Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/RtA-2eLeg_xpNmGq0D5uOuTOILA.roa
File: RtA-2eLeg_xpNmGq0D5uOuTOILA.roa (raw, json)
Hash identifier: WIDzV8zE/q5CupeysaH/HJqgZ2kDSBtG/CBEzZXQwI0=
Subject key identifier: 46:D0:3E:D9:E2:DE:83:FC:69:36:61:AA:D0:3E:6E:3A:E4:CE:20:B0
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/RtA-2eLeg_xpNmGq0D5uOuTOILA.roa
Signing time: Thu 15 Sep 2022 02:48:21 +0000
ROA not before: Thu 15 Sep 2022 02:48:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131621
IP address blocks: 2001:b032:103::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=46D03ED9E2DE83FC693661AAD03E6E3AE4CE20B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e6:79:49:ec:6b:3e:6c:b4:8a:3d:ae:ea:0b:
a1:d7:11:99:39:ee:6c:e4:da:56:a4:85:6d:23:4e:
99:ce:14:f9:f6:f4:90:26:8e:34:bf:6b:75:67:20:
27:62:46:1e:66:22:66:a2:b1:48:90:5c:1e:7b:f3:
b8:1d:7a:99:58:d7:fd:f0:e7:dc:52:eb:f1:64:66:
b1:55:50:e5:46:75:ef:91:be:47:4d:ca:91:85:e4:
bd:0e:7d:fd:8a:0e:b2:2a:b9:18:ee:c9:4e:05:c8:
d6:fb:dd:e6:cf:9b:3e:8b:42:b8:6a:7d:4c:70:fd:
5d:1e:df:9c:5e:d2:52:e9:0f:d6:f9:3a:c4:2e:d8:
d0:56:e7:c5:bb:82:c6:bf:e4:7b:36:d5:bf:19:d8:
da:39:d7:3d:83:25:c9:14:0f:ae:3d:7c:5b:9c:6f:
35:14:83:ce:c2:df:dc:3c:80:6f:f4:b3:60:09:94:
4e:56:c3:0c:c5:43:21:fd:a9:0d:5a:c3:2c:16:a9:
85:d5:a2:7d:80:48:71:09:2c:69:08:81:6a:52:f1:
0c:b3:e6:b4:40:d0:80:06:07:e1:3e:61:30:ee:f6:
db:6e:82:d4:b8:3a:b8:b1:dd:de:8e:2f:04:a7:9e:
f8:1e:0f:93:6a:9a:3e:ce:3a:30:f6:04:11:44:a4:
4a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:D0:3E:D9:E2:DE:83:FC:69:36:61:AA:D0:3E:6E:3A:E4:CE:20:B0
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/RtA-2eLeg_xpNmGq0D5uOuTOILA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b032:103::/48
Signature Algorithm: sha256WithRSAEncryption
7b:fc:38:ba:56:2a:32:67:45:cf:40:01:25:9b:fb:18:59:76:
2c:22:b3:11:c5:b7:30:8f:4b:c0:f1:31:25:d8:6a:e0:9e:c7:
af:61:ab:10:db:23:6a:ac:d2:f7:7c:2d:0d:d0:e3:01:54:0b:
c5:25:20:c5:b7:4d:34:04:2e:3e:c2:4b:11:33:05:de:91:c6:
80:6e:82:0a:f4:ad:12:44:b7:9a:ac:f7:b9:35:e7:ad:c4:8b:
11:33:92:71:68:b5:8b:20:cf:21:bb:2e:60:75:ee:f1:74:8a:
63:d9:05:a3:09:bf:80:d1:5f:fe:c5:86:47:37:e8:5f:f1:f0:
d3:53:b5:a7:08:25:0c:1a:e1:02:76:76:9c:55:cb:c1:29:f3:
de:40:c2:3f:1e:51:53:74:46:a5:ea:c3:ee:68:d2:f8:e6:d8:
bd:e4:5e:fa:6e:b8:69:ed:8f:34:88:3e:46:e5:cb:ab:09:01:
09:eb:e9:34:29:ba:77:62:bf:45:9c:9c:be:38:73:a7:f1:e6:
b8:d4:a1:ef:86:26:79:d3:e3:45:7f:67:4d:e5:01:50:b8:c9:
e2:45:16:33:2c:3c:8c:6c:38:5f:84:ce:05:51:60:70:9b:c3:
c9:97:35:bd:6c:9e:98:3a:8a:ab:24:54:9f:6f:bd:5c:ca:0c:
1f:13:d9:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org