Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/8R7fqOfcHwwuo436Rgb4QZpYo-8.roa
File: 8R7fqOfcHwwuo436Rgb4QZpYo-8.roa (raw, json)
Hash identifier: Kd6heS24FLY8syVN29uBeiCd3gd2s8HJQ6pfe/m34BY=
Subject key identifier: F1:1E:DF:A8:E7:DC:1F:0C:2E:A3:8D:FA:46:06:F8:41:9A:58:A3:EF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0E43
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8R7fqOfcHwwuo436Rgb4QZpYo-8.roa
Signing time: Fri 07 Jul 2023 09:56:25 +0000
ROA not before: Fri 07 Jul 2023 09:56:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 142005
IP address blocks: 210.61.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3651 (0xe43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Jul 7 09:56:25 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F11EDFA8E7DC1F0C2EA38DFA4606F8419A58A3EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:52:41:78:ab:57:d0:95:91:7d:42:80:0a:2b:
79:b7:0e:36:4d:71:9f:81:f3:8b:f3:7d:f5:e8:a2:
f0:6c:d9:69:6a:5e:18:5d:c0:6a:b6:e8:0d:89:45:
b5:b6:79:91:c1:0b:ac:e7:c6:6e:4a:0f:c3:a6:5a:
31:f6:fb:24:86:1d:e4:b3:16:a9:c5:d3:53:51:0c:
ba:b2:f5:38:ed:d3:1c:4f:6a:84:30:e6:02:cc:b8:
9c:5a:c0:ac:3e:d3:01:1c:a1:4c:70:fb:76:f8:70:
dc:42:09:36:b7:ff:f3:34:89:c8:b9:31:75:4d:c5:
36:e5:bf:76:ff:c0:62:7f:20:59:af:8f:8f:f0:db:
53:4a:b0:3c:f3:11:ab:74:b4:44:c7:a9:d3:a7:34:
c6:fd:86:02:c1:34:ec:73:61:26:22:7a:66:8f:03:
ff:8d:39:01:24:4e:d8:ff:ab:a3:60:fe:e2:c8:84:
c2:d3:28:65:66:95:4e:12:68:a5:af:0b:5a:5d:28:
12:53:bf:51:2d:cd:64:41:6e:1d:72:e3:1e:b0:73:
86:6d:ff:a0:b1:0f:d5:ee:62:df:69:51:04:66:21:
d9:fe:b6:a6:5e:6c:34:14:c7:19:38:67:34:c8:72:
de:03:15:6f:9d:08:5a:39:cc:fb:02:47:5a:05:6f:
a8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:1E:DF:A8:E7:DC:1F:0C:2E:A3:8D:FA:46:06:F8:41:9A:58:A3:EF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8R7fqOfcHwwuo436Rgb4QZpYo-8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.107.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:b1:b3:b5:cf:3c:3f:f3:cc:81:d3:3d:17:30:9a:4d:cd:7d:
ac:4d:4c:d4:40:16:82:7a:a2:ce:01:3c:72:da:c1:ca:56:3a:
7a:35:78:00:5f:8d:bd:24:8d:58:54:8c:51:67:8e:50:1b:33:
6e:23:0c:4c:eb:9c:dc:28:de:6c:59:9d:4f:d3:db:3d:4c:c4:
a3:19:7a:ca:01:1c:02:ca:a3:67:0d:36:2e:43:31:3a:54:46:
59:05:d8:a0:17:79:18:3c:13:d9:f6:1a:5e:a5:45:1c:92:4a:
e9:5d:5a:7a:70:05:c1:2e:85:e3:f0:55:91:4f:35:ac:43:ad:
e9:f4:a8:a0:4c:b3:a3:7d:e3:d4:6d:78:99:be:a3:51:ec:52:
a8:5a:ff:cb:3a:c5:9f:7f:ad:18:92:d1:29:a0:ac:3f:83:74:
96:2d:8a:b2:2d:06:8c:40:d5:dd:c2:74:81:2e:9a:17:14:57:
e5:9c:d6:63:90:1b:1e:f0:03:15:1d:0f:84:71:95:59:20:99:
3c:67:46:2d:0b:60:ab:ec:df:5c:83:aa:36:1f:c9:7b:14:f7:
3c:53:66:3d:bd:73:98:67:bd:f8:cb:9d:34:40:87:7b:68:21:
57:d2:a8:c4:70:9c:f9:2f:a4:18:16:71:e5:6e:6d:a9:4b:11:
3c:de:d3:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org