Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/-gI9_AJT3uOYeNUje85uy7z28Qs.roa
File: -gI9_AJT3uOYeNUje85uy7z28Qs.roa (raw, json)
Hash identifier: NBTFunxxNH6VwW49fekUOrcy6IOyzjl1jwX9yXxGvV8=
Subject key identifier: FA:02:3D:FC:02:53:DE:E3:98:78:D5:23:7B:CE:6E:CB:BC:F6:F1:0B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0993
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-gI9_AJT3uOYeNUje85uy7z28Qs.roa
Signing time: Thu 26 Nov 2020 14:15:47 +0000
ROA not before: Thu 26 Nov 2020 14:15:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 137280
IP address blocks: 203.69.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2451 (0x993)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Nov 26 14:15:47 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FA023DFC0253DEE39878D5237BCE6ECBBCF6F10B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fd:62:d9:2f:fd:24:ee:f5:84:9b:2d:99:00:
50:bb:e9:aa:e3:29:05:07:6a:c2:47:4f:e7:2e:0a:
58:3f:f8:47:6f:8b:d3:a2:c1:84:c9:6d:6a:d5:68:
11:e6:f8:43:66:a6:8b:a7:16:4e:c6:38:9c:d0:42:
73:4c:3f:a2:d9:4b:94:bf:ea:cf:db:ed:66:11:09:
f4:05:c2:a6:6a:79:20:6d:00:1b:48:3d:97:a4:44:
6c:3e:61:2d:84:ff:f0:6a:a5:cd:66:cc:67:78:c5:
bb:93:ed:59:19:55:5a:1c:14:55:35:04:e1:58:cf:
ed:0b:db:a1:8d:b8:ae:ef:fd:d8:ee:34:0b:25:da:
34:1b:c6:ca:5a:b0:e2:77:93:2b:ee:bd:b3:c6:53:
af:aa:6f:8e:2b:3e:cc:b0:eb:d7:57:31:34:ea:07:
a3:d2:c8:0e:c5:da:cf:50:59:2b:13:e1:58:76:ba:
ed:c2:f6:f7:22:f0:46:84:38:eb:0e:07:35:b2:9b:
cf:85:d4:6d:33:1e:34:95:89:95:c6:d5:ca:db:4e:
4a:9e:11:db:56:e8:d2:57:1b:0d:9b:96:55:68:6e:
e0:cb:db:bb:1f:b3:cb:e0:89:c2:35:f5:5f:d9:d5:
bd:81:fd:81:e2:92:f7:1c:49:fe:a4:52:aa:c2:52:
3b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:02:3D:FC:02:53:DE:E3:98:78:D5:23:7B:CE:6E:CB:BC:F6:F1:0B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-gI9_AJT3uOYeNUje85uy7z28Qs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.19.0/24
Signature Algorithm: sha256WithRSAEncryption
40:ae:53:16:5c:e3:9c:df:7b:6a:96:f1:54:18:f1:02:51:4b:
9a:b6:52:c1:80:a6:67:c3:98:be:cd:2a:71:f4:71:59:9d:63:
e1:b4:31:aa:99:40:1c:88:4f:41:04:49:10:b4:74:06:7a:4e:
4e:8a:50:45:60:e7:87:a2:34:13:8a:50:73:07:39:b6:34:2f:
ee:bc:48:35:f4:97:29:9a:d5:fc:c3:ab:7b:6d:fb:be:0c:3b:
0a:7f:d3:4c:9d:c7:04:20:ed:96:69:53:2d:e8:cd:07:2e:c2:
5d:16:77:e0:e1:9a:ad:a0:68:ac:c1:aa:23:b5:f6:b8:1f:31:
35:87:63:45:bb:41:33:b9:55:e8:57:77:e2:1d:1e:ac:fd:83:
c7:e6:8d:30:5d:8d:28:fe:6e:c2:0e:0b:35:ef:fb:25:1d:e4:
1d:42:74:c4:8b:c8:a5:6c:af:c6:f9:dc:5b:9d:1d:ce:ba:e3:
20:94:c8:9f:ab:70:85:91:28:56:c5:2d:9a:2d:e3:6a:da:3d:
3c:91:a1:8e:85:33:c2:22:f5:ff:a4:fa:5c:ad:82:a1:51:0a:
12:4f:19:e7:15:39:84:74:de:65:64:04:cf:82:c2:ee:65:8b:
aa:67:df:68:d4:70:d9:b8:e9:7d:d3:91:1b:a3:00:83:45:33:
61:b6:43:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:54 2023 by rpki-client on console-ams.rpki-client.org