Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/WI2Ks1pv3GhHl-BX1aZhqgv8TZY.roa
File: WI2Ks1pv3GhHl-BX1aZhqgv8TZY.roa (raw, json)
Hash identifier: en4HxPfEEGRPqAJ/Rz0cgqYP3gbpGt3ioxhBNB8teBo=
Subject key identifier: 58:8D:8A:B3:5A:6F:DC:68:47:97:E0:57:D5:A6:61:AA:0B:FC:4D:96
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C20
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WI2Ks1pv3GhHl-BX1aZhqgv8TZY.roa
Signing time: Wed 29 Sep 2021 02:50:55 +0000
ROA not before: Wed 29 Sep 2021 02:50:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 210.65.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3104 (0xc20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=588D8AB35A6FDC684797E057D5A661AA0BFC4D96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e1:6c:3e:29:79:8d:db:d3:1e:46:b0:3c:04:
51:04:1a:4f:02:64:47:5b:31:e3:fa:b3:67:24:13:
7f:06:17:22:23:b5:c1:33:8d:ed:4e:68:da:fc:1d:
56:11:91:ba:50:6c:ef:ac:88:a6:d8:d5:00:40:d4:
fb:c0:1f:36:96:31:62:13:6c:be:6a:c3:74:02:ff:
d6:a1:5d:a6:5d:5d:ca:58:02:70:2e:1d:30:f9:ab:
12:86:65:f6:fc:bb:68:e2:a3:bd:94:63:d7:81:bd:
35:a4:32:02:49:3e:ea:2d:89:fb:78:41:16:19:25:
39:ca:ff:b3:76:8a:1d:5d:78:0f:41:50:36:d2:cd:
11:13:1d:12:99:c3:dc:1d:2d:f4:4e:b6:12:e5:a4:
0a:8e:f1:b8:48:3e:fc:58:93:4f:78:cd:87:df:a4:
cd:5b:eb:3c:51:1a:94:fb:51:23:c2:f0:03:16:9b:
48:5e:48:ae:97:bc:01:03:6a:b4:ee:91:85:3f:11:
de:5f:8c:bc:8c:b2:dd:b0:2c:61:40:5c:18:7b:e2:
bc:0f:e5:4d:54:75:d9:a1:0d:d1:bf:d3:71:06:9a:
a7:bf:b2:5e:3a:ae:c7:1e:f2:d5:9c:6e:f6:9d:d1:
26:3e:58:2e:d8:66:d6:41:b5:b4:5c:0e:e0:28:d1:
9e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:8D:8A:B3:5A:6F:DC:68:47:97:E0:57:D5:A6:61:AA:0B:FC:4D:96
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WI2Ks1pv3GhHl-BX1aZhqgv8TZY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.65.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4a:cd:b1:8c:be:13:f8:1f:49:1a:3e:53:ff:77:37:1d:9d:eb:
58:32:b6:50:14:6d:94:f4:35:a6:17:38:e7:ab:91:2e:34:34:
ed:be:ed:2d:57:d8:36:27:f5:46:db:93:76:60:cd:93:ae:de:
2d:01:00:6f:3b:5a:68:1a:eb:2b:31:bd:be:42:f2:6a:2c:e6:
05:a3:aa:af:2d:77:d3:b1:a6:34:54:18:4f:df:85:72:9f:5d:
45:0b:7a:2b:2e:b0:ae:51:36:71:50:c3:88:cf:f7:fe:b4:80:
06:7f:92:33:32:0b:09:34:e2:11:07:4d:3c:aa:86:e0:9b:23:
80:e3:ce:c1:b6:f1:86:e5:c6:99:60:60:92:bb:09:99:41:97:
10:97:f3:eb:3a:ce:26:f0:fe:65:f2:29:45:5e:71:52:9f:ac:
6b:8e:1d:87:57:bf:fb:88:76:70:df:b4:1d:c6:45:6e:61:83:
f8:33:95:68:ee:97:a4:3d:89:d1:65:7b:4d:3b:6b:c0:36:e5:
d1:cb:ec:4b:08:2b:82:ee:3e:2d:7f:ed:69:e5:ba:cd:9c:ae:
80:a0:af:11:62:a7:56:47:8d:10:e6:53:16:a1:00:16:55:af:
00:18:09:fd:a8:3c:2e:90:dd:0f:30:b7:d9:c6:c2:41:7e:95:
b1:5c:e2:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org