Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/WG18iCtIcY02ju93OQwPdKR_iqA.roa
File: WG18iCtIcY02ju93OQwPdKR_iqA.roa (raw, json)
Hash identifier: xPWVeXexd4byGQvVQzDLfm1UnKgVDP3OO9fnUGZxsrA=
Subject key identifier: 58:6D:7C:88:2B:48:71:8D:36:8E:EF:77:39:0C:0F:74:A4:7F:8A:A0
Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Certificate serial: 0A39
Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WG18iCtIcY02ju93OQwPdKR_iqA.roa
Signing time: Wed 29 Sep 2021 02:51:23 +0000
ROA not before: Wed 29 Sep 2021 02:51:23 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131660
IP address blocks: 168.95.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2617 (0xa39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Validity
Not Before: Sep 29 02:51:23 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=586D7C882B48718D368EEF77390C0F74A47F8AA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b2:57:f9:0b:02:64:41:48:89:56:d0:a6:35:
4f:b5:fd:41:4f:44:95:5f:b7:7f:b8:14:0e:a3:04:
61:0e:93:00:be:ea:36:24:77:a0:25:4e:c7:b6:99:
4b:c1:25:63:81:01:63:7b:4b:60:59:2f:a2:91:dc:
ae:c3:99:b8:4d:23:6c:96:b9:d6:a5:c4:9a:77:1a:
71:dc:5b:c8:3b:7f:94:16:2d:0f:cd:66:5a:4d:6d:
ef:c8:13:76:5c:07:76:a1:a9:6a:88:18:4d:0b:3d:
79:7c:49:2e:f2:a8:c5:7c:d1:c4:42:dc:7d:d1:12:
9b:ca:d3:39:57:eb:29:09:e5:b9:38:41:cc:e1:f4:
3c:17:57:7f:c5:4c:2a:68:e3:ec:95:56:ab:29:24:
a7:41:71:be:24:ab:48:f7:d5:d7:d5:84:ff:1a:4c:
a9:8d:6f:df:d8:b8:17:3b:6b:ae:2a:69:23:34:a0:
95:48:93:f7:63:ea:4a:88:08:9c:e7:0f:02:e7:5a:
e2:64:2f:ee:52:b3:01:a2:c6:67:2e:8b:dc:7a:2c:
1f:da:db:58:61:ed:64:a7:7a:26:65:98:44:12:73:
c9:00:1a:6b:e8:68:f0:cb:bf:67:3d:88:19:c7:e9:
f9:d3:2c:12:bc:bd:15:26:7e:14:90:b2:5b:16:d3:
a5:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:6D:7C:88:2B:48:71:8D:36:8E:EF:77:39:0C:0F:74:A4:7F:8A:A0
X509v3 Authority Key Identifier:
keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WG18iCtIcY02ju93OQwPdKR_iqA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
168.95.245.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:c5:9d:2f:ca:a4:c0:58:5e:f5:ed:d5:e1:29:94:63:44:85:
69:42:05:f8:94:90:22:8d:5c:10:ed:00:81:a9:be:f9:db:a8:
d4:10:99:8f:7c:85:8b:fc:d6:09:f2:1d:1f:05:db:48:e5:74:
65:d0:c2:a5:90:29:9a:f6:92:f1:31:79:0e:69:44:c1:cf:b8:
7d:b2:db:b6:fd:30:7b:9f:33:eb:ae:61:f8:92:4e:9d:2c:1d:
b5:a6:fa:d2:af:08:4d:ac:9d:75:44:a0:33:5a:13:2c:f7:29:
78:fc:d9:f0:12:8b:1d:f5:b7:24:54:82:3a:ef:f5:2a:44:0b:
8e:fd:98:13:50:cc:27:76:0e:e4:b7:cb:89:0c:a2:9b:d7:2c:
fb:cc:d4:75:17:1a:3e:2a:04:a3:48:12:90:5b:c3:60:a9:92:
51:ab:75:3a:b7:b3:24:ad:d3:a7:8b:56:e8:f9:08:01:29:b2:
fe:a5:90:02:cf:e8:e0:f0:c9:89:cd:40:a8:d2:ed:25:6d:64:
b1:43:16:9f:f8:36:01:54:08:ee:3e:04:ac:27:1e:f6:bd:f0:
a7:97:16:83:e7:36:e9:69:15:bd:6e:f9:dc:00:a7:c4:f7:d1:
ad:33:d9:63:24:64:e9:a0:71:3c:cc:0b:f9:93:73:2a:13:01:
aa:bd:9d:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org