Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/G-xY4dLkd-UpjrvVFk45y-soYYA.roa
File: G-xY4dLkd-UpjrvVFk45y-soYYA.roa (raw, json)
Hash identifier: 1D7NbdjBLBFEillzPdqZzeE4+/ikznTCyJVKky8pOyM=
Subject key identifier: 1B:EC:58:E1:D2:E4:77:E5:29:8E:BB:D5:16:4E:39:CB:EB:28:61:80
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0BEA
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/G-xY4dLkd-UpjrvVFk45y-soYYA.roa
Signing time: Wed 29 Sep 2021 02:50:40 +0000
ROA not before: Wed 29 Sep 2021 02:50:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17421
IP address blocks: 2001:b400::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3050 (0xbea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:40 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1BEC58E1D2E477E5298EBBD5164E39CBEB286180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:17:cc:36:5a:f0:7b:b9:1e:ad:43:7b:c1:f5:
a7:59:f6:a5:82:37:6d:7a:78:ad:47:51:84:df:f8:
34:22:0c:fb:8f:77:23:2f:d3:3f:bd:b6:f6:90:0d:
81:4f:d5:e8:92:d7:1d:c6:8b:8e:22:7d:d1:3d:9c:
e8:b8:ca:98:58:48:92:3e:48:3b:df:08:53:7f:3b:
91:41:d9:72:cd:29:83:49:de:e9:e9:0f:8e:01:1f:
2f:74:7a:34:43:50:1d:d2:55:46:4b:2d:35:6e:52:
ec:13:a4:38:4e:a6:d1:74:ee:79:79:b9:f6:46:c5:
ee:ca:5e:3a:8d:69:ba:4a:c2:06:f8:ac:ec:5f:72:
aa:9f:b7:23:e6:f5:ed:f7:8d:10:99:35:96:df:f3:
43:91:63:da:a8:8a:8c:4a:f4:d3:60:98:16:8d:a5:
e4:40:9e:9a:e1:09:7c:89:ce:45:19:41:f2:ea:10:
f9:dc:0a:c5:e5:3c:a9:99:3c:c9:d6:bc:05:ae:d9:
cc:e6:34:95:6e:e7:dc:d1:f4:07:ba:c0:74:97:ed:
ef:a0:d5:07:7c:4c:66:22:16:cc:9f:13:7f:4f:eb:
60:0b:c7:03:f1:65:6a:70:42:cc:8b:b8:c1:c3:a4:
b5:90:c2:4d:53:a4:51:fe:d4:ba:14:f1:52:1a:00:
cd:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:EC:58:E1:D2:E4:77:E5:29:8E:BB:D5:16:4E:39:CB:EB:28:61:80
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/G-xY4dLkd-UpjrvVFk45y-soYYA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b400::/32
Signature Algorithm: sha256WithRSAEncryption
0a:f2:28:83:4e:d5:22:d0:68:c9:db:c7:4e:58:b1:c2:35:64:
53:72:f1:33:16:a4:12:ee:3e:9b:77:b0:e9:13:ac:37:51:4c:
bb:5d:99:be:c4:77:64:e3:f4:ab:e2:71:24:4c:ff:92:52:07:
5c:46:ec:c3:e0:90:14:f8:cf:7b:1f:a6:5c:64:f3:38:cd:fa:
84:c6:db:77:30:15:bc:0f:72:03:29:62:59:b3:2f:d3:e1:3a:
ae:66:f9:0d:19:05:31:aa:55:d0:50:0f:72:37:61:5b:4d:fb:
33:de:28:02:94:e6:9a:3c:9c:57:97:0e:b4:78:de:02:b6:f2:
5b:48:db:1a:fa:fb:13:92:a1:77:bc:e6:ee:9a:cd:8b:95:3f:
db:83:2a:00:6b:6d:a3:78:02:32:c1:d5:3d:3f:e3:93:67:cd:
c9:9a:46:2a:91:f3:06:a4:92:d2:bd:37:53:cc:14:cf:29:7a:
aa:8c:7d:1f:ec:82:8d:45:2a:7c:e5:ea:c3:1e:fb:c9:ba:ca:
81:d9:a5:f3:3f:75:ee:dd:41:c9:b0:28:ee:3f:91:c6:14:55:
6a:e6:92:3a:a9:39:6d:95:b5:9e:32:29:91:b0:35:76:e9:2b:
c7:b7:7f:5e:0a:85:14:07:31:d8:0f:75:a6:8e:65:69:bd:91:
78:34:94:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org