Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/2rHruPKC5SVaEuFA9jyN7LZeoaM.roa
File: 2rHruPKC5SVaEuFA9jyN7LZeoaM.roa (raw, json)
Hash identifier: /aQxBWnFmjDTb7TbcXnT6oeP9f8d6L0OCbSgSnwG1YU=
Subject key identifier: DA:B1:EB:B8:F2:82:E5:25:5A:12:E1:40:F6:3C:8D:EC:B6:5E:A1:A3
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2rHruPKC5SVaEuFA9jyN7LZeoaM.roa
Signing time: Thu 15 Sep 2022 02:48:08 +0000
ROA not before: Thu 15 Sep 2022 02:48:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 59.120.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DAB1EBB8F282E5255A12E140F63C8DECB65EA1A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:f2:c9:e5:e8:ee:c0:83:82:c8:e1:42:23:15:
bb:cb:9c:27:fc:78:af:98:fd:f6:b0:02:53:be:87:
9f:2f:c5:37:17:82:b7:1c:5c:da:e5:4b:c9:4a:e1:
b2:dc:63:19:d6:a8:dc:c9:8b:8a:24:d8:7d:1b:df:
a8:35:08:96:97:63:b2:57:f4:d8:e7:ef:54:0b:90:
7a:b6:44:02:40:32:9b:f8:28:c0:2a:36:bc:cf:f5:
19:9d:d0:45:2a:88:0a:4a:06:eb:59:3f:12:1d:b5:
74:f4:de:12:96:54:14:c4:16:7e:3a:35:b9:db:37:
56:c9:f6:fd:58:c2:47:af:1c:3f:a3:01:23:da:a5:
01:4a:9d:6f:31:15:b8:d8:4f:a9:d1:1c:ab:6a:11:
92:c7:01:66:41:72:4b:70:11:49:3d:ef:fe:8d:c4:
69:6e:07:60:39:47:92:6a:f6:1b:0a:6f:b7:7f:98:
89:99:e4:aa:d6:9c:8d:f2:2d:81:b4:e9:0b:0b:ee:
cc:2e:c1:7f:58:7a:5b:4a:3a:33:3f:ce:e6:45:1a:
fb:9d:37:9b:3f:b0:5e:66:80:47:0c:ef:f9:7d:db:
aa:7e:78:7a:35:fd:1b:5e:95:89:28:17:9f:5d:c3:
49:62:f7:1f:e2:ed:00:ab:ed:12:11:08:bb:a1:68:
4a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:B1:EB:B8:F2:82:E5:25:5A:12:E1:40:F6:3C:8D:EC:B6:5E:A1:A3
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2rHruPKC5SVaEuFA9jyN7LZeoaM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.120.0.0/14
Signature Algorithm: sha256WithRSAEncryption
d3:22:e7:f2:62:41:63:29:9b:cd:b5:76:09:77:c9:cd:d2:76:
e9:c8:36:c3:9b:ac:64:68:88:aa:70:20:8e:cd:28:ec:14:fa:
50:b7:8d:76:29:2f:51:b2:66:f1:ab:30:37:72:01:8d:73:eb:
34:97:d8:88:0d:08:9e:29:20:c9:23:21:b2:0c:96:31:51:8e:
39:f7:9a:61:7d:b6:84:0c:f1:26:4b:98:cd:6c:38:17:e1:9d:
9a:15:6a:3a:65:a9:b7:d2:fb:2e:c6:07:30:84:29:e8:76:87:
8f:25:4a:87:c2:5c:68:f3:a1:a2:4c:59:0b:43:5b:1f:74:29:
6f:ce:af:d3:77:01:ec:1f:b8:d4:86:86:63:6e:92:12:57:4f:
fb:48:31:76:ad:e3:f2:5e:a9:61:c4:7f:a9:30:d4:d0:8a:91:
88:ae:3e:15:68:27:76:68:91:c2:56:4a:e1:9e:42:e2:31:cf:
03:b5:13:98:b5:c0:83:c4:50:13:6e:66:77:4e:3a:4b:0e:19:
93:91:2d:b5:8f:ee:6d:ef:cf:1b:1d:0d:3e:a7:29:64:d4:66:
37:86:cb:2f:14:8f:07:7d:1c:0a:f3:46:08:6f:b0:fd:1f:9a:
59:93:07:70:8c:92:b8:f0:7f:e4:48:39:36:ce:32:5d:03:78:
63:19:60:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org