Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/0wWifnjn-1cad0fJyvWybYlP7yg.roa
File: 0wWifnjn-1cad0fJyvWybYlP7yg.roa (raw, json)
Hash identifier: mG5jaCxKa94/knK7qIHfP5+ZYZbTIx4WfUrMiWCQ0Q0=
Subject key identifier: D3:05:A2:7E:78:E7:FB:57:1A:77:47:C9:CA:F5:B2:6D:89:4F:EF:28
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0wWifnjn-1cad0fJyvWybYlP7yg.roa
Signing time: Thu 15 Sep 2022 02:48:04 +0000
ROA not before: Thu 15 Sep 2022 02:48:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 122.118.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D305A27E78E7FB571A7747C9CAF5B26D894FEF28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ab:09:7e:6a:52:72:4c:77:d8:94:67:b4:34:
52:83:46:37:74:9c:08:e8:d3:ae:01:a4:ae:37:ba:
83:c1:46:b5:c2:81:86:a6:2f:6a:16:9c:00:a1:96:
fe:78:4c:0f:5b:db:e7:36:61:cf:f3:aa:97:b8:fa:
63:15:95:c1:8e:86:ba:09:c5:1e:ae:28:1f:1a:e1:
18:bc:49:d6:c4:2d:2e:6c:ce:b1:b1:fb:44:8d:94:
f1:21:bd:d5:39:1b:5e:bb:89:7b:d2:a4:83:3a:d7:
ae:3c:5c:d5:4e:a5:b7:e3:c5:61:1a:7f:93:b9:f1:
fd:0d:ad:82:2d:93:a6:4c:fc:ae:fc:aa:cf:1b:31:
b9:e7:b2:43:f2:51:e2:84:99:fd:d3:9c:ef:87:0e:
4c:61:52:91:81:9f:d3:6b:9f:ec:ca:49:7c:23:bf:
c1:97:c2:f0:0f:ce:11:76:42:da:60:1a:d5:62:4e:
2f:e5:6a:85:8d:be:3d:dc:51:0b:52:d7:ff:ae:4b:
c6:0c:27:49:07:d2:b9:c9:ea:d9:e5:29:36:aa:15:
d1:fe:0a:46:c6:92:50:fd:ff:71:ea:a8:af:37:ad:
ad:39:8a:3c:c5:e9:38:82:83:cd:72:0e:a3:c9:d7:
1d:a4:ce:f7:85:6b:ea:f6:94:cc:6d:ca:95:aa:af:
54:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:05:A2:7E:78:E7:FB:57:1A:77:47:C9:CA:F5:B2:6D:89:4F:EF:28
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0wWifnjn-1cad0fJyvWybYlP7yg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.118.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ae:81:dc:15:c1:b4:41:7d:d4:13:26:bd:e1:9c:98:62:8e:96:
bf:8d:76:ec:0c:04:11:81:6f:25:58:0e:d1:f9:bb:98:ac:ab:
15:e2:44:46:60:1d:dc:bc:27:f0:8b:12:db:44:90:39:1a:0e:
84:c6:a9:90:b6:24:69:db:c1:3f:68:82:55:5d:23:bb:53:fc:
71:cf:2b:f7:4a:f1:21:ad:b1:8f:40:c8:3d:74:85:f1:7f:2f:
4c:15:ce:69:95:e8:3a:d2:49:bc:36:c0:b8:cd:23:41:2f:86:
84:f2:e5:89:6a:c1:d4:fe:7d:ec:13:37:fc:f8:20:cd:88:18:
72:ce:00:25:17:90:ad:c4:b5:e1:6d:7c:3d:c5:e7:80:60:9d:
18:8d:79:ea:20:e6:39:64:cd:f2:f6:c3:14:d4:c3:32:6a:27:
4d:4d:31:15:d0:73:91:f8:b5:80:69:05:9a:d1:eb:df:e3:ae:
dc:d9:f0:d6:3c:e5:1e:74:8e:d7:da:0b:d2:5f:db:2f:a9:43:
d6:c0:b7:ac:fc:e8:5a:f4:55:c5:ec:5c:9b:58:f6:15:2b:ef:
ee:4b:8e:83:08:e0:43:bf:93:d9:2a:40:fb:fc:28:7f:8f:6b:
56:44:1e:6a:65:d6:27:d5:6c:e1:a5:ba:f5:fd:2e:cf:c0:75:
08:82:48:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org