Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/PIchYm7sGCwvEimAJWWViKMEiIo.roa
File: PIchYm7sGCwvEimAJWWViKMEiIo.roa (raw, json)
Hash identifier: noLJdMueoiyrGtNuKAeFHw6EDSomiSBDFLqLh+aAM4s=
Subject key identifier: 3C:87:21:62:6E:EC:18:2C:2F:12:29:80:25:65:95:88:A3:04:88:8A
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AE1
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/PIchYm7sGCwvEimAJWWViKMEiIo.roa
Signing time: Sun 07 Feb 2021 11:39:30 +0000
ROA not before: Sun 07 Feb 2021 11:39:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9680
IP address blocks: 202.39.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2785 (0xae1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:39:30 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3C8721626EEC182C2F12298025659588A304888A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:01:a2:d6:46:23:25:6f:28:4c:98:17:66:c6:
16:c9:e7:d5:da:9b:d2:05:ca:04:3d:26:23:22:d0:
10:79:64:45:11:fc:e2:27:98:ac:68:67:43:9e:69:
e8:cf:b0:67:90:b0:1e:24:b7:75:8c:12:14:fb:fa:
62:2e:e7:b5:c3:dd:bd:fb:18:51:3d:0c:96:ce:a2:
5a:15:d5:fc:72:d3:ac:ee:a5:b3:bd:0d:02:43:ed:
74:e1:8e:ea:bf:d8:0c:b6:be:ff:17:3b:71:83:21:
1d:14:dd:a8:86:10:64:27:d5:8c:5a:f6:b3:15:74:
09:cd:74:35:ee:f0:55:48:e6:9f:62:7c:9b:1f:75:
00:61:78:8f:bb:ef:4b:ce:61:c8:5b:60:04:f6:95:
9c:46:7d:c5:c3:60:1e:53:da:3d:02:a7:da:d8:e0:
97:d4:ef:dd:69:b4:2d:03:7e:35:55:24:9c:b6:b1:
a3:b3:56:57:68:07:b9:86:87:01:f8:6c:01:93:85:
26:4b:38:92:9e:55:b7:b6:85:1f:f4:2f:0e:bd:a9:
b2:3d:4c:70:2c:aa:c2:65:de:18:36:ea:0e:8f:96:
a5:fa:d1:a2:ba:8c:56:56:00:99:3f:a2:a6:ac:f6:
28:71:74:50:02:22:85:43:69:e2:f5:08:bc:45:1a:
04:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:87:21:62:6E:EC:18:2C:2F:12:29:80:25:65:95:88:A3:04:88:8A
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/PIchYm7sGCwvEimAJWWViKMEiIo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.80.0/20
Signature Algorithm: sha256WithRSAEncryption
c9:77:b6:d2:cb:00:36:3f:86:32:29:19:08:47:b4:e1:3a:a0:
47:7d:b8:70:e3:74:aa:cc:c6:14:65:cd:19:d6:d1:a3:93:aa:
52:29:57:1a:fc:56:9c:2e:10:ae:8e:2b:f1:db:b5:88:a1:58:
f0:53:da:ac:82:94:83:83:f6:07:ee:1a:e2:eb:cb:d1:88:55:
b6:01:f8:c0:ae:a3:26:98:8b:88:f7:db:e8:52:62:c8:00:9a:
fe:ee:e8:ba:03:64:7f:fe:3d:e3:e6:e6:76:4b:cf:d2:61:3c:
59:f4:7b:d1:e0:a6:ce:f3:e8:ba:5e:10:31:62:30:84:42:91:
32:cd:7b:14:c2:b3:e3:31:94:b2:b4:ce:9c:4a:7c:d6:d9:1c:
01:9a:a0:c9:7e:b9:3d:7e:dd:a9:13:1a:ad:eb:a2:9e:42:77:
60:e1:90:65:47:37:ce:06:77:d8:ee:3e:00:2e:0a:f9:a4:4a:
82:2a:ac:63:36:ae:32:a2:cb:02:a4:55:4a:03:42:20:28:e3:
f0:2d:96:d5:cf:09:8b:e9:dd:58:c6:6b:3e:57:ee:5e:d2:34:
b9:4c:1b:3c:2c:db:c8:74:ff:ef:96:99:50:68:d0:d3:72:1b:
53:84:e4:4f:05:31:cf:73:6e:d3:10:eb:fb:de:61:1d:0f:1b:
8a:13:44:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:55 2023 by rpki-client on console-ams.rpki-client.org