Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/TeDvfLwXl-EzmiOwOavwAQz64dM.roa
File: TeDvfLwXl-EzmiOwOavwAQz64dM.roa (raw, json)
Hash identifier: mO5sVW3NQEtsvVooxCknCTAuV+9kwSiOW3I+fHvFBNg=
Subject key identifier: 4D:E0:EF:7C:BC:17:97:E1:33:9A:23:B0:39:AB:F0:01:0C:FA:E1:D3
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/TeDvfLwXl-EzmiOwOavwAQz64dM.roa
Signing time: Wed 29 Sep 2021 02:51:18 +0000
ROA not before: Wed 29 Sep 2021 02:51:18 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9678
IP address blocks: 203.66.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3190 (0xc76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:18 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4DE0EF7CBC1797E1339A23B039ABF0010CFAE1D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d8:86:d4:9c:b5:ce:a8:11:1b:19:fc:2e:59:
c0:3c:b2:fb:78:d3:6f:bc:ff:53:37:3c:4e:c3:62:
a2:fd:fc:2a:e3:1f:fe:4d:7f:a8:a4:00:1d:ab:e7:
49:ec:d0:9a:ad:48:3a:43:77:ed:30:4d:9f:02:5a:
b8:7b:d4:30:c5:be:8d:75:f6:db:3c:a7:c4:e6:b7:
58:35:9f:41:14:6a:a8:a0:28:7d:fd:c4:3a:18:4b:
fa:d6:35:1e:67:40:36:9c:0e:9a:89:d8:8c:3d:82:
e3:ad:40:98:d3:a3:23:0c:34:22:9b:62:c5:b1:61:
05:fe:e2:21:a9:d1:24:23:16:4e:2e:90:5b:d1:43:
b8:00:b5:94:47:be:d2:54:a6:47:90:05:b4:88:80:
0e:8e:10:81:39:6a:93:55:51:4c:f5:6a:1a:7b:af:
51:43:42:3f:30:e0:de:86:4a:46:cb:60:8f:9c:b3:
29:24:5e:78:92:82:73:b2:69:94:66:db:30:e6:14:
95:3e:e3:c9:5c:5d:10:8c:b0:10:2b:fe:f7:02:f4:
ae:f8:15:f8:b6:bc:11:15:b3:e5:13:9d:d6:b0:e5:
28:84:02:0c:be:6f:31:1f:77:2c:7c:3f:88:a7:01:
43:c2:04:5e:35:2b:05:f9:78:f4:4d:b5:28:e9:da:
72:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:E0:EF:7C:BC:17:97:E1:33:9A:23:B0:39:AB:F0:01:0C:FA:E1:D3
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/TeDvfLwXl-EzmiOwOavwAQz64dM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.151.0/24
Signature Algorithm: sha256WithRSAEncryption
66:de:52:51:42:28:c3:80:4f:68:7c:1e:90:51:29:bd:ca:95:
48:6a:81:35:c6:a5:e9:28:b1:86:c0:35:27:3f:92:90:71:46:
12:3f:74:77:c9:15:31:d3:56:e9:c5:31:04:d8:9c:ed:6a:88:
d3:e0:5b:ac:7d:53:93:ce:33:34:cf:43:3a:52:09:8c:36:a8:
53:31:0f:db:12:45:aa:e5:78:69:cb:1f:bb:2c:84:ea:93:c6:
3e:52:bc:fa:4f:ae:87:ad:bb:e8:66:c0:93:c7:fa:40:f3:0a:
df:63:95:1e:32:12:8b:3c:57:bb:02:25:bd:e3:4f:5d:f2:09:
ab:83:fb:5e:5f:d3:bb:3e:05:08:b8:09:29:3f:31:6b:1d:99:
bf:6d:28:ca:4b:35:f0:41:b9:5b:2c:2c:3b:4f:2b:dd:17:b8:
82:44:09:c1:3b:61:54:10:0f:54:44:a8:53:73:66:5b:5e:2c:
f6:8d:8e:0c:b4:73:14:88:69:52:0a:20:3f:6c:ad:2d:3b:93:
6d:2d:0f:55:d0:9d:8a:67:1e:95:f5:de:8c:fe:25:a4:6d:b1:
ab:63:5b:e8:ff:2f:d0:d2:33:53:bf:a7:a2:e5:7c:be:dc:a0:
ac:df:e0:9b:e1:a6:31:1f:f6:16:fb:b2:b4:92:3b:88:2f:f9:
6e:87:38:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org