Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/3egxN-JN_tWh5eSJvxI6a1yO9k0.roa
File: 3egxN-JN_tWh5eSJvxI6a1yO9k0.roa (raw, json)
Hash identifier: CcxpnRXBt7hc37jC5rh2kdkpIENqjB8nXTAjUQlJ5u4=
Subject key identifier: DD:E8:31:37:E2:4D:FE:D5:A1:E5:E4:89:BF:12:3A:6B:5C:8E:F6:4D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C56
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/3egxN-JN_tWh5eSJvxI6a1yO9k0.roa
Signing time: Wed 29 Sep 2021 02:51:10 +0000
ROA not before: Wed 29 Sep 2021 02:51:10 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17714
IP address blocks: 175.111.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3158 (0xc56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:10 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=DDE83137E24DFED5A1E5E489BF123A6B5C8EF64D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:2f:5c:8d:f1:21:b0:4b:95:ca:63:d0:67:f8:
03:aa:50:5b:46:c5:f4:90:74:fc:e5:65:c8:30:d9:
9b:4e:3a:b4:8f:fc:02:57:f8:f8:db:0a:60:1e:c6:
c3:61:71:3a:1d:e5:4e:a0:45:65:d9:74:39:a8:42:
3a:3b:ad:69:37:c1:41:fd:bb:fe:60:0d:58:06:86:
1f:56:4a:30:25:2c:57:8c:31:f9:5f:3a:80:7d:6f:
4c:ee:12:6f:91:1f:50:81:e0:34:31:ef:d1:08:91:
fc:53:4c:f9:72:47:e5:ba:34:3b:24:64:ce:c8:14:
e3:02:f4:e8:02:a9:f6:de:8f:db:dc:ef:b5:af:3e:
bb:be:29:10:3c:cb:e8:bd:5e:e6:57:61:72:63:6e:
bf:61:b9:b6:a4:cb:f2:16:c2:26:7d:62:48:ad:80:
db:75:6b:65:53:c6:f0:c7:0f:dd:b4:d6:92:58:72:
5a:e8:a6:16:5c:a2:46:65:4e:2f:87:a7:b1:97:d9:
2f:de:a3:0d:f5:ad:9d:f0:2a:7c:98:58:84:65:63:
b6:a4:4d:12:df:ed:4b:d1:7a:dd:96:ff:ad:93:d7:
92:9b:cc:44:7f:fe:b5:7a:3f:a2:b3:ef:6a:40:cf:
3f:3f:f5:02:37:05:7d:83:60:7e:48:70:b4:da:64:
8b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:E8:31:37:E2:4D:FE:D5:A1:E5:E4:89:BF:12:3A:6B:5C:8E:F6:4D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/3egxN-JN_tWh5eSJvxI6a1yO9k0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.255.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:99:f0:fc:ea:ab:10:c5:19:c9:3f:dc:46:66:df:c9:da:88:
87:e6:19:0c:8a:eb:56:1d:1a:40:ac:a7:50:6d:ee:a2:07:fb:
14:48:9b:68:ee:65:73:e9:bd:10:14:61:50:9c:a1:77:2a:eb:
f7:a4:c3:0a:bd:fd:16:60:ef:a6:c7:79:58:bf:e9:57:20:b5:
87:e2:76:a6:1f:d5:7c:34:d7:e9:7e:88:9b:82:85:16:7b:44:
5b:62:e9:bc:1d:91:8e:b5:b3:58:b8:e0:09:8d:9d:c8:35:34:
c0:af:9b:c8:31:75:c0:a5:ef:2f:1b:19:c3:74:cc:9a:de:68:
cd:b1:d8:14:f3:cc:28:53:3c:23:3a:63:5c:b2:30:a7:56:bc:
65:f4:6f:04:a6:47:59:7d:f4:8d:b8:45:b6:3a:e2:6e:dd:57:
e5:c6:f8:de:06:d7:8c:13:4c:f2:df:b3:4f:6d:99:f7:8b:3d:
f2:a3:ed:c0:cc:e1:cd:83:0f:05:73:1d:9d:d8:82:30:4e:4d:
04:af:5a:76:a9:94:53:65:26:d8:d5:5e:1e:5f:ee:fc:36:4c:
1a:15:b3:7e:b2:b6:16:f7:2c:87:bc:58:96:24:1e:83:9e:70:
96:43:5f:f3:ae:2b:36:26:3f:0b:da:bf:48:0e:1e:fe:70:9e:
e9:a4:c6:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org