Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/45fh--9h-BvIXcqqTpxrVnF2uso.roa
File: 45fh--9h-BvIXcqqTpxrVnF2uso.roa (raw, json)
Hash identifier: u02Tm1gSUJAPtKlQ9YTe32iO3TQkO4I6r632fmdXSYo=
Subject key identifier: E3:97:E1:FB:EF:61:F8:1B:C8:5D:CA:AA:4E:9C:6B:56:71:76:BA:CA
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/45fh--9h-BvIXcqqTpxrVnF2uso.roa
Signing time: Thu 15 Sep 2022 02:48:34 +0000
ROA not before: Thu 15 Sep 2022 02:48:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17421
IP address blocks: 111.80.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:34 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E397E1FBEF61F81BC85DCAAA4E9C6B567176BACA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3b:b1:06:30:41:fc:4e:bf:11:3c:3c:22:c1:
e0:ab:db:7a:47:23:6c:a1:98:a1:d5:85:ba:d8:f7:
66:24:09:ed:56:89:f1:5e:15:66:50:05:12:20:66:
95:40:39:04:59:f3:2c:de:f0:f2:6f:07:c1:12:1f:
07:f9:e6:fd:1c:1f:1e:54:ea:54:c2:29:a4:05:ef:
f1:ca:65:15:c3:18:9d:2a:6d:70:5c:1f:ea:a3:95:
33:bd:0f:ac:84:a6:80:8f:43:ed:c4:c7:f7:44:9e:
cd:e1:3f:e5:ba:bc:9c:0e:2b:a0:24:a6:22:da:f6:
fb:10:3d:df:3a:9b:e4:2d:a1:93:00:ef:ad:44:85:
bd:06:57:e7:1b:55:32:8f:3f:20:29:47:20:6b:8d:
1f:ef:14:c5:f3:42:21:ec:da:20:6b:6f:e5:36:53:
9e:fe:f6:22:b6:80:b1:45:9c:b2:1f:60:f7:f6:01:
df:c7:bc:cc:ed:d2:22:4c:5b:5b:28:43:d9:e0:bc:
4f:2f:9d:2d:bb:03:17:3b:f3:ea:da:9d:c7:c4:fd:
94:33:28:99:b3:20:0e:50:94:33:39:b9:c3:19:37:
ed:d4:d1:88:fa:32:5e:48:be:f2:6e:ec:47:76:68:
2c:1e:29:4e:f2:5b:65:8e:d6:34:7d:41:93:bf:f2:
9c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:97:E1:FB:EF:61:F8:1B:C8:5D:CA:AA:4E:9C:6B:56:71:76:BA:CA
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/45fh--9h-BvIXcqqTpxrVnF2uso.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.80.0.0/14
Signature Algorithm: sha256WithRSAEncryption
93:9b:42:ed:aa:f9:5a:42:8a:1e:1c:4f:a4:b7:59:1e:d4:24:
b2:a1:af:f9:a3:49:31:29:e4:3c:2e:84:59:35:29:65:b2:9c:
e2:87:cb:5d:36:c7:be:a4:cf:23:74:54:36:f5:b4:c2:a4:7f:
29:31:82:78:14:db:86:f6:24:ca:65:89:b0:31:44:6e:10:14:
af:b2:a6:d0:3e:97:dd:fe:71:46:cf:6f:7f:de:30:7d:a6:d9:
4f:87:66:ab:e4:d3:e3:02:ba:4a:07:6a:ae:1b:44:e8:c2:c1:
d0:52:e8:c6:ba:db:b2:72:2b:70:0f:ea:d6:5f:bc:7f:fc:07:
20:a2:0b:26:9c:05:a6:57:b4:0c:63:1d:ee:59:d1:f0:eb:3c:
a6:fa:c3:11:28:1b:8f:ae:eb:5c:58:65:59:f8:bf:f9:62:0a:
2e:fc:5d:0a:4a:52:a2:2e:f2:d4:69:d6:cf:92:c3:1f:f4:a3:
58:d1:b3:dc:3d:84:b2:44:8b:30:39:fd:ec:74:2c:fb:e5:2f:
2e:9b:93:63:3e:9d:e9:02:56:26:1e:98:59:b2:ab:ed:db:41:
ba:fa:30:28:23:07:5d:fd:49:7f:de:d6:87:0e:48:4a:57:71:
0f:b9:3b:c1:5e:45:40:74:42:ef:35:a6:6a:de:a9:e8:35:2c:
3c:e9:ad:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org