7b:cc:32:c6:2b:23:8b:a5:03:98:92:ed:8f:c8:
d0:53:a4:4b:77:28:36:8d:4e:3a:d2:60:d3:13:93:eb:03:a2:
da:12:dd:dd:59:99:4a:5f:de:d4:b7:16:81:52:84:cc:ce:97:
f4:31:81:d4:90:4e:24:c2:e3:b8:ec:fd:01:04:2b:da:42:fb:
40:69:61:a2:96:bc:cc:d3:ac:63:03:f7:ff:d3:1b:b3:67:d4:
10:4c:1f:3a:75:8d:7b:af:2b:14:78:86:93:80:47:5a:a7:5a:
62:07:7e:90:de:74:47:53:58:e8:93:52:fb:55:34:20:85:54:
14:5e:0d:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org