Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/dhlH5cQSpqch4N5RgC09i0pSemg.roa
File: dhlH5cQSpqch4N5RgC09i0pSemg.roa (raw, json)
Hash identifier: aICLLJ0lqO7Iq4H1QslR6g7mfcL4xjwpvESz1uq/Bjk=
Subject key identifier: 76:19:47:E5:C4:12:A6:A7:21:E0:DE:51:80:2D:3D:8B:4A:52:7A:68
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 087E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/dhlH5cQSpqch4N5RgC09i0pSemg.roa
Signing time: Tue 29 Sep 2020 09:58:48 +0000
ROA not before: Tue 29 Sep 2020 09:58:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 114.30.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2174 (0x87e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:48 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=761947E5C412A6A721E0DE51802D3D8B4A527A68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:31:7c:0f:5e:6f:79:c8:8d:c5:5e:aa:94:47:
3c:a5:99:cb:c3:c6:72:8f:29:28:3a:56:07:40:9c:
6c:29:90:ac:45:0a:15:f1:09:44:d8:f9:b5:62:ae:
cf:5b:67:04:d0:c1:d2:1c:f5:3a:40:98:0f:59:5d:
94:b5:3d:6d:7a:55:5b:0a:d9:20:98:17:7c:34:27:
de:42:36:c6:26:a3:95:de:ab:b9:6b:bc:94:da:1e:
f4:34:ca:73:95:0b:fe:7d:45:ad:cf:2b:ef:d5:98:
69:26:3a:81:72:b1:31:7e:12:8c:b6:0d:44:c6:10:
c5:4f:6b:c6:2e:7d:1d:00:14:63:55:28:6a:a0:ce:
08:8f:69:1d:86:5e:0e:fa:d6:a0:c2:57:3d:ce:50:
cd:d6:68:c5:1e:d3:f6:ac:7a:a2:52:c1:5e:a1:b2:
05:26:01:19:cc:21:88:11:96:98:c1:25:63:3e:84:
ef:96:b4:89:9f:b5:fa:03:db:0e:83:69:cf:af:07:
4b:92:b9:8b:1e:7b:27:7f:d5:98:54:2d:22:06:18:
11:14:fd:74:a3:36:c8:54:e2:62:34:26:75:d4:a5:
80:a1:3f:24:32:3f:96:29:be:5a:b9:72:90:59:5b:
2c:c6:9b:e5:35:f1:09:01:7a:32:eb:df:b4:11:d4:
85:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:19:47:E5:C4:12:A6:A7:21:E0:DE:51:80:2D:3D:8B:4A:52:7A:68
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/dhlH5cQSpqch4N5RgC09i0pSemg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.30.44.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:6f:d5:6e:a5:f2:5d:1f:13:f4:44:03:d2:a6:05:34:32:bc:
fa:9d:53:0b:93:1f:55:c9:1d:76:a1:18:9e:60:e4:9c:41:ae:
4d:44:bd:e8:90:6c:d8:db:ff:83:b7:fe:74:fe:09:93:1b:01:
b3:97:72:dd:18:66:28:56:bd:73:fc:7d:59:d4:35:ed:ab:90:
d4:17:7c:b1:2b:17:2f:3e:58:fd:a8:3e:1a:03:dd:4d:d9:a7:
6d:15:20:83:23:44:2d:9c:7d:e3:8f:b6:00:ee:11:9a:e1:92:
99:7b:d0:84:5e:ed:04:2c:fc:f1:2b:16:d7:44:9b:ce:41:dc:
e2:0d:10:29:34:32:55:c2:1c:f5:91:31:6e:6b:65:49:5a:24:
25:42:94:92:09:03:3e:8e:ab:f5:ee:4f:ac:0a:88:43:60:99:
c7:c8:1d:f0:9e:e8:9d:44:12:9d:d9:7a:50:63:a0:28:45:62:
22:7a:54:5a:5f:17:7e:81:6b:39:2a:21:4b:dd:ca:1d:33:14:
71:fb:b9:9d:76:6c:e8:87:b7:65:ae:46:c7:4b:a8:d0:48:a3:
79:18:39:9c:63:f7:cc:ed:36:c6:78:53:35:b6:7e:d0:0c:ab:
81:fa:14:e7:e3:c7:22:51:34:bf:da:5f:2e:97:26:65:78:d5:
28:29:ec:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org