Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/DbQOpsGr8kgZMWhy0EQrZkxeIaI.roa
File: DbQOpsGr8kgZMWhy0EQrZkxeIaI.roa (raw, json)
Hash identifier: oI9eEwICUwl0gUwVVAAfW1nrR/4EhkI8ozjvRhgQ1Eg=
Subject key identifier: 0D:B4:0E:A6:C1:AB:F2:48:19:31:68:72:D0:44:2B:66:4C:5E:21:A2
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C15
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/DbQOpsGr8kgZMWhy0EQrZkxeIaI.roa
Signing time: Wed 29 Sep 2021 02:50:51 +0000
ROA not before: Wed 29 Sep 2021 02:50:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 202.39.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3093 (0xc15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0DB40EA6C1ABF24819316872D0442B664C5E21A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:08:84:8d:92:27:1a:53:fd:ee:09:f4:04:4d:
a4:7b:3c:49:52:5e:99:e0:2c:ae:3a:39:5c:58:0c:
e7:7d:03:4b:d0:9e:d6:ce:9d:1d:f3:8a:61:59:8b:
34:08:db:d5:42:8f:d5:bd:47:64:67:79:1a:a2:87:
27:ac:59:63:a1:06:c8:eb:91:33:7a:ef:46:f0:03:
9a:3c:e8:15:f4:8c:59:3c:e8:c7:8a:64:bc:19:14:
aa:23:af:86:c8:aa:2e:f4:5c:a0:ad:e2:bd:48:02:
63:58:53:07:83:07:cd:35:a0:11:24:d8:f7:4c:55:
e1:79:20:60:57:4c:a0:56:e2:a7:e6:b9:6a:bd:d8:
7c:e2:c2:a2:16:bf:df:df:cf:a8:81:27:98:16:26:
a4:30:ee:1f:80:48:36:25:ec:60:86:cf:4c:38:fc:
d6:c6:db:c2:ad:84:47:65:24:52:3e:5d:e6:28:18:
ad:f9:32:55:c5:61:a0:a5:7c:63:6e:83:0b:00:58:
a2:7d:66:e4:3d:21:23:ac:5c:3d:1c:1b:fe:46:26:
da:ae:41:ac:d9:76:19:4e:b1:df:08:0a:6e:b2:28:
0a:dc:39:84:6f:d3:b6:2d:4e:d3:5f:07:a9:6d:7e:
b0:b3:eb:da:ec:70:de:b1:58:ad:81:49:47:6b:bd:
70:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:B4:0E:A6:C1:AB:F2:48:19:31:68:72:D0:44:2B:66:4C:5E:21:A2
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/DbQOpsGr8kgZMWhy0EQrZkxeIaI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.0.0/18
Signature Algorithm: sha256WithRSAEncryption
79:73:0a:72:cf:f9:ae:a7:26:6d:4f:26:9a:f0:ff:12:eb:21:
2e:79:39:60:5b:c9:dc:4a:3e:f2:fb:3a:2b:55:e5:73:ea:b0:
34:6d:dd:5f:95:00:f7:61:64:92:64:b5:e6:e8:68:2f:74:f5:
27:4b:74:82:8d:b4:68:d7:56:65:6b:22:4c:d4:af:ef:4a:80:
d6:1b:e9:cc:c3:46:e5:36:92:c5:fa:b0:33:41:ec:cb:ce:bb:
fe:6d:1d:58:f1:b5:85:90:a1:a5:ba:e9:bb:78:a5:c0:31:ba:
c9:d3:05:4f:ca:53:69:07:b1:f2:b1:96:72:6e:8c:a2:e5:36:
5c:44:16:ad:91:a8:68:18:de:01:f0:7e:ad:08:c1:ae:c9:ad:
ff:9d:14:4e:dd:f1:b0:9f:01:7a:a5:6e:8c:b1:3e:91:1a:9a:
54:c2:9d:59:3c:46:94:3b:be:9b:5d:e4:6d:5f:d8:77:cb:fe:
32:9a:a5:2c:8d:de:44:66:26:69:2d:3f:07:5f:c9:b3:20:ee:
39:50:9a:1a:b6:12:d6:7b:f7:c5:bc:96:35:e2:ad:c9:09:90:
d6:d5:52:72:f8:29:45:2f:1b:87:19:a3:e8:10:62:d9:bd:b3:
bc:86:66:59:37:fd:72:5a:26:66:ce:a2:c5:c9:dc:de:7d:cc:
e6:02:d0:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org