Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/aQDt8HVXSvkoVeZ4d7bFmzoflLM.roa
File: aQDt8HVXSvkoVeZ4d7bFmzoflLM.roa (raw, json)
Hash identifier: T4hPnDyZay8mExN9gHurbOKBdffihTLBg6u+TX8Xwm4=
Subject key identifier: 69:00:ED:F0:75:57:4A:F9:28:55:E6:78:77:B6:C5:9B:3A:1F:94:B3
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aQDt8HVXSvkoVeZ4d7bFmzoflLM.roa
Signing time: Thu 15 Sep 2022 02:48:28 +0000
ROA not before: Thu 15 Sep 2022 02:48:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 203.74.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6900EDF075574AF92855E67877B6C59B3A1F94B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d2:40:de:b8:6d:6b:19:5a:d2:ba:8a:70:0b:
88:68:76:62:ee:cd:62:f3:3d:af:ee:99:a6:e4:50:
60:31:f1:d8:09:39:1a:13:ed:de:88:1f:42:7f:3c:
02:34:6b:8c:3f:64:83:16:fc:e0:0a:cc:d1:d6:55:
f8:38:27:df:52:fb:40:2a:ab:af:c3:39:25:8a:1d:
13:65:19:e0:91:d3:0f:5f:f6:15:f7:b4:9d:25:ac:
77:2b:06:d1:f3:07:2e:8b:8b:5c:cb:53:7c:d6:b2:
d8:d1:95:59:f1:de:0e:68:31:91:a1:fc:a1:d0:85:
13:e5:8a:f5:74:03:61:59:57:1f:08:30:f4:cc:b5:
24:63:47:b7:9b:cb:d7:0c:7e:3d:c7:c9:0d:bf:9e:
e3:9b:f1:95:ae:61:67:6e:f9:a5:a7:88:50:ec:3b:
fa:60:a8:3d:9e:ea:38:cc:c6:77:2e:25:20:b1:f2:
0a:46:4d:a9:42:8d:02:bd:51:5e:b7:28:16:11:48:
c5:d7:cd:e2:33:7a:95:b9:6e:1d:89:5e:ff:89:87:
45:8f:8d:f2:58:c1:a8:ba:a2:89:42:19:ce:4b:21:
96:29:f7:75:c8:85:0a:3b:59:ae:65:c0:47:66:1f:
f0:f3:27:4a:e8:58:01:bf:32:49:cc:70:ad:cc:5e:
9e:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:00:ED:F0:75:57:4A:F9:28:55:E6:78:77:B6:C5:9B:3A:1F:94:B3
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aQDt8HVXSvkoVeZ4d7bFmzoflLM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.0.0/16
Signature Algorithm: sha256WithRSAEncryption
45:6a:fc:f6:33:88:fa:18:5e:87:b4:28:28:c6:25:27:5a:b2:
87:9a:7d:60:85:e0:0c:fd:ea:03:f8:a8:9e:ad:0d:b3:56:0f:
e5:9f:67:3c:0c:10:6f:d9:65:86:fb:d3:56:ea:5c:11:86:1d:
34:ca:e9:b4:2f:86:67:c7:4d:34:c0:74:4f:63:83:e8:1f:76:
c4:3f:f2:7f:a9:40:5c:bc:27:ba:d5:31:ce:7f:06:69:57:82:
a3:14:8e:fe:73:c4:d5:00:84:27:07:56:94:8d:87:55:c1:9c:
20:44:74:cb:e0:2f:23:11:61:fa:3d:5f:3c:f4:70:1b:c8:dd:
57:1f:21:2d:3f:0f:21:86:9d:95:27:66:f6:95:40:55:43:7c:
bb:2d:20:1e:58:06:7a:26:9b:49:e2:9e:c4:c3:78:53:06:d6:
64:ec:ce:74:f5:5a:c5:b9:89:87:79:cf:56:c0:6c:78:64:38:
5e:35:21:ca:51:73:24:1d:be:80:5f:58:f1:02:74:6b:ad:a4:
80:ba:d8:d6:a8:49:b0:0d:30:60:27:a6:1b:da:a0:26:14:d9:
62:a2:d1:e7:9c:d8:88:3e:a1:5e:77:f0:9b:01:6e:1c:7d:66:
51:c8:c4:5e:9c:88:d1:ee:e4:ad:41:ba:d6:38:94:d5:39:79:
3c:78:40:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org