Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/dMOoJUy2qjgDNfRb3Qf0w1HXe1g.roa
File: dMOoJUy2qjgDNfRb3Qf0w1HXe1g.roa (raw, json)
Hash identifier: FBW9n6MFISI2mf5tokxEs1u4msa2zIhl0YP9nwrm0lc=
Subject key identifier: 74:C3:A8:25:4C:B6:AA:38:03:35:F4:5B:DD:07:F4:C3:51:D7:7B:58
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/dMOoJUy2qjgDNfRb3Qf0w1HXe1g.roa
Signing time: Thu 15 Sep 2022 02:48:39 +0000
ROA not before: Thu 15 Sep 2022 02:48:39 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 210.59.138.128/27 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:39 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=74C3A8254CB6AA380335F45BDD07F4C351D77B58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:19:ce:1e:b9:9c:58:87:e1:25:32:44:0a:2f:
f4:4e:c4:97:89:f4:e8:02:1a:f2:97:77:5c:0d:6d:
f3:17:4e:d3:d1:1f:de:f0:0a:48:9f:9a:4a:b3:a9:
9f:15:17:5c:66:4d:a8:31:b1:de:c2:97:53:84:b8:
21:6b:e0:4f:91:e5:85:8b:08:fa:35:47:06:a9:7f:
73:45:3f:b4:a3:05:43:3d:79:c7:a2:5c:07:e8:ee:
f6:4c:c8:a4:07:52:e3:21:13:d0:28:a4:f0:03:c8:
51:2e:a9:30:e8:e2:18:b1:76:54:23:36:b5:d2:8b:
06:eb:19:36:8b:4c:32:dc:fa:ec:b8:6d:33:54:78:
97:c5:b0:e7:31:18:6c:ca:86:e6:51:73:b6:1d:12:
15:21:38:82:c0:50:8e:87:a6:ac:c4:71:1e:77:15:
10:f3:85:43:c6:d8:fb:83:1f:8f:03:25:d5:8b:64:
86:55:26:c2:3d:27:16:9a:7b:13:76:e5:4d:72:bb:
31:2d:fe:60:d6:34:cb:0d:3f:d3:14:d3:2d:68:7f:
96:04:63:d2:bb:c0:09:3a:c5:db:13:87:a0:a6:5e:
85:a1:d5:1d:c3:25:28:a9:a2:ea:9a:74:6c:f9:62:
b4:8c:cd:7e:dc:20:5a:42:40:f6:ac:0e:82:56:cf:
36:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:C3:A8:25:4C:B6:AA:38:03:35:F4:5B:DD:07:F4:C3:51:D7:7B:58
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/dMOoJUy2qjgDNfRb3Qf0w1HXe1g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.59.138.128/27
Signature Algorithm: sha256WithRSAEncryption
0b:d3:4f:b1:10:ea:ea:d1:71:a0:a4:a5:06:9a:17:e4:f4:a0:
88:e6:af:5c:f3:07:f5:40:43:69:79:4b:64:ac:17:59:01:0c:
8c:4a:96:fc:ea:73:f2:5d:fd:56:52:ac:8a:fa:dd:e8:86:85:
fc:61:65:45:15:23:a7:85:d9:d1:5c:7a:40:b8:b0:79:fa:3a:
72:eb:59:ca:0f:b1:14:00:19:68:79:1d:07:bb:a5:73:22:9d:
3b:c8:a9:d8:bb:b8:07:ba:cd:8c:7f:82:90:1d:ab:bb:ab:74:
1b:bf:5d:79:3d:d9:d3:2e:82:b6:5f:7b:e3:9d:94:41:a1:15:
f2:d2:5d:20:d3:e2:6f:e8:b8:38:4d:f5:a2:d4:89:fa:77:9a:
2a:cd:98:68:68:91:45:a4:b6:25:c4:bf:a1:22:ac:8e:50:ae:
81:c7:1d:08:cf:75:3c:85:92:e3:ae:72:7f:4d:aa:79:91:97:
bf:64:ea:5c:cb:86:f2:10:3f:0a:c9:e4:69:2d:f8:69:6a:20:
56:0f:21:23:d5:fd:a7:25:1b:cd:c1:d7:59:9e:8a:f7:11:a7:
a2:c0:3b:4a:b4:e6:33:34:70:71:51:4a:1d:78:5c:07:f9:87:
93:6d:bf:19:7c:b0:13:f6:43:f5:3d:31:eb:d0:52:7e:7c:62:
7a:15:f2:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org