Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/BW6tq78NeZ4W7AKEE0BeGqRoFHM.roa
File: BW6tq78NeZ4W7AKEE0BeGqRoFHM.roa (raw, json)
Hash identifier: 6I/S40jYkuAmZDsKl6F4TtRnwHiiE83yNM+aw2khXkA=
Subject key identifier: 05:6E:AD:AB:BF:0D:79:9E:16:EC:02:84:13:40:5E:1A:A4:68:14:73
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/BW6tq78NeZ4W7AKEE0BeGqRoFHM.roa
Signing time: Thu 15 Sep 2022 02:48:35 +0000
ROA not before: Thu 15 Sep 2022 02:48:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 54994
IP address blocks: 203.74.117.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=056EADABBF0D799E16EC028413405E1AA4681473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:61:d4:2c:76:28:07:cd:78:bb:4c:4a:d3:44:
58:d2:04:fb:7f:4c:3b:89:2b:63:4c:6e:e4:41:45:
f5:c7:a5:f8:ad:e9:0c:f5:77:47:7e:4d:fc:a0:9d:
16:0d:c8:c3:9e:8f:c6:2d:33:53:54:82:29:86:82:
92:b9:b2:c8:bf:f9:c8:53:98:54:1c:54:50:eb:21:
53:1c:fb:85:df:59:33:0a:8d:1b:db:28:f3:62:89:
8c:cb:c2:10:a8:5e:36:23:2a:9b:2b:77:64:34:1b:
9f:40:7f:98:6e:4f:8f:2a:ae:60:38:40:aa:2f:cb:
88:39:ba:ab:13:39:73:eb:63:8e:33:25:80:d9:b5:
ea:70:ea:ba:64:7c:d6:da:a1:4c:98:03:13:2a:30:
ce:40:c5:76:24:fe:0c:93:89:ab:d2:05:bd:60:15:
04:f2:b8:73:3b:1c:f9:01:59:ff:f6:20:08:f4:46:
db:97:d4:0b:9d:c5:48:8c:ab:92:fb:6f:2d:73:43:
dc:26:01:97:c5:ec:f1:a3:1d:6b:b5:0c:34:e8:54:
de:13:e8:b7:e8:22:f0:f5:fc:28:1f:58:8b:56:fb:
f0:0d:88:e0:9a:dc:81:99:b0:e7:00:7b:f2:55:bf:
a5:a0:c7:96:23:ec:5f:da:44:04:5a:2d:48:a9:3b:
c6:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:6E:AD:AB:BF:0D:79:9E:16:EC:02:84:13:40:5E:1A:A4:68:14:73
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/BW6tq78NeZ4W7AKEE0BeGqRoFHM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.117.0/25
Signature Algorithm: sha256WithRSAEncryption
28:19:b4:0a:6f:c3:75:2c:11:8d:72:c5:c5:1a:23:61:32:a7:
5a:01:19:e8:47:5f:d8:71:03:3d:a2:1d:f5:fc:cf:ba:72:58:
29:63:52:13:96:57:2d:ce:77:e9:2a:8e:56:1b:93:5a:dc:14:
ec:bd:10:16:98:48:c3:84:9a:ea:87:78:6b:a5:3a:eb:f6:d2:
73:a6:f1:d0:4d:3e:cc:b0:2d:51:d2:3d:b9:91:68:21:89:4d:
ec:3f:81:3b:41:20:ef:8e:36:fd:e7:68:ba:35:65:ea:86:f2:
0d:cb:eb:8a:b2:06:e3:d3:ad:cc:4b:30:6d:e2:82:a1:de:f9:
f2:84:55:0c:28:61:dc:5d:2a:5e:16:f4:12:50:b0:e6:37:b2:
ae:04:ee:5c:7f:1e:1f:69:e5:aa:9e:ee:4b:5e:dd:c6:4d:e9:
6b:37:b7:6b:b2:f3:3b:96:ff:3f:33:8e:b2:32:9b:e7:34:09:
22:76:ca:04:9b:20:73:2b:64:ff:0c:6e:93:bc:c9:b9:e0:d3:
15:ec:d3:d5:78:23:02:ff:ed:15:6b:21:17:cc:e5:28:37:d8:
f8:74:0e:4f:c1:51:2b:55:b3:7e:4d:4f:1b:86:45:60:6d:55:
30:4f:36:5f:0c:c5:8c:5c:be:bd:35:2d:e0:ec:1a:43:f4:a1:
d6:f2:26:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org