Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/V3hOzzNGrWnKhCdN2nXouyBmlzo.roa
File: V3hOzzNGrWnKhCdN2nXouyBmlzo.roa (raw, json)
Hash identifier: MmuDDOmf+qvZTm9XFw+TV4OYLiXy4B1b+X1PG5pYfU8=
Subject key identifier: 57:78:4E:CF:33:46:AD:69:CA:84:27:4D:DA:75:E8:BB:20:66:97:3A
Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Certificate serial: 0B2C
Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/V3hOzzNGrWnKhCdN2nXouyBmlzo.roa
Signing time: Thu 15 Sep 2022 02:47:58 +0000
ROA not before: Thu 15 Sep 2022 02:47:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9680
IP address blocks: 168.95.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2860 (0xb2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Validity
Not Before: Sep 15 02:47:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=57784ECF3346AD69CA84274DDA75E8BB2066973A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:76:8f:46:9f:72:e8:f9:1c:50:cf:4a:47:ce:
fa:10:43:b1:f6:b4:ff:06:a3:a1:c7:9f:fd:2e:fa:
98:b5:8e:ec:14:f9:b5:1b:6e:df:a3:e2:12:7a:e6:
e5:c1:52:07:0c:87:84:e3:e9:0e:85:0b:09:45:c2:
69:cb:3c:3b:03:79:a2:b9:95:4c:d0:05:4f:0a:de:
64:af:2b:3d:11:6e:26:4d:a9:04:3d:10:ee:2f:de:
5e:f7:7d:6a:4b:9d:64:0a:8c:cc:e8:1a:92:8e:0d:
d5:9a:43:ba:2f:be:9d:46:b2:23:4d:fe:fe:31:af:
f7:52:2f:6b:43:d3:5d:5c:98:a9:8b:0e:73:84:6f:
59:3e:1b:37:86:89:98:1e:98:4f:85:bd:a8:fd:b1:
ab:5b:73:4b:9e:df:fc:32:67:35:15:8e:c1:70:ea:
44:e0:2e:8a:03:e4:04:dc:d2:d4:c6:62:fe:65:a4:
6b:4f:e3:f1:93:84:3c:b3:1c:40:49:7a:52:27:24:
50:b5:92:5a:13:38:41:c8:04:21:1f:4b:f2:fc:bb:
9f:06:73:9c:e4:e6:99:6f:b2:dc:32:b4:5f:c6:a6:
f1:52:b1:5a:a3:71:b6:39:c8:d8:7d:3a:35:81:28:
de:b5:e2:a4:60:b8:eb:df:ba:c2:b6:be:dc:03:af:
38:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:78:4E:CF:33:46:AD:69:CA:84:27:4D:DA:75:E8:BB:20:66:97:3A
X509v3 Authority Key Identifier:
keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/V3hOzzNGrWnKhCdN2nXouyBmlzo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
168.95.245.0/24
Signature Algorithm: sha256WithRSAEncryption
91:f0:00:72:cf:dc:35:63:34:31:0a:c5:bd:f8:10:64:08:7d:
f9:cc:10:d8:74:8b:ff:86:da:ef:96:a3:84:1b:5c:03:44:26:
df:55:c0:ce:75:ad:6e:cd:2b:b8:5d:43:97:e8:e3:64:5b:e0:
aa:3f:50:54:af:23:5b:72:5f:9d:d4:d0:bd:37:90:d5:94:f5:
fb:51:e7:82:b3:95:89:aa:91:69:b7:fc:39:b7:88:a8:b7:1a:
58:5c:29:05:9c:1f:be:a6:16:9d:44:61:5b:dc:80:01:6f:39:
78:48:7b:06:72:5c:40:a4:aa:c8:43:44:59:49:13:c8:59:47:
49:a5:69:37:b4:ba:67:ed:aa:79:0e:c5:e5:e3:78:53:24:46:
c9:51:37:98:71:b3:16:dc:f0:d3:d2:59:1f:c3:58:30:82:ca:
8f:7a:c4:37:bd:b0:7c:ab:4b:6f:04:2b:71:1f:92:fb:95:dc:
a7:93:65:ed:50:3a:e0:0c:ea:10:a6:82:a7:c6:f8:38:f1:8a:
68:d8:a3:ef:57:7b:03:83:ed:10:83:0d:43:98:af:96:fd:44:
88:03:21:23:b0:ac:07:2a:b7:e2:83:06:ab:1f:67:f6:0c:cc:
60:f4:a3:18:e8:d9:01:93:90:c4:28:e2:21:89:5c:d3:7b:4b:
e7:a3:f1:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org