Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/zHYVWIW-0VcTw_9MKBnGlo-Kd2Y.roa
File: zHYVWIW-0VcTw_9MKBnGlo-Kd2Y.roa (raw, json)
Hash identifier: a47FpdJZIuo9DtYx1L9QSRehDDPi2YwwfgUmmCd6nj4=
Subject key identifier: CC:76:15:58:85:BE:D1:57:13:C3:FF:4C:28:19:C6:96:8F:8A:77:66
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zHYVWIW-0VcTw_9MKBnGlo-Kd2Y.roa
Signing time: Thu 15 Sep 2022 02:48:28 +0000
ROA not before: Thu 15 Sep 2022 02:48:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 118.160.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CC76155885BED15713C3FF4C2819C6968F8A7766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:4a:32:13:66:0d:c4:95:46:d3:09:5c:b2:e6:
59:b3:1a:6d:e0:ec:74:05:e6:83:71:ab:82:d2:5d:
af:71:6e:06:b9:61:a5:c0:fb:2d:46:43:51:f9:6c:
1d:f6:b0:c2:01:04:0a:a0:03:00:29:44:4c:d5:a4:
c7:75:a5:de:18:3d:8d:21:43:76:9a:e6:a0:50:78:
69:f2:7c:51:b9:11:dd:39:d1:61:c4:d3:87:5f:49:
9b:9b:fd:a5:d5:a7:34:4c:cd:6d:e4:37:b5:87:b2:
ea:d5:ee:38:1e:99:c7:f6:de:6e:83:68:08:a6:4b:
55:83:4d:76:be:6c:b6:ae:d0:9b:99:23:e8:fc:46:
8b:70:50:74:7b:7b:df:71:78:ad:02:a3:90:04:35:
d5:6b:30:c9:cf:80:5d:0b:db:6b:23:72:be:88:47:
d6:c7:ae:d1:76:3a:15:1d:6c:a8:27:0b:9e:d7:fe:
dd:52:58:78:cc:f7:43:eb:fc:0e:6e:54:f8:03:dc:
80:e5:e1:34:b2:10:d6:4a:35:8e:1c:3d:96:f1:92:
a2:65:98:47:43:c9:b8:dc:35:dd:e5:33:05:8a:f5:
47:de:5d:4b:1e:68:6a:58:a0:48:27:8d:e6:87:5c:
6a:62:fc:19:f6:d6:30:6c:b5:70:ec:08:e8:ed:b0:
98:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:76:15:58:85:BE:D1:57:13:C3:FF:4C:28:19:C6:96:8F:8A:77:66
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zHYVWIW-0VcTw_9MKBnGlo-Kd2Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.160.0.0/13
Signature Algorithm: sha256WithRSAEncryption
7e:8e:40:26:99:e4:82:ce:e9:75:0b:78:8c:1c:09:b5:6c:e3:
65:b4:71:77:fd:df:b5:51:85:df:0f:c0:d1:dd:cc:46:73:42:
34:ae:3f:69:dc:2f:d6:2b:84:b3:fa:ca:0b:fc:4c:70:1a:fb:
b8:95:ba:04:f0:8b:38:45:23:98:b4:29:e6:3e:db:fb:21:c1:
43:f9:cf:26:34:c6:bd:12:45:5d:8b:64:99:0a:38:9f:f1:04:
cb:1b:4d:77:00:19:e6:e0:d9:2c:90:4d:7d:aa:19:5a:c2:d3:
cb:d7:fc:5f:53:ac:4b:df:8c:3a:4e:45:6e:3d:3c:b7:c9:fc:
f0:a9:6b:a9:32:00:03:ad:6e:92:32:64:e9:85:89:7c:dc:4c:
74:e2:00:65:f1:a2:6f:5f:0c:14:9d:84:45:71:32:97:34:7a:
4e:25:6c:c6:01:f6:74:14:91:de:97:bb:4a:be:a2:0d:ca:cd:
3c:1e:5f:4f:da:f5:4d:dc:e8:44:7d:57:5f:19:c3:20:64:53:
4a:c8:74:32:ca:73:bf:d7:bf:bd:2e:4d:2b:74:49:54:e4:4d:
fd:05:04:01:6a:29:e8:82:9e:ba:19:11:9f:c8:4c:8f:c1:d8:
76:3c:da:3f:e9:9a:c4:2b:f9:3d:bb:4f:57:d4:79:29:af:25:
cf:48:41:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org