Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/-02rRZ58xSw2iYQqimgE1W3icJo.roa
File: -02rRZ58xSw2iYQqimgE1W3icJo.roa (raw, json)
Hash identifier: 0KdARhj5l9SKnQBDdvVTgD3wK9oUQ4vHkamUHuvFsQ4=
Subject key identifier: FB:4D:AB:45:9E:7C:C5:2C:36:89:84:2A:8A:68:04:D5:6D:E2:70:9A
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0864
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-02rRZ58xSw2iYQqimgE1W3icJo.roa
Signing time: Tue 29 Sep 2020 09:58:41 +0000
ROA not before: Tue 29 Sep 2020 09:58:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131621
IP address blocks: 203.75.51.0/27 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2148 (0x864)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:41 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FB4DAB459E7CC52C3689842A8A6804D56DE2709A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:24:3d:7e:b0:e3:38:5e:6f:2e:67:d9:7f:81:
89:d7:6f:7e:93:77:65:28:1f:7c:14:54:37:40:3e:
08:fc:8d:e9:fd:9d:4b:d0:e8:8a:9a:ba:28:bb:6b:
d8:99:17:7a:80:e7:d6:26:a6:da:54:7a:c5:7e:2a:
75:06:d4:0c:0a:47:1c:82:4d:0c:4c:66:8d:e0:b3:
e7:f9:99:8b:3a:83:f4:d7:5a:8a:f7:f5:10:5a:43:
17:f4:34:61:43:a4:99:11:ea:f3:0b:d7:c5:9d:7e:
60:1b:aa:d2:fc:b7:e1:b3:cf:8b:ac:34:71:f3:7a:
44:ff:b0:43:d7:f1:72:7b:c0:8b:3a:64:6e:f5:7e:
83:18:b0:e8:50:58:31:b5:b4:cb:11:78:b5:e0:af:
c0:0b:94:12:8f:01:89:70:4d:b5:1f:e2:48:ef:e5:
0b:b9:a4:40:da:f8:5a:a0:7e:e6:0f:60:1e:89:b4:
2a:d9:68:c2:e3:5a:38:1e:91:65:ae:97:86:9e:8b:
da:39:ae:b0:de:e6:90:8e:08:3d:bf:41:bc:13:5a:
32:c1:0f:ac:ad:1b:3f:ba:55:05:ff:36:58:97:bf:
87:db:4d:e7:17:ec:eb:ff:8e:8f:ba:bc:d0:d0:b5:
3b:50:ff:c4:54:6d:13:82:c7:eb:8b:59:d3:38:23:
e0:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:4D:AB:45:9E:7C:C5:2C:36:89:84:2A:8A:68:04:D5:6D:E2:70:9A
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-02rRZ58xSw2iYQqimgE1W3icJo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.75.51.0/27
Signature Algorithm: sha256WithRSAEncryption
d4:1b:8b:eb:69:2a:96:cb:1b:d3:e0:ce:10:52:c1:55:d4:39:
dd:f5:5d:e7:7e:ba:fe:bc:de:73:66:92:62:b0:06:f1:e2:2f:
4b:e3:3e:d0:89:b0:17:55:2a:72:89:c2:b6:b4:99:9e:10:61:
aa:27:27:7b:90:f8:fb:a6:de:f2:97:54:4a:3f:36:d3:37:47:
6b:60:08:a2:9e:b5:56:47:c0:88:d0:03:e3:ae:7d:f6:35:9e:
ca:0e:23:3b:7d:13:aa:f9:65:e0:f5:10:d2:28:3d:fc:9f:b8:
35:9b:03:33:cf:9e:13:ec:2c:42:13:cd:60:9a:fa:7b:f0:5f:
19:58:fe:ef:5d:89:42:0e:31:a6:ac:de:41:12:eb:29:f9:d9:
99:99:ac:02:9b:c0:1a:e6:46:8b:28:e2:9c:29:a0:98:b4:0e:
b3:71:f5:5e:dc:17:5e:49:5c:3c:51:39:a1:ef:1f:d2:c1:5f:
1d:eb:c9:bb:3e:2d:d2:30:4d:7a:1b:c3:52:7b:0b:b9:4b:62:
64:b5:6b:48:cb:89:ef:da:ad:e2:86:d3:76:33:88:b9:e9:c3:
78:94:f4:27:e1:4e:ca:46:83:d0:d6:4c:a9:7f:62:1d:24:c9:
89:ee:45:e6:8e:59:26:0d:e6:db:a9:e9:9f:0a:2a:5c:05:4a:
4d:1a:0f:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:54 2023 by rpki-client on console-ams.rpki-client.org