Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/aI7ROtHffjDxAPa5fhsJCnZ7TI8.roa
File: aI7ROtHffjDxAPa5fhsJCnZ7TI8.roa (raw, json)
Hash identifier: JMcUVVr7RWWjnKwStPsB9Yn+7UcH0Qft5OnleCVHuN4=
Subject key identifier: 68:8E:D1:3A:D1:DF:7E:30:F1:00:F6:B9:7E:1B:09:0A:76:7B:4C:8F
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C19
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aI7ROtHffjDxAPa5fhsJCnZ7TI8.roa
Signing time: Wed 29 Sep 2021 02:50:52 +0000
ROA not before: Wed 29 Sep 2021 02:50:52 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 203.74.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3097 (0xc19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:52 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=688ED13AD1DF7E30F100F6B97E1B090A767B4C8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d5:6e:df:58:08:c0:b3:0d:5f:69:2d:36:bd:
f3:4d:11:9e:e9:9c:9a:2d:a3:18:3f:24:9b:f3:82:
d5:dc:7b:a5:26:06:22:2e:d0:6a:bd:a0:68:15:47:
53:1c:3c:32:03:dd:63:fe:7e:ec:dd:3b:c8:5b:c8:
c4:90:47:40:a0:58:04:08:80:b3:78:94:8c:f3:cb:
2d:ea:bd:93:6b:32:1c:c0:2d:3a:85:d5:3a:e5:74:
d3:13:ca:e5:4c:04:30:05:43:f8:e0:4e:b1:34:07:
da:e7:62:91:bb:8e:94:00:a4:e0:7b:85:be:2d:2d:
cf:18:ae:17:74:93:51:a2:c8:cc:7d:66:74:16:03:
ed:8a:76:e2:a8:52:b7:13:13:c0:6e:cc:99:9c:61:
01:20:8c:75:dc:4d:ab:73:df:7e:58:92:e5:63:87:
25:09:08:80:8a:cd:4e:2d:66:4c:6a:fa:fd:0c:3f:
85:b9:56:50:23:d5:05:e3:fd:6b:98:c6:1f:8f:0c:
e6:3b:5f:ac:a1:2c:de:98:ca:e7:49:60:f9:12:6f:
05:5e:56:82:00:c2:8c:1e:6d:51:9d:cc:2f:ba:90:
65:15:e7:8a:6c:b7:7f:09:45:76:74:be:24:ab:ce:
13:4b:ae:f7:11:06:a3:17:63:13:bb:60:d5:fb:9b:
92:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:8E:D1:3A:D1:DF:7E:30:F1:00:F6:B9:7E:1B:09:0A:76:7B:4C:8F
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aI7ROtHffjDxAPa5fhsJCnZ7TI8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.0.0/16
Signature Algorithm: sha256WithRSAEncryption
d1:1a:b0:bc:48:9d:4f:0b:4e:fd:a5:a1:78:4b:d3:b7:c7:28:
fa:09:f1:8c:6e:3c:46:b5:01:45:a0:5f:c5:b6:87:fe:91:ac:
c7:8e:d3:62:87:69:8c:dc:32:53:ad:dd:64:a1:cc:9d:52:c5:
49:60:76:66:38:64:a3:f6:06:4b:73:65:09:20:e3:63:3d:a3:
23:e3:e1:50:0b:fb:01:2f:70:fd:68:9f:9c:9c:bc:c1:24:e9:
60:c5:df:a8:d2:27:a3:60:9f:3f:41:35:e6:89:ec:71:90:c1:
65:a9:e9:f8:27:1c:1d:87:ec:87:4e:ba:84:d2:23:b1:d0:5a:
a2:0c:29:4f:a1:76:bf:b2:4c:6b:24:b2:fa:2a:47:b0:58:88:
dd:62:29:6d:5e:a3:b9:7b:09:cd:a9:b4:18:26:18:d3:cd:47:
9c:c1:cd:19:57:3e:13:35:9b:5d:ca:5c:3d:c2:4a:9f:ab:a0:
11:25:de:79:d3:6d:ee:ba:2b:22:f8:6c:46:af:87:8d:5a:16:
3f:c5:6a:96:62:7b:ff:09:44:b3:0a:6c:0f:6d:50:0a:14:07:
ab:f2:49:81:69:78:72:99:be:8f:ad:22:66:60:bd:5b:db:85:
2e:6d:48:dd:1f:32:e2:bb:ee:ab:b8:38:34:15:df:a5:73:a6:
e9:c4:36:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:55 2023 by rpki-client on console-ams.rpki-client.org