Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/SBkueIiQSLSTYevExsu9MqJw3IQ.roa
File: SBkueIiQSLSTYevExsu9MqJw3IQ.roa (raw, json)
Hash identifier: Sm6U0J5FWWIImksbB4G78DAjImK2HtP20GY5gzrxaGo=
Subject key identifier: 48:19:2E:78:88:90:48:B4:93:61:EB:C4:C6:CB:BD:32:A2:70:DC:84
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SBkueIiQSLSTYevExsu9MqJw3IQ.roa
Signing time: Thu 15 Sep 2022 02:48:17 +0000
ROA not before: Thu 15 Sep 2022 02:48:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17421
IP address blocks: 223.136.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=48192E78889048B49361EBC4C6CBBD32A270DC84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f0:0b:41:f6:26:db:8c:fc:9d:4d:a8:c0:b7:
d1:cd:e9:22:63:6c:56:69:74:76:b6:2b:ff:2a:67:
c8:94:dc:e5:bf:db:93:1f:3a:a2:f9:c8:74:99:d3:
47:18:5c:2e:f9:9e:50:72:1e:93:d3:b3:ff:72:48:
86:c7:e7:31:15:9e:bf:71:81:b3:df:32:f6:6d:d9:
60:de:66:c1:83:59:cf:45:6e:e9:64:8c:50:59:73:
c7:65:1d:ce:2e:d7:eb:81:9e:f5:39:20:86:77:3c:
25:ac:37:c3:4f:10:a0:7e:a2:fe:f3:fa:7d:90:8a:
41:71:35:c9:66:97:a3:74:49:08:5b:97:d3:ce:b1:
00:8c:88:c8:67:87:b9:ec:15:a9:f9:36:e3:85:47:
69:8e:9f:56:7b:47:8d:ce:ae:57:19:50:30:30:9a:
93:a3:89:c5:3f:7d:1e:94:f5:4e:ad:09:c9:7f:6a:
73:c1:eb:47:bd:90:98:94:71:ee:a2:74:ed:a5:7a:
87:a3:8f:62:32:0e:ee:19:87:75:e8:10:09:8c:c3:
28:f0:54:aa:2b:ee:2e:b2:e2:8c:28:e2:74:4b:0b:
6a:50:00:0c:17:3e:63:81:7f:70:27:61:aa:2d:a0:
6b:66:42:65:ed:85:81:fa:9d:48:f3:e3:f9:65:c3:
45:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:19:2E:78:88:90:48:B4:93:61:EB:C4:C6:CB:BD:32:A2:70:DC:84
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SBkueIiQSLSTYevExsu9MqJw3IQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.136.0.0/13
Signature Algorithm: sha256WithRSAEncryption
24:9f:13:d4:31:f7:ca:47:03:4b:51:a8:b1:43:3e:57:37:6f:
c6:ed:70:1a:c8:e6:ec:9f:5a:33:81:ff:a3:fb:f8:7b:ec:2b:
5b:86:77:25:49:da:5d:c7:e3:79:f5:cd:bd:1d:d4:ae:a7:91:
73:94:98:45:1d:4c:36:ed:82:da:14:f7:1d:7e:fd:62:c8:7b:
cf:78:10:87:78:db:c8:9a:16:dd:0d:a7:71:05:57:92:66:19:
5a:45:a5:d6:5c:50:4f:47:2b:52:e2:60:7a:03:04:a2:15:55:
19:2e:34:68:e1:00:21:96:2a:86:e1:f3:9e:70:ad:06:e8:d4:
0d:eb:d0:e9:3d:68:c4:0e:48:cf:f5:96:5f:96:76:45:c8:49:
93:a6:eb:d3:90:70:de:19:c9:1d:16:4d:4d:df:f2:34:0b:2d:
cf:8c:76:34:3f:71:d4:eb:e8:db:69:a8:ff:3d:69:ba:e7:a6:
96:6a:36:f2:2a:16:05:cb:35:fc:e5:c3:c5:f7:1f:47:55:0a:
54:4c:57:e6:cc:6e:0e:5c:c4:2c:c8:f4:b6:c3:fa:05:d5:ba:
55:bf:7e:02:99:40:6b:e1:61:1e:f7:46:9a:87:da:8e:d6:b0:
15:c7:b3:b3:4f:28:9c:73:2b:51:9b:ff:60:3c:38:c0:ee:7f:
cc:4f:21:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org