Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/2dOZ9WwmyMbRxhlRG6NX0Yh5AHc.roa
File: 2dOZ9WwmyMbRxhlRG6NX0Yh5AHc.roa (raw, json)
Hash identifier: pVFjxc88vAlneXPx7VKMYHxVvXKGgPIEl4XTqcglV8Q=
Subject key identifier: D9:D3:99:F5:6C:26:C8:C6:D1:C6:19:51:1B:A3:57:D1:88:79:00:77
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2dOZ9WwmyMbRxhlRG6NX0Yh5AHc.roa
Signing time: Thu 15 Sep 2022 02:48:41 +0000
ROA not before: Thu 15 Sep 2022 02:48:41 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 61.224.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:41 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D9D399F56C26C8C6D1C619511BA357D188790077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a1:cb:d0:3d:2c:bb:44:08:7b:1f:44:3f:af:
f4:0b:bd:5c:79:e2:5c:f7:21:f3:7e:02:46:f9:fd:
07:67:be:c4:eb:21:95:fd:ee:4f:9d:3d:06:c2:2f:
10:eb:be:0b:f0:8d:1e:c1:86:50:86:9c:f5:2e:7b:
14:0d:6e:04:ba:23:63:cc:16:dd:b6:d3:7d:1d:22:
2f:bc:02:39:07:b6:df:33:aa:19:3a:8c:c6:ea:3b:
14:3b:3a:9b:36:06:42:c1:b8:b4:0f:1b:ea:51:9d:
2a:85:4c:25:c6:58:61:aa:d0:81:49:cc:a5:15:6e:
c8:75:6a:7c:9d:22:f1:fc:46:8a:77:a7:7f:3a:6b:
6c:a4:2f:4b:28:52:5e:5e:73:1a:b4:10:8e:03:ba:
ac:d8:48:5d:4b:29:29:b0:38:28:3b:6e:0f:4b:52:
13:f6:7f:b1:4c:07:53:15:9c:ea:b3:d7:4d:dd:8b:
fc:fe:15:d4:8c:f6:59:a0:25:c1:cc:b9:70:01:d9:
d7:1f:b9:5f:5e:97:07:b9:51:fd:2c:f5:ec:74:5d:
8c:62:81:50:a0:23:c5:68:77:db:dc:50:a8:9d:91:
96:c6:9f:d4:ed:81:16:93:60:22:ff:7e:91:f8:31:
c3:94:e3:62:a1:17:f7:18:9d:c7:04:41:03:7d:b7:
12:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D3:99:F5:6C:26:C8:C6:D1:C6:19:51:1B:A3:57:D1:88:79:00:77
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2dOZ9WwmyMbRxhlRG6NX0Yh5AHc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.224.0.0/14
Signature Algorithm: sha256WithRSAEncryption
8a:61:9c:b0:7b:c2:70:0b:44:c9:73:2d:54:3a:82:95:e4:a3:
0b:bf:7a:a4:87:64:78:0d:78:88:65:47:e4:f9:c3:d3:12:30:
89:fc:35:ce:f0:05:28:ea:61:9c:d0:6f:02:e3:57:a3:13:85:
c4:33:29:a7:6c:85:e8:8f:b5:ba:02:d3:12:ba:68:3b:4b:d4:
07:d0:c2:c5:7d:9e:d0:ed:c2:6b:52:cf:12:92:de:78:32:13:
c8:cd:f9:f2:14:8a:1f:ed:af:f9:2a:11:4e:d2:45:9e:4c:5e:
1a:01:de:96:09:37:1a:f6:b1:67:1d:33:ca:c6:03:13:b4:d2:
90:65:27:06:65:a2:41:a0:26:87:d5:97:fa:b1:a0:2e:67:81:
be:a8:3c:e8:9c:67:84:94:ee:8b:85:f3:f9:b9:ee:76:3f:cf:
f0:54:e3:ea:5a:fd:07:d2:1d:9c:1b:b2:ae:09:93:1d:24:7e:
52:bc:7c:89:21:4e:38:3a:86:fb:90:da:1d:a7:be:e8:ef:ed:
7e:e7:5a:a2:31:9b:0b:e0:3e:fa:4e:ba:51:1f:44:ac:06:46:
2f:9d:7d:3d:69:74:1b:ec:61:06:52:d3:b1:61:8c:98:93:43:
c7:6e:69:86:71:12:07:95:b8:5c:7f:0f:78:29:b1:23:98:12:
f0:11:d8:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org