Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/O5KeWeAk7fZXGnEAl24UlMw6t0E.roa
File: O5KeWeAk7fZXGnEAl24UlMw6t0E.roa (raw, json)
Hash identifier: DJMJMi7ScxGwPW28fbGbt+oPKJYzseQ+CjSiKFoRoSk=
Subject key identifier: 3B:92:9E:59:E0:24:ED:F6:57:1A:71:00:97:6E:14:94:CC:3A:B7:41
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C12
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/O5KeWeAk7fZXGnEAl24UlMw6t0E.roa
Signing time: Wed 29 Sep 2021 02:50:50 +0000
ROA not before: Wed 29 Sep 2021 02:50:50 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 122.120.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3090 (0xc12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:50 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=3B929E59E024EDF6571A7100976E1494CC3AB741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f7:44:6a:87:10:6a:82:d5:7b:ee:54:32:13:
46:dc:b2:f5:02:7e:ff:f4:39:51:2c:89:9e:95:f9:
45:fc:f5:d7:25:74:67:28:69:87:b1:34:bf:e0:71:
3b:17:81:1d:db:79:7b:6d:56:7b:ed:75:e3:8a:5d:
cf:d2:c1:85:59:4c:41:dd:3c:8f:d4:65:63:19:25:
15:e4:b9:7f:34:ca:42:36:c4:dc:b4:b2:39:2b:65:
b9:a8:21:31:ea:ed:ec:db:b8:9b:7b:f7:ec:cc:a0:
92:b7:7a:7e:2b:df:93:24:54:a1:05:2f:ad:65:dd:
3e:3e:2a:2f:ec:e1:96:f7:2c:ca:69:ff:90:9e:94:
d3:04:6f:21:d1:25:32:b7:17:ef:b6:03:58:06:04:
20:bb:49:85:0e:e8:f3:29:db:bf:1a:c5:0b:a0:59:
56:1e:89:41:98:34:df:de:de:19:7a:62:69:ea:c4:
38:10:3a:a3:e1:e8:d5:a0:03:85:1a:8f:4f:e5:0d:
73:cc:5e:d3:9f:0a:af:0c:98:4c:b8:af:f4:bb:3e:
b8:7e:db:c9:ff:54:fd:44:76:4b:60:00:53:a1:00:
07:6c:d3:8d:98:2b:35:2d:3c:4e:0e:b2:5b:cf:24:
0a:41:01:4d:ab:b5:45:14:fc:17:40:28:48:26:29:
31:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:92:9E:59:E0:24:ED:F6:57:1A:71:00:97:6E:14:94:CC:3A:B7:41
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/O5KeWeAk7fZXGnEAl24UlMw6t0E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.120.0.0/13
Signature Algorithm: sha256WithRSAEncryption
86:06:2e:d7:26:9a:8a:90:68:fe:a0:94:07:9e:39:2f:d1:03:
c4:a0:c4:87:20:4b:c1:a1:7e:fc:7e:21:3f:a3:54:d6:ab:29:
9a:45:b0:70:e9:77:ec:f3:c3:1e:4b:d5:00:9e:18:71:37:5c:
b9:a1:20:67:26:5d:05:05:97:7b:af:9f:f8:81:ae:c6:b6:69:
86:9f:24:c3:06:b6:81:5c:f2:dc:f2:f2:c1:55:20:90:6a:97:
af:57:a9:a4:ab:f5:ad:d0:91:58:50:e5:e9:20:64:5a:73:d6:
b9:39:80:3a:aa:6f:7a:c1:93:75:b5:f3:52:1d:40:15:3d:28:
c0:53:e4:01:dd:b3:e4:47:26:30:de:1f:94:3e:96:97:39:13:
74:ec:87:98:ac:73:68:47:a3:09:30:48:12:11:62:12:67:dc:
44:62:3d:bd:f7:97:d6:a3:55:e0:cd:eb:2c:71:e8:54:df:95:
e8:d5:f9:6e:26:b3:43:ea:ca:10:e0:d9:3e:f3:66:36:91:f5:
bd:60:b7:e9:0c:90:7d:c6:cd:fa:fe:5a:3a:91:e6:02:30:42:
26:ba:b4:d2:f1:b4:7b:c0:4f:f3:6e:91:6f:01:ff:cf:b7:0a:
23:56:3e:0e:be:98:95:fc:3e:0b:35:1e:43:e4:fc:39:e5:b1:
68:0d:44:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org