Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Va3g6mRMTpOdHJ_8RQzEFyOj2A0.roa
File: Va3g6mRMTpOdHJ_8RQzEFyOj2A0.roa (raw, json)
Hash identifier: Q0k30p2ljrjMZJbvxQeV3cYMbXrA4u20TRt7ReSpDFc=
Subject key identifier: 55:AD:E0:EA:64:4C:4E:93:9D:1C:9F:FC:45:0C:C4:17:23:A3:D8:0D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C65
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Va3g6mRMTpOdHJ_8RQzEFyOj2A0.roa
Signing time: Wed 29 Sep 2021 02:51:13 +0000
ROA not before: Wed 29 Sep 2021 02:51:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 198949
IP address blocks: 210.242.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3173 (0xc65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=55ADE0EA644C4E939D1C9FFC450CC41723A3D80D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9a:55:63:de:d3:ca:48:95:48:a3:69:d0:c5:
e6:8e:67:17:3a:8a:6b:5e:a7:15:67:32:2d:a0:18:
76:ca:8d:d7:66:ba:4a:83:60:49:26:d0:74:49:29:
4a:19:04:90:d4:e1:37:a2:c4:7f:75:85:38:6f:c2:
d7:5e:c7:e0:28:80:ba:94:ec:55:93:e7:fe:71:74:
49:b5:ff:11:52:f6:ec:64:ff:2c:ae:f6:1a:5c:86:
9a:23:32:73:fb:3f:96:17:c1:1e:d9:4b:94:16:1e:
81:f5:70:63:ed:57:d6:e9:53:73:b7:85:a0:9a:d1:
20:8e:aa:d9:06:04:ca:ec:93:1c:83:3b:4d:91:00:
9e:c9:cf:2d:53:e1:8f:d7:13:42:9d:aa:07:c6:78:
2e:5a:43:98:be:c0:85:83:e1:3c:f5:22:3c:fe:0b:
da:e2:93:86:0f:27:cd:57:23:61:9f:8b:b9:39:1f:
6d:94:e8:da:de:d0:e8:af:55:cd:5b:8c:d2:b8:54:
20:f5:86:b9:d4:4b:4c:a9:23:91:a8:68:a0:7f:2e:
6d:f0:35:99:14:e9:62:9b:77:9d:83:bf:f8:a2:9a:
87:ef:64:ae:62:f2:7e:66:4a:d1:a6:34:15:91:eb:
dc:b7:a9:41:f6:cc:39:30:eb:9c:e7:aa:1d:58:41:
27:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:AD:E0:EA:64:4C:4E:93:9D:1C:9F:FC:45:0C:C4:17:23:A3:D8:0D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Va3g6mRMTpOdHJ_8RQzEFyOj2A0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.186.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:8b:90:79:92:19:db:ad:5e:3b:7c:fd:c3:85:c4:c0:0f:cc:
c9:ca:a4:c6:46:b8:1b:6e:14:6a:89:65:03:47:21:68:4b:cf:
2a:6d:24:3c:7e:15:34:b2:09:11:a7:6e:13:40:52:1c:3a:5c:
62:9d:12:56:19:f9:41:a2:80:63:bd:3e:d9:5e:dc:49:c7:8c:
15:c7:a0:44:1d:6a:42:79:fd:83:24:5c:8f:5b:34:bb:37:27:
d2:7c:9f:1e:d3:4b:be:bb:1f:14:d1:27:5c:7b:fa:df:8e:3c:
43:91:60:85:54:cc:0f:fd:4b:05:6b:c4:35:d4:67:60:b6:be:
3a:6f:f8:7b:04:03:7b:4a:ff:30:04:07:7a:1b:79:50:16:e1:
b1:90:47:9b:32:d5:6d:c5:26:34:d4:5f:a7:e8:ea:03:a9:9b:
2b:87:c3:4a:17:cc:73:41:33:89:9e:25:5f:27:44:8c:90:09:
11:fd:01:44:91:59:f5:a2:a0:46:f4:bc:64:bd:28:30:c9:e5:
39:2e:80:12:a8:65:6e:eb:b5:65:05:40:16:85:13:9b:db:ed:
0e:a2:b9:ce:76:33:73:98:76:86:b7:aa:42:79:ca:26:06:0f:
d2:63:f4:ab:4f:43:0e:b4:bf:7f:30:f8:06:c4:a8:25:65:1f:
dd:46:22:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:55 2023 by rpki-client on console-ams.rpki-client.org