Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/0tsQ-R7dZZyx0LfddvpMl-pAmZQ.roa
File: 0tsQ-R7dZZyx0LfddvpMl-pAmZQ.roa (raw, json)
Hash identifier: HkmKwSEUsSIN2wz3lnr91FACf+rsgbG/eqVriI6lmZg=
Subject key identifier: D2:DB:10:F9:1E:DD:65:9C:B1:D0:B7:DD:76:FA:4C:97:EA:40:99:94
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0B24
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0tsQ-R7dZZyx0LfddvpMl-pAmZQ.roa
Signing time: Sun 07 Feb 2021 12:40:29 +0000
ROA not before: Sun 07 Feb 2021 12:40:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131660
IP address blocks: 114.25.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2852 (0xb24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 12:40:29 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D2DB10F91EDD659CB1D0B7DD76FA4C97EA409994
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:68:51:fc:02:77:dd:49:ad:6a:40:11:6d:03:
9b:77:97:f9:e0:ee:9b:ce:b6:f5:89:bd:2f:c1:1f:
09:59:6b:b3:78:05:92:93:0e:0f:b9:b3:2e:da:85:
74:9c:05:d9:a4:e8:e9:78:1e:03:00:7b:88:f6:c4:
6f:e8:a2:f2:11:ff:b4:c5:d0:40:8a:bf:b6:70:82:
df:92:55:3f:5d:46:12:52:c1:4b:45:76:a2:06:aa:
14:e2:42:12:2c:cb:a3:b1:7e:8c:4e:65:99:89:69:
a2:f6:72:d7:1f:1f:0b:6d:f2:33:6f:4a:1a:cb:c9:
95:64:05:28:76:ba:c0:b4:c4:0f:97:83:33:b5:7f:
0d:57:82:f1:7f:d3:9a:ac:1a:0f:4f:b7:c3:81:16:
b3:0c:59:c9:b3:a3:90:e9:a0:1d:d0:36:15:cd:d2:
d0:e6:e2:1d:29:24:25:ac:3d:c8:48:b5:13:dc:3d:
e9:3d:91:55:72:c7:ab:f1:2f:68:78:d4:d0:5f:6d:
c0:09:73:bc:e8:91:9d:a1:28:02:03:4d:07:c0:11:
25:91:29:75:4d:43:bf:8b:65:ac:88:49:79:b7:3c:
17:10:e1:7f:6c:f5:a9:00:56:4f:d6:31:00:d3:d0:
ee:7e:13:81:66:0e:01:9c:a9:be:9f:54:a6:4f:5a:
38:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:DB:10:F9:1E:DD:65:9C:B1:D0:B7:DD:76:FA:4C:97:EA:40:99:94
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0tsQ-R7dZZyx0LfddvpMl-pAmZQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.25.250.0/24
Signature Algorithm: sha256WithRSAEncryption
55:2e:ba:43:8f:be:26:8f:e7:4a:a0:bc:26:1e:97:ce:59:3d:
b1:c8:b1:78:a4:11:a6:97:72:f5:39:d0:fc:c6:9d:ba:76:f8:
82:fd:4c:9f:5a:98:64:07:1b:ff:16:f0:30:03:19:c4:0c:9a:
b7:9d:76:3c:6d:eb:ae:3a:8d:cc:ab:a1:3b:02:fa:ac:8e:a6:
64:4d:9c:8a:08:a8:57:06:88:db:6b:0e:fb:f3:f8:9e:e4:b4:
85:94:93:4a:60:4b:9a:c3:7b:6f:42:aa:c1:5c:b2:ed:86:50:
89:5f:01:3d:da:13:24:1d:6e:e1:8b:00:b0:96:09:fe:0a:1d:
3c:ef:89:16:62:d8:30:39:f4:53:cd:20:2e:94:a4:ef:14:e5:
d5:97:25:9e:8e:12:e7:d5:8e:86:99:8f:15:61:d7:61:fc:b4:
9d:57:f4:b7:d2:3c:23:ae:aa:e9:41:20:aa:f1:43:4c:01:f7:
ee:9f:46:a8:32:66:5e:c0:22:8a:b7:72:00:53:82:a8:35:f5:
a9:c0:e3:af:ac:55:87:32:88:71:a2:d9:0d:ca:a0:dd:4d:1d:
d6:fe:0f:21:a9:0c:65:a7:fd:bf:53:64:c2:d7:79:e0:64:05:
29:b7:be:55:19:57:05:ee:ae:29:61:66:dd:4d:db:30:44:e0:
45:41:62:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org