Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/8HwQqtfcJTsHDCvK__bP_arZR-Y.roa
File: 8HwQqtfcJTsHDCvK__bP_arZR-Y.roa (raw, json)
Hash identifier: hc38z40cjrWf1YjJQvYsnkoItfGer8uOJ0/V4OADEl8=
Subject key identifier: F0:7C:10:AA:D7:DC:25:3B:07:0C:2B:CA:FF:F6:CF:FD:AA:D9:47:E6
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C69
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8HwQqtfcJTsHDCvK__bP_arZR-Y.roa
Signing time: Wed 29 Sep 2021 02:51:15 +0000
ROA not before: Wed 29 Sep 2021 02:51:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 198949
IP address blocks: 203.75.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3177 (0xc69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F07C10AAD7DC253B070C2BCAFFF6CFFDAAD947E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ab:e6:6f:8d:14:bd:56:8b:f3:c2:15:8a:99:
c5:3b:80:e1:8a:b8:e1:87:e2:ed:98:9e:b7:41:fc:
7e:52:98:a9:2b:cb:e9:c3:8c:5d:2f:5c:71:85:c6:
43:94:3e:a3:fc:9b:4a:a1:80:df:52:72:0c:30:47:
90:ca:e3:4f:37:d7:28:c4:64:25:e5:5d:44:1f:58:
d8:de:44:32:e4:07:a8:f5:e6:51:a1:55:56:bf:b3:
03:61:51:73:2f:09:86:e8:2a:b8:78:90:c4:23:61:
b3:66:02:93:54:f4:80:05:3b:e0:45:26:79:b9:fa:
e6:68:08:c4:17:0f:20:c2:e3:7e:51:a6:9d:6e:36:
34:17:95:d0:c5:c8:4f:82:b0:b4:35:32:4d:4f:2e:
d2:57:7d:7e:d3:cc:6e:6f:50:cd:34:12:98:c1:7a:
5a:3e:6e:3b:d2:41:27:88:d6:bd:e8:04:1a:eb:dc:
e1:80:b6:68:75:a2:16:09:8a:f2:3b:1a:d1:3e:c9:
8b:9a:a5:99:21:5c:ba:2f:e5:28:bb:96:25:d4:62:
92:14:56:9c:ee:ed:b3:77:0f:09:dd:a1:8b:9f:04:
d7:d8:ba:ba:61:4f:6d:0e:ef:48:1b:e8:05:ea:a7:
88:76:0c:fa:d7:20:b5:59:df:98:00:59:e2:74:90:
49:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:7C:10:AA:D7:DC:25:3B:07:0C:2B:CA:FF:F6:CF:FD:AA:D9:47:E6
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8HwQqtfcJTsHDCvK__bP_arZR-Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.75.255.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:18:fe:70:50:9a:e6:9f:95:29:d1:94:e2:18:7a:c5:33:1c:
93:d0:d9:5f:e9:c9:fa:b6:de:90:6f:07:a7:b1:93:52:52:9e:
ed:c0:7d:98:c1:b5:0d:d0:89:65:9e:a4:9b:66:d4:95:bd:e7:
8a:77:ea:64:67:4e:34:fe:2c:71:45:25:df:5c:1d:b4:db:0e:
51:cb:ca:61:f4:f3:71:7a:41:bb:e2:b1:95:7b:a6:47:e1:5a:
5b:9d:b4:9e:39:ef:ff:cb:d7:2c:18:e5:46:40:d6:98:bd:b5:
0e:55:9d:25:0e:84:2e:5b:48:07:a0:d5:56:4d:56:4f:c1:85:
e2:fa:da:02:2d:2d:cf:ab:85:98:3b:d6:3e:1a:0c:55:5c:ca:
c3:ad:6c:76:66:84:f5:17:04:dd:63:75:b2:21:ff:47:2a:12:
25:25:05:33:39:79:2f:50:d5:cc:de:ec:19:2c:1d:fd:5a:27:
6e:5a:8a:a6:f4:5f:30:13:df:54:f5:e3:40:5c:a5:8b:ef:5c:
90:ce:f3:73:15:56:e2:34:d8:f4:8e:1b:80:1b:8e:c7:f3:2c:
94:75:1d:e5:78:35:f5:b2:1e:5b:2f:28:8c:e9:e1:df:98:d5:
6f:ac:54:fc:0e:14:ba:e5:5b:e2:72:6e:cf:0a:c5:2f:5b:3a:
c5:93:6b:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:54 2023 by rpki-client on console-ams.rpki-client.org