Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/-QxmrzIA-GsivV_Gq8qSVf_VUPw.roa
File: -QxmrzIA-GsivV_Gq8qSVf_VUPw.roa (raw, json)
Hash identifier: 9FVpR5AomZaKRI8VDE7SAOQc7WVPyke/AZcKvGCrgWw=
Subject key identifier: F9:0C:66:AF:32:00:F8:6B:22:BD:5F:C6:AB:CA:92:55:FF:D5:50:FC
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C4E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-QxmrzIA-GsivV_Gq8qSVf_VUPw.roa
Signing time: Wed 29 Sep 2021 02:51:07 +0000
ROA not before: Wed 29 Sep 2021 02:51:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9505
IP address blocks: 175.111.224.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3150 (0xc4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F90C66AF3200F86B22BD5FC6ABCA9255FFD550FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e0:92:0b:d2:c7:dc:2e:45:fb:28:e5:bb:53:
e9:55:93:bd:80:9a:de:c4:61:5a:b5:02:03:cf:9e:
61:fb:ae:d0:ed:8a:f2:6a:f6:e5:1a:cb:64:97:55:
9e:35:5d:5f:cc:18:88:b6:a2:6b:d0:5e:e3:47:c9:
ea:f7:b7:5d:31:cc:b3:cd:0e:eb:96:61:09:1b:0c:
21:26:89:b6:f7:80:45:f8:bd:12:d1:bf:a7:b9:00:
46:f9:21:4c:b4:41:d9:61:b8:23:4d:5b:6a:f7:40:
03:ae:ad:d2:9e:1a:93:3c:b6:9b:46:0b:d4:4c:26:
7c:81:0a:b9:6c:bf:a1:81:e9:bc:1b:b5:39:a2:72:
a3:97:be:c7:bc:61:80:2b:e6:5f:44:b0:87:6b:ed:
3f:b3:0e:5a:79:af:81:8c:f6:d4:db:a1:9e:6d:23:
4c:41:df:7a:eb:55:4b:78:04:03:b7:fc:bc:c9:05:
63:6f:4c:fe:07:32:1c:14:f6:f5:e9:49:6c:dd:e6:
58:47:2a:05:4e:68:d9:58:d7:24:be:39:ef:bc:31:
62:c2:a5:31:84:b7:8c:8b:b3:4e:d0:1a:cf:26:aa:
52:15:91:4f:1b:b3:8a:2d:f3:d0:1d:09:a7:34:d2:
78:0e:72:e9:b4:f4:90:4f:95:5e:e6:9a:0f:39:00:
39:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:0C:66:AF:32:00:F8:6B:22:BD:5F:C6:AB:CA:92:55:FF:D5:50:FC
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-QxmrzIA-GsivV_Gq8qSVf_VUPw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.224.0/20
Signature Algorithm: sha256WithRSAEncryption
87:aa:00:af:e0:84:03:0e:af:6e:d0:5d:94:1a:5a:2c:62:90:
84:af:65:78:e0:e4:cd:01:5b:f1:1c:54:72:d3:b4:85:d6:09:
6e:e2:f4:e5:d6:75:a3:02:95:dc:fa:97:dc:ad:0f:f2:4f:a2:
e3:2c:3f:e4:cc:bb:a4:8a:6d:65:14:f4:5e:c6:db:dd:a6:89:
25:9f:ce:fe:0b:fc:40:dc:71:ff:23:92:a0:64:d7:91:76:4a:
d4:46:30:6c:34:80:8a:ab:2b:8b:fa:96:4c:c7:96:66:96:f1:
1f:04:9c:82:61:ba:71:1e:41:50:d1:8a:35:c0:d3:03:ce:1f:
14:f8:cd:3b:e1:f4:9a:90:64:2a:e1:75:f6:2c:25:a0:36:88:
5e:32:56:de:d3:40:47:2a:b7:aa:75:20:25:cc:41:27:2e:cd:
9e:a2:1d:72:e1:c6:73:d8:48:7f:8a:e4:bc:12:19:55:f5:69:
a2:9f:70:e1:34:81:1d:5d:57:15:0c:b8:ae:6d:22:c0:90:bf:
79:7a:c7:87:1f:2a:7e:90:91:b2:e8:a6:da:a7:b0:ec:c1:1c:
db:55:56:58:76:99:26:52:26:06:64:a8:f1:8a:ac:ec:9f:52:
36:8e:9f:e4:8e:43:66:5c:fe:4e:37:2d:d7:14:9c:d4:77:ab:
f9:36:0d:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org