Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/R7dke2lI5-H0dxAaLDQKhfbTfUo.roa
File: R7dke2lI5-H0dxAaLDQKhfbTfUo.roa (raw, json)
Hash identifier: vS/jUshMzrIP3Hgk2vtof1XCoapyAqx8ih7HBZiRROs=
Subject key identifier: 47:B7:64:7B:69:48:E7:E1:F4:77:10:1A:2C:34:0A:85:F6:D3:7D:4A
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C34
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/R7dke2lI5-H0dxAaLDQKhfbTfUo.roa
Signing time: Wed 29 Sep 2021 02:51:00 +0000
ROA not before: Wed 29 Sep 2021 02:51:00 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 43.255.92.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3124 (0xc34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:00 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=47B7647B6948E7E1F477101A2C340A85F6D37D4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:79:44:b8:13:21:d0:42:8b:b0:f1:34:86:0c:
fb:98:87:9e:62:c8:d3:72:72:47:dd:a3:c3:88:42:
10:58:cb:dd:10:65:1f:fb:a5:c0:52:3a:68:4d:d6:
ce:e6:55:e8:d9:0e:e1:e6:3c:7d:53:79:60:93:b2:
24:8d:a8:95:7d:80:fa:00:e4:60:45:ed:a5:85:01:
ef:15:b7:b8:93:cd:0d:45:04:8e:90:b0:31:bf:16:
f6:9b:5d:e4:93:57:29:e0:82:91:8d:ca:54:c1:76:
eb:4a:39:03:6c:98:2c:3c:08:35:b6:61:73:d4:f0:
cf:13:85:ad:69:63:02:26:d1:24:57:fd:3e:24:cd:
f5:e0:53:ac:6c:46:72:38:fa:d6:00:56:d9:d5:6e:
c6:ed:e3:46:73:85:a1:a4:4b:cc:56:41:35:17:bf:
33:28:d4:e9:97:35:3f:d8:1c:18:6b:86:3d:2d:49:
11:7a:62:6b:7d:a8:4e:b6:9e:41:54:14:3e:46:f1:
81:21:55:a3:14:5e:8d:a2:6b:bd:a7:7d:21:d9:05:
47:59:2d:0d:47:96:49:80:fa:c2:de:4f:01:11:24:
09:79:95:50:25:49:78:fb:8d:60:f2:94:01:70:63:
27:45:33:99:d1:d3:db:9c:f0:9c:b3:00:52:c9:b4:
5b:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:B7:64:7B:69:48:E7:E1:F4:77:10:1A:2C:34:0A:85:F6:D3:7D:4A
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/R7dke2lI5-H0dxAaLDQKhfbTfUo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.255.92.0/22
Signature Algorithm: sha256WithRSAEncryption
76:95:e9:86:2e:8f:66:97:5e:56:70:2d:af:50:e3:53:5a:fb:
fd:53:1b:22:39:3f:49:e9:c6:92:7c:7b:6d:fb:ed:00:26:e1:
67:ea:1d:c6:6d:a1:8a:c6:9e:cc:b4:99:2a:0f:bb:b4:e8:7e:
c0:0c:84:7a:d4:a0:27:38:b5:bd:7c:72:28:fd:17:b2:77:15:
30:82:10:d4:6f:ca:1a:8c:96:77:4f:98:0f:01:1b:27:23:c9:
32:f2:96:7f:78:fb:bc:40:ff:8c:36:4e:ad:e8:6d:00:76:ff:
78:b6:7e:04:c9:b6:eb:75:91:60:41:b7:26:31:53:05:c1:8a:
55:76:1b:4a:09:29:a3:0f:0f:f1:a6:3f:b0:8b:95:77:95:6e:
64:d8:75:7f:f3:26:9a:cd:31:f8:db:66:96:05:a6:dd:7f:e9:
b5:c2:d2:0c:f9:7d:0e:7d:cc:6b:18:83:23:2f:37:78:4d:b1:
89:61:07:a9:d3:aa:66:15:62:01:c1:b8:db:fb:dd:75:0a:ec:
17:8a:df:37:df:04:98:24:46:85:3d:e2:46:0b:9b:8c:17:e0:
ef:e2:00:41:f9:8f:a8:3c:57:25:66:5b:ef:70:17:4a:0e:db:
9b:49:b6:68:30:a1:07:77:42:c5:d6:87:90:fd:65:d0:a9:a7:
a9:7c:e1:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org