Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/AOqEIBvoTI39sEdFyA8T0kYuRoY.roa
File: AOqEIBvoTI39sEdFyA8T0kYuRoY.roa (raw, json)
Hash identifier: XshWGg9fVHthDeCI/uW97tiL6+ockWzTfb5a9GUx7lM=
Subject key identifier: 00:EA:84:20:1B:E8:4C:8D:FD:B0:47:45:C8:0F:13:D2:46:2E:46:86
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 09A7
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/AOqEIBvoTI39sEdFyA8T0kYuRoY.roa
Signing time: Mon 21 Dec 2020 07:26:57 +0000
ROA not before: Mon 21 Dec 2020 07:26:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131660
IP address blocks: 2001:b000:590::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2471 (0x9a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Dec 21 07:26:57 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=00EA84201BE84C8DFDB04745C80F13D2462E4686
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3f:1d:fb:c2:c9:00:a1:2a:f8:68:d1:75:6a:
38:64:0c:17:12:b1:74:a1:97:f4:97:01:fe:dd:45:
f9:22:b0:65:f1:7d:ca:d5:c9:a4:c2:6a:51:4b:12:
2a:1a:28:be:f0:b1:50:f9:5a:08:3b:0b:5d:e8:08:
71:42:2e:e5:ec:17:98:b1:1c:56:03:49:47:4a:b7:
7e:04:26:45:1c:d0:7c:3c:e1:8b:a1:7e:7a:02:c2:
15:b3:2e:74:36:32:fb:6e:e0:bb:22:3d:1b:06:9c:
de:5b:51:76:af:5e:ae:6c:4a:7d:cb:a3:42:45:e6:
2a:9b:b6:08:4e:e0:2c:7d:5a:a6:1d:eb:62:e5:6e:
bc:f8:28:ec:3a:56:64:5c:47:3e:53:0a:4f:da:b6:
45:c7:9d:2b:ca:81:eb:bb:0b:bc:54:df:31:d3:7e:
14:01:1e:13:8f:04:e9:e8:8d:ba:8d:90:54:73:39:
d5:12:ae:97:24:fe:66:7f:e8:b6:42:47:5e:19:d8:
b0:e0:11:71:9c:a9:bb:81:88:d0:8e:9c:15:48:9c:
b5:26:29:9f:75:02:48:48:72:60:df:42:01:31:98:
b2:91:1a:3c:c0:1e:17:a7:df:ec:50:93:f0:63:05:
bf:1c:3d:87:2d:24:08:57:b2:ed:de:48:96:91:cd:
44:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:EA:84:20:1B:E8:4C:8D:FD:B0:47:45:C8:0F:13:D2:46:2E:46:86
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/AOqEIBvoTI39sEdFyA8T0kYuRoY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:590::/48
Signature Algorithm: sha256WithRSAEncryption
44:b9:01:f1:c6:96:69:59:f5:15:1d:24:1d:f0:28:49:f4:e8:
b8:46:dd:8e:b3:1c:d5:3a:aa:2b:07:e7:9f:3d:dd:86:dd:ca:
ae:fe:e4:dc:19:4f:f5:d5:65:42:63:87:19:36:3a:9c:76:65:
62:3a:cf:87:f8:c7:4b:24:f3:ba:e7:45:33:fe:fa:b5:b7:e1:
02:e2:88:0a:25:15:ff:0c:d7:ef:65:1e:82:d2:70:20:15:a0:
fa:75:c1:95:d5:4a:7e:00:b6:2a:55:ff:8f:5d:2b:16:ab:ca:
94:5f:ed:d3:f7:db:d8:77:b8:b0:a8:61:cc:a9:e2:73:78:8d:
59:fd:4c:c0:d8:45:ad:b5:49:5a:af:94:09:d4:73:54:d9:7d:
ea:5d:e7:4f:2f:c6:2e:6f:40:88:7a:e2:84:21:66:ef:16:34:
eb:aa:79:4c:b9:67:e1:ac:7c:b1:c9:64:31:d4:24:f1:39:19:
e7:20:4e:13:de:13:88:84:1f:bd:c6:52:ab:a7:fe:ee:b1:7e:
c8:28:f6:b4:0c:78:4a:d3:2f:69:68:37:72:75:78:4c:c8:2b:
ce:7a:fa:54:3c:ae:8c:04:c6:6c:a2:49:ca:57:e1:0d:9b:0c:
ef:46:7f:21:4b:31:67:c9:94:f1:e2:67:d8:07:d3:d5:94:26:
58:ef:73:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:03 2023 by rpki-client on console-fra.rpki-client.org