Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/cwAsLf-Dzpjv18OHnnlV-IgPA4w.roa
File: cwAsLf-Dzpjv18OHnnlV-IgPA4w.roa (raw, json)
Hash identifier: wwzDeMMDBWM3ROoqiqLAI143ei3qGRfH0KAb9mhhs2A=
Subject key identifier: 73:00:2C:2D:FF:83:CE:98:EF:D7:C3:87:9E:79:55:F8:88:0F:03:8C
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0B03
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cwAsLf-Dzpjv18OHnnlV-IgPA4w.roa
Signing time: Sun 07 Feb 2021 11:46:35 +0000
ROA not before: Sun 07 Feb 2021 11:46:35 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17714
IP address blocks: 175.111.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2819 (0xb03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:46:35 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=73002C2DFF83CE98EFD7C3879E7955F8880F038C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:08:8c:ba:08:7b:83:d0:20:7a:06:ef:e8:c4:
20:f2:46:f1:86:36:43:c1:d8:d0:3a:fc:c0:fe:40:
1c:6e:bd:bf:75:b2:af:97:1d:81:c7:45:a3:fd:0a:
bb:cd:ae:b8:a6:6e:79:5c:bd:eb:7a:ab:e5:0a:9f:
7a:11:51:de:af:a1:b5:83:35:16:ad:a8:8d:9e:71:
63:4d:1a:42:7d:8f:d5:97:2b:da:cf:95:02:83:72:
a2:4d:d2:ee:76:21:17:ab:69:04:09:0e:4f:5d:85:
f8:f7:77:e8:af:e1:e2:43:c7:90:ca:d1:fa:35:84:
86:1b:f7:43:df:d3:fc:34:e8:d1:83:a5:51:71:9b:
76:2c:e3:4f:a0:2b:18:7a:3e:43:c3:64:ef:94:fd:
fe:a9:15:2c:e7:7c:51:ab:42:38:61:36:94:59:80:
3e:3b:65:69:d2:c5:df:96:93:c1:73:ff:1a:24:cd:
50:78:c6:de:9e:41:18:b1:cb:51:88:01:9a:3a:2a:
76:e8:ce:58:b4:39:cf:f0:15:f2:76:f9:39:25:3d:
32:f0:a5:42:98:37:23:eb:87:e9:6d:1c:c6:a1:a8:
6f:71:24:1d:a4:08:90:15:f3:25:71:98:b3:d0:ff:
fc:aa:68:95:7e:ae:0e:cc:c3:42:43:c4:8c:db:97:
b4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:00:2C:2D:FF:83:CE:98:EF:D7:C3:87:9E:79:55:F8:88:0F:03:8C
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cwAsLf-Dzpjv18OHnnlV-IgPA4w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.252.0/24
Signature Algorithm: sha256WithRSAEncryption
70:85:f2:aa:4c:74:61:f3:d8:4f:13:69:5d:55:c7:5f:0b:fa:
f7:ff:a6:7f:47:d8:f4:07:13:78:f8:9a:83:f8:bb:30:e2:18:
d4:11:e2:d7:74:11:22:9d:72:8d:7c:5a:02:27:ce:17:12:8c:
5e:36:24:70:dd:6e:30:0b:62:d7:ec:46:20:92:e0:80:30:d0:
49:65:4c:40:f0:96:77:57:c8:55:83:4f:5d:f9:b6:be:99:bc:
c9:85:77:6b:9f:2c:d8:04:ab:b8:38:63:cc:a3:fc:70:ed:00:
f6:65:3a:f2:e6:0a:9e:5c:4c:ad:c5:af:25:33:06:78:b4:d1:
56:2c:29:de:d4:f0:d7:38:6f:fd:b0:aa:e8:f0:a8:53:05:35:
c6:52:31:ed:3e:6d:be:11:42:ff:91:65:01:94:1e:6d:c1:01:
a6:24:53:5a:e9:9d:d9:43:2c:c6:44:a0:99:51:7b:07:0d:bc:
de:8a:22:77:6f:29:5a:11:b1:fa:17:0a:80:c1:30:69:b9:0f:
45:7f:98:7e:5d:a8:41:a0:ec:62:77:73:81:a8:45:2b:94:9b:
9e:dd:66:75:e2:7b:a7:b7:02:9a:c5:9c:9e:7b:20:3b:61:e5:
e1:6f:ed:28:b5:86:70:a2:a0:b8:d7:51:e4:0e:77:d0:05:f4:
6a:7f:79:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org