Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/2DCOrnb_QA_KGHD6LqMUdL-j_y4.roa
File: 2DCOrnb_QA_KGHD6LqMUdL-j_y4.roa (raw, json)
Hash identifier: GHcaeuOeU8No9UDpCCwCrqZg8nUPEbslT6GruK+W4LI=
Subject key identifier: D8:30:8E:AE:76:FF:40:0F:CA:18:70:FA:2E:A3:14:74:BF:A3:FF:2E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0995
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2DCOrnb_QA_KGHD6LqMUdL-j_y4.roa
Signing time: Thu 26 Nov 2020 14:16:25 +0000
ROA not before: Thu 26 Nov 2020 14:16:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 137280
IP address blocks: 203.69.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2453 (0x995)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Nov 26 14:16:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D8308EAE76FF400FCA1870FA2EA31474BFA3FF2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a0:23:db:99:dc:30:62:e7:f5:23:6b:2b:9c:
af:41:86:56:84:99:30:4d:a4:07:5b:06:d3:98:a8:
93:51:62:72:13:71:9d:7b:f7:74:2f:b4:e4:4a:fc:
f1:00:cc:5c:00:a1:89:5e:b7:78:f3:d4:9f:84:34:
1b:98:4b:29:af:cb:e5:43:f5:07:ca:db:f2:b9:78:
4f:c9:25:1f:28:16:c8:ef:3b:11:24:af:eb:4e:3d:
be:7e:17:4c:0e:82:60:e2:a5:d5:22:f4:ba:a0:7e:
81:1e:a9:02:68:11:7b:18:cd:81:45:32:be:73:5d:
a7:d3:5a:6a:05:a5:4b:f1:8e:03:ed:95:a0:79:5e:
e3:95:ba:ba:5d:dc:04:9e:5d:66:84:53:a6:c0:e0:
26:ac:67:4a:61:c5:e6:3e:3b:cd:8d:ac:ab:39:6b:
64:31:e7:25:05:84:72:64:d3:b5:1c:e9:64:88:3d:
3a:d1:b5:70:d5:fc:10:44:80:c3:c2:a5:9a:d9:e4:
47:d6:b5:b7:1b:1e:e7:d1:b6:7e:d9:dc:81:06:51:
ea:0c:90:75:a2:6f:10:f9:03:35:ca:c2:39:46:9c:
49:45:1c:d5:4f:a5:8b:59:3b:65:6a:d5:fe:22:62:
d2:e8:12:0d:89:11:e6:88:df:22:ff:93:9e:b6:39:
d6:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:30:8E:AE:76:FF:40:0F:CA:18:70:FA:2E:A3:14:74:BF:A3:FF:2E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2DCOrnb_QA_KGHD6LqMUdL-j_y4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.33.0/24
Signature Algorithm: sha256WithRSAEncryption
93:29:be:d3:4f:0f:27:15:4a:46:9e:98:18:f0:33:bd:cb:5a:
b4:6b:2a:a9:08:c8:3e:ba:22:a4:14:d6:ad:74:b5:1a:5d:50:
ea:0f:ad:72:50:73:f9:5a:06:a2:d0:40:95:f1:75:75:24:19:
bd:2b:47:69:81:85:e8:4e:61:17:d0:da:50:92:44:59:2d:d1:
80:4b:6f:50:df:3c:e4:03:ae:09:75:54:c9:84:24:87:39:dc:
5a:0d:bb:d8:e2:46:5e:44:dd:79:92:40:21:fe:72:29:0a:6b:
71:59:bc:41:9f:d9:e1:ae:67:7f:bc:8e:3d:0b:c5:fe:87:8b:
4d:c3:2d:39:fc:9f:5c:a0:3e:c8:e7:45:fd:e0:75:b6:01:fb:
25:0f:51:40:ac:37:36:49:3a:18:b3:12:36:3a:ad:15:3a:fe:
30:eb:f2:fa:d0:ea:b2:82:d7:f8:49:8e:cc:30:44:83:bc:53:
b5:f0:cb:6b:99:06:00:a7:80:ce:d3:50:cc:03:fd:61:73:ad:
47:d6:e6:3d:56:05:e6:fb:8c:69:ca:b5:ec:0c:95:fe:98:e8:
41:54:98:f7:2c:60:01:27:1b:ea:a9:b5:1c:62:bc:ab:ef:e0:
7a:24:18:71:1c:cf:c6:d3:c7:f7:15:c0:74:d7:a9:d3:1c:0c:
15:da:b0:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org