Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/M7gtwecN-8Y908P1B3st0kgePUQ.roa
File: M7gtwecN-8Y908P1B3st0kgePUQ.roa (raw, json)
Hash identifier: 0MtbpgTRnPd0fPob9U0t7pyK51aRLLmmpoIc7+DyV74=
Subject key identifier: 33:B8:2D:C1:E7:0D:FB:C6:3D:D3:C3:F5:07:7B:2D:D2:48:1E:3D:44
Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Certificate serial: 0B2C
Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/M7gtwecN-8Y908P1B3st0kgePUQ.roa
Signing time: Thu 15 Sep 2022 02:47:58 +0000
ROA not before: Thu 15 Sep 2022 02:47:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 168.95.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2860 (0xb2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Validity
Not Before: Sep 15 02:47:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=33B82DC1E70DFBC63DD3C3F5077B2DD2481E3D44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:09:8b:d6:34:37:4d:59:0f:97:05:b8:fb:8c:
c7:4a:1e:31:6c:ec:4d:9a:a4:51:de:b8:1a:86:0c:
41:7a:61:11:f3:c6:bb:5e:9c:17:10:5d:b1:ed:c3:
00:49:94:2c:e9:38:9e:e1:9d:7b:80:81:7c:b5:2b:
2e:85:18:fb:b5:5c:b2:27:f4:ed:62:b0:4d:18:18:
61:0a:a1:33:6d:95:92:e0:05:63:57:90:73:3f:c9:
bf:30:7b:49:69:19:88:77:1e:c3:b1:a3:18:b2:e0:
b0:7d:ae:99:9e:c4:d3:57:1c:66:d5:a3:84:61:79:
7f:e3:5a:9b:49:f4:df:c7:5a:79:44:25:58:21:c3:
c0:2b:68:54:8b:66:c2:73:a1:64:86:46:e1:de:cd:
c8:13:a2:ee:50:9c:7b:75:90:1d:ed:1e:c3:a2:65:
0b:fd:43:80:fe:21:9f:ff:44:d6:e2:2d:bc:74:f9:
3f:f6:0d:04:bb:b9:24:d3:bd:a8:39:8e:43:d8:48:
72:04:df:5b:60:92:eb:aa:e5:4c:69:9d:15:78:9d:
f7:d5:77:29:13:ed:02:aa:e5:ff:6d:a3:99:37:52:
4b:f3:c6:fe:d8:20:69:54:ee:34:52:df:0e:e6:bb:
49:3a:c6:66:42:95:1e:b5:2a:fd:a5:65:9b:48:0f:
33:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B8:2D:C1:E7:0D:FB:C6:3D:D3:C3:F5:07:7B:2D:D2:48:1E:3D:44
X509v3 Authority Key Identifier:
keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/M7gtwecN-8Y908P1B3st0kgePUQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
168.95.0.0/16
Signature Algorithm: sha256WithRSAEncryption
70:e7:3f:8b:42:7f:10:6c:e6:1a:bf:7f:a1:88:e0:27:ae:52:
ff:90:0b:e7:d2:9f:2e:80:f5:45:88:c4:69:89:ea:8b:8b:2d:
de:cb:4b:98:fc:9b:04:9d:99:c7:6a:f9:d6:b7:97:0d:84:cc:
dc:cc:ec:86:96:e9:ee:ab:9d:16:6e:ac:1e:39:23:46:cc:1e:
8b:a9:15:cd:14:39:c1:d0:62:98:f3:bc:f7:a1:9d:f6:0d:eb:
25:cd:00:2b:58:6e:c1:f5:5a:f5:84:66:9a:1a:75:2e:57:eb:
bd:7d:a7:33:12:08:82:b8:43:05:35:3f:ff:db:d4:7e:42:99:
7d:fc:d8:cb:17:1f:59:0f:f0:83:0a:bd:56:59:ff:03:3a:4e:
bc:e2:94:e9:87:2e:01:03:85:5e:b6:ee:ee:af:b1:5c:4a:85:
0a:7c:96:82:0b:00:0a:5f:66:95:0a:3f:70:60:b2:ab:07:7a:
b0:93:e3:60:ed:fc:19:ed:f2:74:6e:eb:31:85:11:6b:00:d9:
cd:b2:ef:a9:d2:6c:6a:9e:ef:c8:d5:6a:de:5a:9f:c9:51:5f:
10:29:c4:80:1d:ff:6f:00:00:9e:30:ef:6a:2c:5a:3c:25:ac:
04:f7:a5:7a:48:8f:cb:49:86:6b:0a:39:19:e1:83:5f:c3:3f:
e8:cb:b9:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org