Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/8854LWPg0kg_v1cVADP4W3keK1Y.roa
File: 8854LWPg0kg_v1cVADP4W3keK1Y.roa (raw, json)
Hash identifier: c5hbXySRuC0jXWhIvzurYXyUNffhYIPpxGhIsP6neg4=
Subject key identifier: F3:CE:78:2D:63:E0:D2:48:3F:BF:57:15:00:33:F8:5B:79:1E:2B:56
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8854LWPg0kg_v1cVADP4W3keK1Y.roa
Signing time: Thu 15 Sep 2022 02:48:11 +0000
ROA not before: Thu 15 Sep 2022 02:48:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 210.59.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F3CE782D63E0D2483FBF57150033F85B791E2B56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:92:a4:73:a8:ed:fa:a5:d0:71:c8:93:22:a8:
f4:92:2a:42:5a:83:58:33:20:52:a4:6d:54:bf:f4:
96:9f:30:89:47:89:aa:32:33:4f:ab:f6:a7:8c:67:
f7:08:3d:d7:b6:ed:f6:23:08:17:9e:54:ec:82:23:
e9:ce:42:af:c4:7e:15:8d:7a:47:f4:45:9c:6c:2a:
de:62:f7:8d:a2:3f:c3:bc:b5:a1:79:b3:f6:6b:44:
d8:18:87:b5:d4:80:52:23:20:43:af:a4:5b:d0:27:
a4:0c:d8:52:b2:78:06:fc:55:3e:f6:34:4f:f6:c3:
2f:af:9e:19:ff:2b:06:e1:6d:88:08:67:2e:ed:0d:
43:63:d5:4d:57:62:32:db:1c:6c:cf:72:51:ef:c5:
6f:a3:94:6f:67:10:85:7d:1b:a4:84:12:52:58:b4:
9e:29:01:cd:fd:6f:6c:6b:32:93:00:9a:23:a4:7b:
d3:7c:3f:7f:3e:01:6d:c8:0c:e8:07:8a:53:4b:f5:
6d:a8:27:2c:1c:05:ec:98:e2:8f:fc:14:0f:bf:f5:
0a:27:72:05:18:c8:15:17:bf:98:74:c6:fa:f5:53:
8a:e2:46:31:8d:63:fa:f2:67:aa:b2:5e:2b:57:69:
ad:91:2c:56:34:b3:92:6a:11:7a:52:57:27:48:ad:
0b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:CE:78:2D:63:E0:D2:48:3F:BF:57:15:00:33:F8:5B:79:1E:2B:56
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8854LWPg0kg_v1cVADP4W3keK1Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.59.128.0/17
Signature Algorithm: sha256WithRSAEncryption
a7:a5:64:40:a5:04:04:20:06:7f:bc:14:7b:e1:3c:77:23:8f:
00:cd:b7:b7:88:8f:7b:4a:50:11:fb:18:52:d8:70:c8:1c:54:
ad:3b:74:c5:1a:62:ed:03:5e:dd:38:5a:0f:b9:85:3d:2e:2f:
f2:1f:5d:76:f1:9c:18:34:69:ee:5b:ac:ab:ee:47:77:51:96:
8d:d6:6e:59:44:70:2b:a4:65:49:5e:95:e7:d0:61:ef:63:9c:
58:e6:4c:9f:0f:15:cf:fb:49:10:1b:dc:5f:fc:9f:ce:bf:21:
09:00:66:58:09:5a:54:c0:24:85:4d:fc:8b:04:ef:f3:89:58:
9e:09:bd:61:45:12:09:e8:6a:0f:31:76:36:6d:7f:7a:37:84:
ef:21:cd:3c:71:9d:bd:2e:38:be:ef:8a:e3:d3:6c:97:3b:20:
84:b2:36:9f:34:3c:3c:f0:09:6e:36:1c:bc:8b:14:d9:77:94:
56:ea:48:b5:2b:bd:b6:74:ce:b5:2a:c9:f9:44:11:29:44:fd:
8a:7b:32:04:e9:b3:78:7d:5d:db:7c:8d:70:25:db:aa:64:00:
7e:97:18:64:7b:4d:ff:be:2b:1d:6f:0a:25:7c:5b:11:60:1f:
2b:d8:9e:90:e1:04:d8:e7:a7:58:00:d1:78:6e:73:13:37:f4:
34:97:aa:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org