Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/a_EVakVomcDld-0RbOEbFPFcR18.roa
File: a_EVakVomcDld-0RbOEbFPFcR18.roa (raw, json)
Hash identifier: UIsQRJvtg0b9jnYV7hG/WX7sCl0LE3+pNFdA+4q4RZY=
Subject key identifier: 6B:F1:15:6A:45:68:99:C0:E5:77:ED:11:6C:E1:1B:14:F1:5C:47:5F
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C04
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/a_EVakVomcDld-0RbOEbFPFcR18.roa
Signing time: Wed 29 Sep 2021 02:50:46 +0000
ROA not before: Wed 29 Sep 2021 02:50:46 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 20940
IP address blocks: 210.65.144.192/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3076 (0xc04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:46 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=6BF1156A456899C0E577ED116CE11B14F15C475F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7a:c1:17:80:a3:12:02:7f:98:21:e5:71:80:
79:9e:78:95:f2:de:b8:a8:41:48:38:63:fe:92:16:
79:aa:2a:f0:00:8d:d9:5c:88:da:a2:38:47:f9:55:
78:76:2e:f9:2e:fd:9c:ab:84:78:ee:45:88:54:1c:
e5:5f:3b:36:79:c8:fd:fd:b3:a9:a5:11:e1:8f:74:
98:35:7b:29:fc:e7:91:90:42:73:c0:34:a2:9f:fd:
2b:75:ef:6c:7c:92:ef:85:56:f3:e9:cf:45:ac:15:
51:00:68:2e:18:29:81:80:b4:07:a6:fb:7b:d5:a5:
b8:83:1f:53:9d:39:ea:cc:d6:3b:f3:d8:63:11:b4:
87:bb:58:ad:38:1d:52:a4:61:50:b3:75:bb:8f:34:
32:f9:96:3b:03:a7:30:a2:af:40:0d:60:f2:f8:4d:
65:b9:8c:da:cf:30:38:e4:eb:af:a2:5a:c4:1c:00:
8c:a6:42:5f:9a:43:09:ae:71:5a:14:44:4b:17:81:
7f:c2:98:79:42:e6:40:48:6d:03:c3:31:6c:4b:73:
72:40:26:7e:7d:8f:75:c9:45:c8:2a:2f:ac:47:25:
5c:7f:aa:50:d8:48:26:06:c6:ed:60:ce:24:88:2d:
c4:40:b1:8f:3f:05:70:fa:19:95:19:21:5e:c3:9c:
82:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:F1:15:6A:45:68:99:C0:E5:77:ED:11:6C:E1:1B:14:F1:5C:47:5F
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/a_EVakVomcDld-0RbOEbFPFcR18.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.65.144.192/26
Signature Algorithm: sha256WithRSAEncryption
52:33:a8:fa:e9:6f:f2:ee:e1:29:fa:a5:e3:53:27:0e:8e:e4:
a4:15:45:1a:ea:51:cd:5f:e5:6e:e9:d6:3d:86:3b:fb:d9:9a:
6f:79:a4:33:4b:d4:0d:b7:95:ac:ef:47:00:ff:eb:31:8f:14:
25:52:85:fa:78:ad:43:45:99:9d:22:21:a8:83:42:b8:31:a5:
3e:90:24:09:22:9e:d8:d8:97:60:8f:7f:5e:6e:2f:7c:c5:de:
6b:33:38:52:10:2c:ac:14:af:58:aa:0a:e9:67:62:3d:b4:e8:
b6:fb:4b:7f:2e:75:0c:0d:66:4b:67:d6:5f:9e:6e:d2:d2:bb:
58:c1:b5:4f:cb:3f:50:9c:e6:b3:4c:db:ed:a2:08:25:99:86:
5f:e4:48:48:55:9b:89:ae:1d:b4:01:c0:52:72:37:06:11:d6:
8e:ff:7c:bb:1a:b2:f3:a9:e8:3b:0e:ad:cd:be:a9:8d:91:93:
cd:61:0e:5b:cc:56:78:b5:62:90:94:26:9c:03:a5:3a:64:11:
05:f0:d1:03:a7:f1:9e:be:2e:66:94:5f:f1:79:d4:26:4f:74:
91:5e:0e:fa:3e:9e:3d:0a:f9:a0:1c:6a:d7:1f:f8:64:b2:39:
ef:7c:02:24:c3:f8:24:42:9e:9e:a7:92:73:92:b3:51:f1:1f:
a1:ee:71:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org