Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/5_u8qTeJ9xVGBDA0RqwipdheuYI.roa
File: 5_u8qTeJ9xVGBDA0RqwipdheuYI.roa (raw, json)
Hash identifier: TQYXwOqOiMRBmRA3h74dXHvybHTpPN8t6tTXK+/VpYU=
Subject key identifier: E7:FB:BC:A9:37:89:F7:15:46:04:30:34:46:AC:22:A5:D8:5E:B9:82
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 081B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5_u8qTeJ9xVGBDA0RqwipdheuYI.roa
Signing time: Tue 29 Sep 2020 09:58:21 +0000
ROA not before: Tue 29 Sep 2020 09:58:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 203.66.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2075 (0x81b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:21 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E7FBBCA93789F7154604303446AC22A5D85EB982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:57:14:a4:59:d2:f6:95:60:c1:86:1a:71:05:
70:8d:bc:80:06:e4:23:f8:11:78:ff:84:29:9c:d0:
e1:53:2c:90:87:b3:34:30:33:3f:22:53:01:fd:8d:
29:5c:fc:0f:2d:ba:69:b4:d2:6e:0a:f4:42:31:67:
fa:c3:bf:fe:52:70:d7:c8:7b:c1:5b:ae:53:4b:60:
f6:9c:99:db:d5:19:76:d8:42:78:c1:41:26:83:22:
09:49:35:60:44:aa:df:05:f3:e5:ad:c2:a6:63:9c:
86:a3:ac:4e:7a:c7:02:56:7a:b1:ca:a4:2e:e7:dc:
72:4c:11:d6:74:3d:3b:40:92:6f:b6:4b:c6:fa:27:
02:9a:51:1f:19:91:d9:b1:64:ab:34:7d:00:69:21:
50:7b:1d:0f:7f:d6:a9:72:26:1b:99:32:5c:34:55:
72:38:f5:75:1c:33:c4:95:8a:7b:96:09:fb:96:3b:
aa:cd:91:92:38:ee:ac:fd:6a:ea:81:b8:2c:9b:0c:
4d:91:f5:77:85:cb:d4:85:5c:d6:df:71:44:eb:c9:
aa:ad:b2:5b:d0:a3:db:19:fa:d1:5c:75:c3:a1:2c:
02:56:2b:bd:2f:de:88:63:a5:93:9c:62:e1:02:07:
12:78:56:a1:d4:25:f4:93:2b:33:bd:ee:bb:72:56:
4e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:FB:BC:A9:37:89:F7:15:46:04:30:34:46:AC:22:A5:D8:5E:B9:82
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5_u8qTeJ9xVGBDA0RqwipdheuYI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
41:16:63:ad:7e:dd:b8:67:70:ff:e9:31:12:49:6e:df:f7:a1:
b4:23:90:74:ed:f0:0b:99:42:55:40:bc:97:68:e3:7d:38:61:
ed:68:6e:56:e7:68:06:e0:bd:19:ce:03:96:03:20:9e:0c:99:
ca:f2:c6:66:db:09:8c:63:ec:fb:15:af:22:c2:08:70:92:84:
1d:ec:c1:0f:18:ba:ca:fe:5c:03:53:82:3f:df:a9:6e:46:a3:
11:b5:b5:c1:25:58:1d:d2:f3:e8:38:fd:44:28:81:6e:f1:71:
a1:c0:08:49:e2:58:d6:a6:cc:e6:53:76:d6:8a:1a:b3:a4:5f:
2d:c1:c2:80:3b:16:38:ba:65:be:7a:22:88:87:df:af:4a:3d:
d7:3e:0e:cd:a1:bc:59:0b:5c:06:6b:0b:ee:3d:05:65:1f:25:
61:e8:03:3d:c8:b1:0f:cb:dc:7a:0b:88:d9:86:31:a4:db:a6:
5f:ae:e5:51:1c:1c:07:34:d5:cb:4a:ef:0b:1d:4b:27:8c:9c:
7b:5b:6c:93:77:51:75:12:cf:c0:be:45:dc:0c:bf:69:0f:5c:
3b:3c:f3:38:84:01:27:c9:ea:bb:51:dd:40:10:35:eb:25:93:
1b:be:dd:eb:fd:6c:2d:ce:12:91:d0:08:28:bc:ff:b5:10:90:
47:79:54:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org