Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/9S1ZWdDaz7Psrdv0PavQ50eMt84.roa
File: 9S1ZWdDaz7Psrdv0PavQ50eMt84.roa (raw, json)
Hash identifier: ZFUrpJQIVEaxnpvqK67e1o25Aqsx6NOhik4VnjcrKZI=
Subject key identifier: F5:2D:59:59:D0:DA:CF:B3:EC:AD:DB:F4:3D:AB:D0:E7:47:8C:B7:CE
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C17
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9S1ZWdDaz7Psrdv0PavQ50eMt84.roa
Signing time: Wed 29 Sep 2021 02:50:52 +0000
ROA not before: Wed 29 Sep 2021 02:50:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 203.66.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3095 (0xc17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F52D5959D0DACFB3ECADDBF43DABD0E7478CB7CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:5d:d4:46:9b:d7:08:9e:35:fd:e7:51:b9:9a:
41:93:0d:cf:a8:19:ba:72:ad:d8:a9:4b:3b:f8:07:
c5:e3:dd:28:64:a1:ec:e7:cb:30:bd:15:35:45:15:
35:4f:76:3d:f0:90:43:7d:c5:57:01:3a:cf:1d:ae:
bd:0a:8f:86:1b:87:06:8f:4f:b5:81:c7:14:4f:a7:
e3:49:9e:42:56:67:e8:5f:89:af:2f:15:e7:5d:7f:
77:88:39:d5:37:69:1d:d4:62:63:db:4d:89:8b:d7:
c1:d9:ff:c5:ac:6b:fb:f6:57:08:7b:e0:4e:1d:7c:
e5:63:5c:e8:5a:af:f7:d4:db:3e:38:cb:97:c1:54:
46:b9:19:29:53:91:b3:92:0b:19:34:6b:f7:7e:8d:
6c:05:bb:3d:f1:44:00:65:77:1f:bd:bf:77:9b:de:
a0:fa:aa:d1:e6:3e:f6:95:a1:e4:2e:d9:79:45:ca:
b6:ac:cb:61:9e:28:c9:79:34:5a:d7:c5:23:07:26:
a8:77:ac:96:48:36:2a:46:d2:7b:1a:34:39:0c:16:
30:8f:8b:8c:85:b4:7e:65:7b:8d:8c:a7:02:5a:0e:
47:d6:e5:c2:75:eb:8d:51:02:5b:af:32:b9:04:4c:
f2:57:6f:fa:83:8e:b5:6a:1d:21:be:8c:dd:1f:4a:
28:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:2D:59:59:D0:DA:CF:B3:EC:AD:DB:F4:3D:AB:D0:E7:47:8C:B7:CE
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9S1ZWdDaz7Psrdv0PavQ50eMt84.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
d3:e5:10:b7:38:2e:22:da:c8:3b:cf:a1:b8:4f:15:38:a2:c5:
a1:f7:ad:e6:40:67:94:4a:9e:4e:ac:61:de:99:cd:52:12:ba:
41:25:5b:ea:3d:f8:e7:bb:44:11:ea:67:17:8e:f1:7a:0c:2f:
aa:22:65:e0:ab:a6:39:8b:56:db:e2:88:55:a1:5b:ce:be:0d:
65:80:4f:0b:97:c2:5b:2c:9d:ee:9e:f4:e2:b0:c3:f6:1b:fd:
26:0d:0d:93:8f:dc:70:39:1e:b6:4a:e7:62:82:aa:83:a5:57:
8d:cd:1d:6f:37:a7:e8:be:17:db:62:ee:67:59:00:53:e3:56:
d6:ce:68:b3:6c:b9:13:55:b0:45:b6:61:d2:bd:25:73:5b:3b:
3a:0e:22:50:73:15:93:2e:95:0d:2b:e6:d6:c0:bf:3c:91:68:
49:4d:73:1d:c0:a7:ba:87:04:52:24:47:e0:f1:2f:59:5a:2f:
b6:4f:ec:d2:67:58:3d:e1:3b:0b:ba:eb:95:1e:b0:25:a2:11:
c5:23:0c:79:d7:ea:8d:03:3f:9d:ce:c2:e2:31:e2:9a:3e:eb:
56:1f:a7:01:1b:55:8a:6a:09:73:f0:8d:47:50:1f:fe:e0:34:
06:f3:27:ca:6f:82:d8:ff:41:cd:5b:4d:dd:9a:24:3d:8e:66:
a7:5f:a5:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org