Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/OPu5nZD_-H-K8EozJ6hNVsg1Xis.roa
File: OPu5nZD_-H-K8EozJ6hNVsg1Xis.roa (raw, json)
Hash identifier: 1Kb9lr2aGU7LBSW3ipjYivrkjGLiFoUSrk2iJzsTcx0=
Subject key identifier: 38:FB:B9:9D:90:FF:F8:7F:8A:F0:4A:33:27:A8:4D:56:C8:35:5E:2B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0854
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/OPu5nZD_-H-K8EozJ6hNVsg1Xis.roa
Signing time: Tue 29 Sep 2020 09:58:38 +0000
ROA not before: Tue 29 Sep 2020 09:58:38 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17714
IP address blocks: 203.78.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2132 (0x854)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:38 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=38FBB99D90FFF87F8AF04A3327A84D56C8355E2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:96:8a:84:1d:18:40:d0:0f:16:4a:9a:1c:f1:
af:81:8e:9e:1e:c1:9e:b1:5e:30:7b:6f:3b:b6:83:
ab:ad:41:e3:b8:1a:b0:57:53:8c:e4:c0:7f:e8:dd:
e4:d0:6a:bf:c3:89:6f:cf:9c:27:0f:8d:22:64:12:
63:0d:8a:b9:6b:03:3b:43:8e:7a:e7:02:69:78:37:
d6:3b:30:9c:a5:a1:a2:54:57:31:45:da:9f:b8:7e:
90:4c:bf:b0:3b:e9:ab:7d:ac:95:09:2e:97:81:ff:
e9:84:0e:7f:fa:86:56:e9:53:31:23:7a:bc:28:a8:
19:3b:d6:f7:dd:bc:90:7e:cc:1a:46:bb:7d:34:2f:
82:00:36:ca:af:37:0b:66:47:24:bd:7e:ad:b9:a0:
3e:3b:c9:3e:7b:ce:7d:64:a0:00:15:ac:21:a2:a3:
f0:11:05:e3:a0:78:92:57:f1:46:f6:83:7f:d8:4c:
69:53:b4:4f:3f:0b:3e:a3:38:3b:19:07:6b:24:17:
26:30:a2:62:4b:9f:11:2c:63:2a:49:83:27:fd:da:
ca:d4:0b:7e:ec:f7:72:bb:c8:3a:bd:6e:88:bb:93:
6c:af:d1:c9:15:af:26:d9:2a:de:10:68:36:96:03:
aa:51:28:6c:bc:ea:ea:be:1e:5f:b9:9c:da:3c:cb:
9a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:FB:B9:9D:90:FF:F8:7F:8A:F0:4A:33:27:A8:4D:56:C8:35:5E:2B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/OPu5nZD_-H-K8EozJ6hNVsg1Xis.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.78.180.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:1b:36:d7:52:d2:70:e1:3b:aa:03:68:65:c9:9a:6a:e5:73:
32:b5:53:15:7c:f8:c4:03:c2:f7:7c:2b:b3:8a:2f:eb:f0:78:
d3:fc:c9:6e:8b:33:1f:b1:89:f8:27:82:d9:5e:16:3e:04:b9:
8c:7a:37:25:d9:9c:e4:4f:d9:d1:09:f8:1a:3d:c9:f9:8c:52:
7e:89:77:d4:9f:62:e5:70:40:aa:ca:63:46:c3:9f:82:e0:c1:
66:04:22:c3:92:05:5d:96:33:87:01:c3:f2:60:aa:0b:e0:89:
ca:93:ac:60:bf:d8:0d:4e:d8:5b:b8:9a:07:2a:8f:91:f3:d2:
14:43:2e:f6:9c:be:80:be:55:b8:18:0d:97:c0:9d:31:1e:b3:
af:3a:e3:16:c7:4d:72:dc:1f:1b:b6:9f:07:2d:55:fb:ee:1e:
4c:69:1a:fb:7b:90:17:2f:a8:c3:75:47:ac:b9:3f:78:6c:34:
4c:89:08:cf:b4:30:d6:5b:35:52:8f:ff:d6:97:f3:0b:3e:c0:
8d:9a:47:b8:fd:5c:5a:75:9c:e9:d9:f3:e6:03:72:31:ee:96:
10:e8:dd:46:d0:42:2f:5b:78:dc:e5:cd:7a:7c:19:c6:79:e9:
7f:ea:57:3c:3c:1f:f6:3a:90:a3:67:e8:68:3f:a9:7d:10:2e:
45:fc:8f:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org