Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/CLhvvX4pnAh07JBp8kkhdpAgOOw.roa
File: CLhvvX4pnAh07JBp8kkhdpAgOOw.roa (raw, json)
Hash identifier: JgCx0m1HwAopnSTyB7HUDAIDgrdS+8NVCgHlQZIGFrs=
Subject key identifier: 08:B8:6F:BD:7E:29:9C:08:74:EC:90:69:F2:49:21:76:90:20:38:EC
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C75
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/CLhvvX4pnAh07JBp8kkhdpAgOOw.roa
Signing time: Wed 29 Sep 2021 02:51:17 +0000
ROA not before: Wed 29 Sep 2021 02:51:17 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131661
IP address blocks: 210.62.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3189 (0xc75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:17 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=08B86FBD7E299C0874EC9069F2492176902038EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:77:78:a7:1d:6d:fa:64:b0:ac:29:8c:55:6a:
17:35:ca:2d:18:1d:e1:f9:50:ad:ec:e5:d9:ab:6f:
71:5c:58:4d:36:17:8c:2e:58:8b:ed:1b:a2:00:cf:
a6:12:6c:6e:47:95:50:54:cb:59:4c:9f:35:48:b7:
ae:85:7b:f4:df:fe:21:4b:8a:0d:c9:7c:5d:b2:75:
70:dd:09:cf:72:e3:1e:0c:5e:d3:7d:5c:10:de:8a:
f5:7d:ff:fd:b6:8f:02:69:28:62:c2:25:26:0b:c6:
8e:2e:8b:21:64:6f:89:c5:3d:dd:b3:ee:f1:d4:4a:
ef:4f:78:62:cf:0a:ef:71:36:81:00:99:ee:1b:fc:
63:73:76:9a:e9:74:a9:9a:fe:d0:7f:4b:88:51:75:
c6:ca:9a:2c:29:60:97:7a:67:25:3b:a7:c1:52:cf:
ad:9b:63:c3:14:93:04:4b:2e:10:8c:4f:5e:9b:61:
61:f7:0e:e3:b8:ba:79:80:07:28:34:04:36:45:b1:
2c:33:f5:47:bb:b8:c9:6f:33:c6:bf:68:dc:b6:b6:
03:4c:dc:7c:b5:09:84:9f:da:09:b5:09:d3:1d:79:
57:06:7f:8f:9d:1f:08:f1:84:2b:fa:8c:9b:2b:94:
d4:7c:85:15:f0:ab:de:4c:1d:88:ff:a9:de:7f:33:
6d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:B8:6F:BD:7E:29:9C:08:74:EC:90:69:F2:49:21:76:90:20:38:EC
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/CLhvvX4pnAh07JBp8kkhdpAgOOw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.250.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:95:27:58:81:54:8e:ea:45:49:22:4b:cf:f4:f2:21:ec:23:
96:b6:ff:a1:27:cf:4e:68:68:c4:5e:a2:88:b2:51:d2:ee:74:
44:da:35:35:c8:1a:8b:8c:84:5c:2c:2d:fe:73:69:57:f0:e1:
cf:bf:f8:53:5f:89:3c:49:99:73:6d:9e:aa:a2:a0:63:a4:3c:
0f:d8:19:6f:72:c4:e9:24:5d:86:9e:24:01:ba:e9:f0:6f:c5:
c2:b1:cf:6c:ca:42:51:42:2e:e4:09:a7:e2:71:0c:51:cd:20:
ce:ac:c8:8f:ca:e8:bd:62:cc:3c:28:5a:18:99:52:e9:7f:0e:
a9:c5:80:dd:1d:c6:26:32:51:36:0c:31:4a:7e:b2:2e:a3:68:
91:f3:71:d7:05:9e:fe:fc:93:bc:0d:29:0d:06:b9:5f:ce:9e:
48:f7:ea:a7:a8:e2:86:b6:67:28:26:06:f3:b7:52:d8:ca:0a:
ea:49:bf:bd:8a:18:69:09:4d:b9:32:7b:97:e7:82:c8:02:26:
5a:2d:0c:e7:e7:63:65:51:fb:f7:42:8c:8f:2f:79:4c:c5:09:
f0:0a:e9:f1:e9:5b:1b:9b:94:f2:2f:d3:e9:6b:7b:70:99:34:
7f:e2:a4:e9:44:00:da:22:9c:e2:6c:d4:f2:30:0b:54:be:f4:
bd:d6:67:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:03 2023 by rpki-client on console-fra.rpki-client.org