Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/9La10g3z9QnPd9YcG2axI0YHgSc.roa
File: 9La10g3z9QnPd9YcG2axI0YHgSc.roa (raw, json)
Hash identifier: gyfavatPs2IpCXClOy9HI6rI2BaZ1lfGHdgRYRwJ+0A=
Subject key identifier: F4:B6:B5:D2:0D:F3:F5:09:CF:77:D6:1C:1B:66:B1:23:46:07:81:27
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A6E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9La10g3z9QnPd9YcG2axI0YHgSc.roa
Signing time: Sun 07 Feb 2021 11:37:48 +0000
ROA not before: Sun 07 Feb 2021 11:37:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 1.34.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2670 (0xa6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:37:48 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F4B6B5D20DF3F509CF77D61C1B66B12346078127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e6:76:b4:3a:56:43:f6:04:c1:d3:d6:0a:e0:
99:c9:c7:3d:2e:23:43:4c:0f:c9:15:80:85:1b:53:
f7:75:4f:50:1e:ba:85:93:6b:7b:10:79:2e:23:0a:
99:05:de:80:9c:59:55:92:56:d7:73:55:81:c9:bd:
9b:d3:7f:25:c9:4d:5d:00:1f:79:58:9f:d2:78:26:
a2:f3:df:e1:d1:08:aa:0d:b4:0f:e0:e5:56:87:e9:
dc:9e:17:9d:10:ce:c6:76:12:dd:d5:42:b7:df:2a:
ae:f1:ad:00:cc:11:9f:05:e1:d8:e5:68:ef:85:43:
8c:2c:a8:cf:1f:4c:9c:16:85:0a:b8:9c:3e:2b:29:
cc:14:05:da:47:cf:9c:c9:f2:5e:26:f3:71:0a:64:
be:6f:32:6f:64:ee:bd:37:24:f8:18:17:4e:41:14:
43:28:c8:09:e7:62:c2:76:a7:c1:73:69:2d:50:fa:
97:f4:2b:cf:83:41:6d:1d:53:cf:df:32:cb:b1:e9:
e7:bd:00:16:de:3a:c2:a7:0d:f7:7e:55:bb:a7:7a:
1c:73:57:9f:6b:57:a3:47:51:2a:37:d8:d7:f3:ef:
87:61:43:12:45:2d:9c:0c:5a:0d:91:7f:98:ae:68:
fe:fe:ae:56:18:23:a3:4c:18:73:9f:f1:62:28:48:
cd:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:B6:B5:D2:0D:F3:F5:09:CF:77:D6:1C:1B:66:B1:23:46:07:81:27
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9La10g3z9QnPd9YcG2axI0YHgSc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
1.34.0.0/15
Signature Algorithm: sha256WithRSAEncryption
0a:bd:c6:7b:ab:70:63:94:90:e7:f3:54:c1:43:74:b9:f5:0c:
a4:7a:32:87:2f:60:30:a0:9e:62:e1:00:2d:a3:39:1a:e8:04:
c5:7e:ac:ba:7a:45:1e:bf:78:b0:74:32:6c:ed:03:af:96:ee:
1a:fc:f0:7b:a1:20:43:61:10:7f:6c:9d:6e:25:fa:a2:d9:09:
01:e7:36:63:e1:ff:72:00:2c:2b:76:34:de:be:57:ac:09:d9:
1d:5d:f0:43:08:a4:42:4d:b9:b3:68:62:a3:d5:36:04:7c:1a:
ab:2d:19:0c:9f:33:bd:0d:c3:99:eb:fb:de:13:05:12:44:ce:
9f:51:d0:f2:ae:6b:48:cd:a2:d4:f7:20:89:30:e0:6e:eb:e9:
8e:ed:5c:1a:d2:1b:64:1c:13:8b:bd:03:15:19:81:26:9d:e2:
b0:55:83:7c:84:b8:99:d8:48:12:da:1e:9d:79:93:23:97:f6:
89:63:ed:5a:63:c2:b2:71:73:c4:92:5a:24:71:c7:d2:51:12:
aa:57:03:0e:8a:d0:b9:5a:10:80:ca:89:c6:3e:6f:d4:4f:41:
b0:d6:83:41:c6:38:c5:0d:57:d4:76:40:39:29:bb:08:f3:3e:
b8:7c:51:7a:21:23:80:da:23:49:8c:05:e2:7e:2b:fa:59:b3:
bf:ce:9c:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org