Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/KpMrKELBwHzbUHOq0Fyij0LBqOc.roa
File: KpMrKELBwHzbUHOq0Fyij0LBqOc.roa (raw, json)
Hash identifier: IDduLe2lJG05csj78C0gqbWiJWAyNm1ErXW094SfD3o=
Subject key identifier: 2A:93:2B:28:42:C1:C0:7C:DB:50:73:AA:D0:5C:A2:8F:42:C1:A8:E7
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0856
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/KpMrKELBwHzbUHOq0Fyij0LBqOc.roa
Signing time: Tue 29 Sep 2020 09:58:38 +0000
ROA not before: Tue 29 Sep 2020 09:58:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 2001:b400:e9f0::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2134 (0x856)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:38 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2A932B2842C1C07CDB5073AAD05CA28F42C1A8E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:fc:7c:f6:06:6b:7e:33:d1:bb:79:93:37:d7:
b7:be:dc:bb:24:aa:54:4d:05:d9:80:68:1e:27:df:
5e:73:a4:70:42:ff:93:a5:a3:74:0c:d5:83:de:b8:
70:21:8d:31:09:2d:7d:62:df:14:f7:cb:c9:ab:2e:
6d:f1:cd:45:09:6d:96:c7:0e:29:6c:cf:8c:a0:90:
b6:b2:23:e4:a1:54:3c:92:bd:b7:de:21:b6:c5:65:
ae:8f:4a:70:bd:9b:61:ce:23:a7:39:48:c7:bb:95:
cb:ab:45:bb:8f:fb:9f:5b:55:bf:1f:f2:bd:fb:74:
2e:f3:ff:3a:29:e6:12:39:69:33:67:1c:59:9c:06:
8f:87:95:4c:44:21:26:75:69:4b:a2:22:df:79:07:
e2:9f:39:f8:95:34:ac:f0:e3:d2:1d:64:49:a0:d2:
24:c7:5e:76:1c:1a:3f:22:92:18:f3:81:78:15:6d:
03:95:6e:f2:33:06:88:7d:30:4d:82:66:b1:b5:f3:
0b:4e:39:96:8f:03:e9:11:1e:73:5e:73:8d:af:5c:
6f:73:b4:9d:a3:25:e5:69:73:67:62:02:aa:7c:b9:
21:0f:e0:3e:ed:7a:a7:82:b6:82:5c:6c:d1:e2:6b:
9e:65:e8:5b:d2:d8:c0:9c:72:99:88:a0:21:45:ee:
f5:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:93:2B:28:42:C1:C0:7C:DB:50:73:AA:D0:5C:A2:8F:42:C1:A8:E7
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/KpMrKELBwHzbUHOq0Fyij0LBqOc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b400:e9f0::/44
Signature Algorithm: sha256WithRSAEncryption
64:e1:42:5d:7a:8e:f6:4c:70:75:db:7f:d5:26:1b:ad:c8:3d:
78:49:3e:8f:f8:cd:26:dd:d6:41:19:08:7d:79:31:62:44:72:
3f:4b:51:f2:96:12:e2:58:c0:e3:be:74:86:d2:53:d3:fc:9d:
d2:0f:8b:46:b9:c1:9d:9a:9f:5a:a7:db:d4:51:17:52:76:37:
12:02:42:71:c0:49:fb:ae:77:14:f7:37:e1:b6:4e:f6:77:d1:
23:f9:1d:03:76:86:54:10:ad:4a:5b:d1:72:f8:16:e1:e2:c3:
cc:6f:e8:b7:e7:30:1a:2f:24:76:79:01:ed:a3:02:81:0c:f4:
b9:98:56:35:c8:05:52:d4:6a:6d:41:42:3b:1a:69:63:cb:a7:
d6:85:6c:5c:d4:4f:0d:cb:8e:d7:ab:a6:59:f7:c2:14:cf:4b:
37:14:96:10:6e:d4:15:58:78:75:5a:d8:a2:b2:6e:1d:15:2e:
d8:d3:66:1a:0b:eb:25:48:32:da:86:1c:3c:24:9b:ce:09:0c:
36:09:95:55:4d:29:e9:14:51:fb:dd:81:9f:42:d1:ca:cb:5a:
be:d4:5f:5b:79:6d:94:1f:e0:91:ad:bb:74:02:be:3b:19:d4:
ac:98:15:b0:92:4f:72:28:0b:90:ed:c9:a5:20:13:f1:2b:e3:
07:62:8f:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org