Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Yr7c-gMzmxIhaXuRzMmR5MuedLM.roa
File: Yr7c-gMzmxIhaXuRzMmR5MuedLM.roa (raw, json)
Hash identifier: d6kyApLxm2opLKH8MqpAeQ7q1NbtNd4vS2fXNSEY3B0=
Subject key identifier: 62:BE:DC:FA:03:33:9B:12:21:69:7B:91:CC:C9:91:E4:CB:9E:74:B3
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AFF
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Yr7c-gMzmxIhaXuRzMmR5MuedLM.roa
Signing time: Sun 07 Feb 2021 11:46:31 +0000
ROA not before: Sun 07 Feb 2021 11:46:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10126
IP address blocks: 203.160.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2815 (0xaff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:46:31 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=62BEDCFA03339B1221697B91CCC991E4CB9E74B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:1f:67:31:68:b4:df:48:e3:29:cd:cf:a6:7e:
37:8e:08:41:19:87:73:f4:30:38:f4:41:c1:37:99:
32:fe:c0:af:6d:a0:b9:7c:f7:59:1d:94:3b:ca:fd:
49:1e:4f:04:4b:38:a3:c3:1f:8b:be:f8:93:3c:f7:
b2:11:eb:fb:11:5a:23:ab:04:f3:d6:c0:3a:b9:16:
7f:58:15:64:43:1b:2e:ce:67:a1:f5:2f:fa:63:a8:
11:e2:55:25:68:39:5f:20:01:04:1b:78:11:dc:15:
1a:07:a8:cf:c8:6f:b5:d9:39:73:8f:ae:5b:f9:84:
9b:8e:a8:3e:0f:ef:2e:72:16:9a:6a:ef:57:51:22:
ac:57:46:7a:b2:c6:77:d1:f0:6b:99:ed:d1:ac:7d:
ae:12:36:a5:7f:27:c8:e8:c3:da:01:d5:03:e4:c8:
ef:f1:6d:31:22:db:c2:46:12:ed:95:09:66:ab:2e:
91:14:3c:5a:ef:42:80:49:aa:42:4c:1e:3e:a4:06:
e5:be:b6:1b:3c:74:14:72:53:b1:1f:94:a1:af:17:
af:9b:ba:14:2f:1d:f3:5e:ce:ac:14:f0:49:01:4b:
7b:28:4b:33:e4:42:9c:8e:e9:f7:00:5b:0a:b0:66:
d1:21:79:42:80:32:ef:e6:ba:bf:01:48:f7:32:bb:
dd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:BE:DC:FA:03:33:9B:12:21:69:7B:91:CC:C9:91:E4:CB:9E:74:B3
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Yr7c-gMzmxIhaXuRzMmR5MuedLM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.240.0/20
Signature Algorithm: sha256WithRSAEncryption
09:4d:f1:8a:04:4a:ee:64:5e:2e:91:65:b3:44:12:29:f3:b2:
81:69:4f:c1:12:97:fe:48:41:df:c3:2a:bf:d3:e3:6f:65:1f:
c1:fa:3c:83:95:1e:73:be:61:d5:d9:e5:ea:ee:da:be:02:72:
5f:04:06:23:b4:70:72:8e:59:69:62:4f:3d:8b:e3:23:07:0c:
90:d9:67:89:01:a6:1a:21:a4:ff:1e:9d:6c:35:15:74:98:82:
c5:38:c4:43:ef:06:ae:bc:75:e5:1f:f8:4e:c6:af:6f:dc:d1:
6b:63:f9:97:16:fa:d8:27:1f:17:48:88:c2:9d:e8:81:39:5a:
f0:b5:63:cd:0c:3a:16:9c:e7:09:71:d0:58:8f:93:e1:65:87:
b2:af:7d:79:1d:ed:72:93:63:b3:63:f3:4f:ef:75:9d:22:06:
da:f1:45:6e:ee:93:0c:6f:00:e3:f5:1c:29:53:05:70:e3:f1:
d0:5f:fc:c1:de:b0:6b:36:d6:72:96:da:3c:7c:7f:fa:56:a0:
7f:eb:f9:fd:a0:c7:b2:72:1f:9d:38:19:3e:79:d6:db:34:80:
d5:a9:94:93:36:8a:ac:9f:50:ef:4d:20:98:41:99:13:9f:98:
3e:eb:df:2b:19:d6:03:30:dd:a3:e1:49:dd:d8:c4:32:fb:25:
17:88:f7:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org