Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/UEH_afRZBi1o0_RDdEZJfAtQxcY.roa
File: UEH_afRZBi1o0_RDdEZJfAtQxcY.roa (raw, json)
Hash identifier: C+s6RVFFyQBQY3mqvluE8fA2Zc0JTEYj+in0xA6jCrY=
Subject key identifier: 50:41:FF:69:F4:59:06:2D:68:D3:F4:43:74:46:49:7C:0B:50:C5:C6
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/UEH_afRZBi1o0_RDdEZJfAtQxcY.roa
Signing time: Thu 15 Sep 2022 02:48:43 +0000
ROA not before: Thu 15 Sep 2022 02:48:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 125.232.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:43 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5041FF69F459062D68D3F4437446497C0B50C5C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a2:59:73:ba:5b:df:be:78:73:4c:53:9c:54:
9b:6a:0e:68:90:2e:ca:37:6b:c1:46:33:61:d2:70:
d0:02:ed:7a:0a:4c:18:03:55:8d:0b:d9:dd:63:05:
bb:31:7d:e5:41:08:f1:74:64:e8:44:40:62:8e:ee:
66:f8:bb:7e:64:c2:a2:56:d9:02:94:fb:7e:84:55:
34:93:fd:c8:13:02:8b:d4:71:ca:c8:43:60:bb:c6:
42:61:19:75:8d:91:b6:bb:ff:21:86:eb:f1:51:24:
b3:dd:71:19:55:bf:59:3c:36:80:79:58:c5:af:1f:
0d:01:aa:38:5d:42:e0:7b:25:83:f5:22:7e:ca:f5:
80:8a:5e:e4:99:5e:61:e7:d4:55:23:cd:83:bb:ef:
5b:92:9b:c8:c6:86:83:9b:24:8a:af:80:01:50:79:
9e:70:6d:54:ca:25:7c:38:b2:8a:8a:9d:09:a3:e8:
97:48:d1:bf:b3:f8:a7:7c:33:82:13:83:9c:56:2e:
13:ae:cb:3b:cb:37:df:4b:44:cc:51:5b:26:1e:be:
d1:61:f6:56:e5:e7:32:59:75:d7:8a:22:3f:3f:52:
7e:6c:28:1a:c8:7f:ad:2e:1b:ef:86:c3:4f:af:1c:
51:43:4c:0d:dd:97:8e:a7:09:82:c2:2d:fc:7a:fa:
d5:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:41:FF:69:F4:59:06:2D:68:D3:F4:43:74:46:49:7C:0B:50:C5:C6
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/UEH_afRZBi1o0_RDdEZJfAtQxcY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
125.232.0.0/15
Signature Algorithm: sha256WithRSAEncryption
07:4e:73:d2:f4:df:93:2c:48:0f:cc:e2:f8:18:2f:c4:f7:02:
a7:2e:7c:b5:95:4d:38:5f:38:05:6f:cc:c8:a0:16:fa:5d:e0:
f2:83:9f:f9:cf:9e:98:55:b1:9d:1f:b4:88:3e:90:01:99:8b:
9c:3b:b4:9a:64:b7:aa:d7:d0:28:e9:f0:b9:c3:49:78:7a:c3:
2c:f1:67:49:64:23:fa:2b:3f:96:d0:3c:53:d9:5f:4e:e4:b1:
28:57:e6:ae:03:8d:28:4c:63:ed:98:7c:d0:a1:65:4f:b1:48:
0e:5d:34:34:a2:91:b9:e1:66:a7:e2:f4:7d:ab:d5:bb:89:42:
58:00:fc:15:a6:79:db:72:cb:6d:71:ac:2e:3f:fd:db:d3:d7:
09:8a:92:2e:a1:8a:fb:40:f5:99:4b:73:5e:31:d8:fb:83:eb:
92:b9:1c:b9:5b:c2:7e:2f:84:1c:72:2d:39:fa:3c:e2:0e:d3:
5f:66:ef:59:30:be:e6:e3:c1:47:86:c4:80:2b:f7:ca:f9:0d:
90:00:b6:b5:36:ac:db:b1:b2:bd:88:1c:7f:f0:d4:6e:6f:c4:
8e:22:71:a9:0f:20:9d:43:1a:8a:66:81:dd:25:a9:34:18:53:
12:17:d2:14:1d:7a:f4:07:bf:a6:a6:d2:ef:3f:9a:99:bf:c9:
e4:2e:f2:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org