Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/e-Ei_okk8bI_vuUBwbOeX7hqdVs.roa
File: e-Ei_okk8bI_vuUBwbOeX7hqdVs.roa (raw, json)
Hash identifier: tLlGpCJ9nXQ5SiOucCB9oO1JefQWAxD85OAFPAgKRO8=
Subject key identifier: 7B:E1:22:FE:89:24:F1:B2:3F:BE:E5:01:C1:B3:9E:5F:B8:6A:75:5B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C61
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/e-Ei_okk8bI_vuUBwbOeX7hqdVs.roa
Signing time: Wed 29 Sep 2021 02:51:12 +0000
ROA not before: Wed 29 Sep 2021 02:51:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17421
IP address blocks: 42.64.0.0/12 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3169 (0xc61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:12 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7BE122FE8924F1B23FBEE501C1B39E5FB86A755B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:20:9b:f7:51:85:6a:06:e8:33:09:31:3e:70:
5b:4f:7b:86:91:1e:ea:2d:a4:14:70:79:e8:dd:a0:
8a:e0:e8:44:b5:45:bd:fe:58:50:e2:1e:26:de:e5:
f5:03:2f:22:83:c7:71:59:b0:39:b0:9d:2a:a7:ba:
36:80:89:44:c1:56:e8:5b:86:08:7a:e5:bc:14:c9:
74:83:2f:97:d0:58:25:ba:45:3c:ae:17:9d:af:73:
a8:19:7d:78:6c:68:bc:97:ec:fc:54:b3:86:7e:9a:
e6:ad:6c:85:c6:e7:65:f0:34:b7:4c:dc:17:19:32:
c0:84:5e:b9:be:f0:c7:e6:fb:03:e2:09:8b:a4:1a:
74:ba:9f:29:33:4a:eb:30:f4:10:f5:09:31:f0:03:
48:43:3a:df:d4:32:b2:cf:80:a0:8d:52:a8:95:45:
de:2d:69:a3:49:09:ff:a8:76:7d:3a:05:fb:f3:e4:
e4:9e:c5:4b:dd:6c:86:13:26:44:10:6e:c7:a1:df:
32:f2:4b:08:e9:18:e1:82:04:ee:83:3c:c6:a3:98:
bc:1c:86:66:5b:14:4b:d7:35:27:67:ea:af:c3:f7:
be:1a:35:8a:2e:3d:df:87:f9:b5:69:4a:4e:1a:e0:
22:66:bf:96:39:9e:e5:37:77:96:6c:37:50:9d:6f:
bd:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:E1:22:FE:89:24:F1:B2:3F:BE:E5:01:C1:B3:9E:5F:B8:6A:75:5B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/e-Ei_okk8bI_vuUBwbOeX7hqdVs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
42.64.0.0/12
Signature Algorithm: sha256WithRSAEncryption
8c:7e:29:0a:07:1a:b7:45:3e:8b:c7:6c:a1:33:4e:de:c6:6e:
69:5a:da:e7:4b:77:c8:82:c3:01:87:ac:27:a8:b9:29:9a:5b:
35:bc:eb:4a:4e:31:49:23:dd:e1:a7:81:e3:ff:b5:ad:66:fd:
1f:54:9d:45:df:92:12:40:e9:f3:f6:a0:8f:cd:15:a1:83:7d:
ac:b2:ad:ef:1e:ce:ac:2f:2e:f7:17:c8:65:81:3b:a1:1c:64:
2a:72:32:f3:bd:9e:4c:eb:4c:5f:73:14:01:36:8c:6f:d7:37:
9c:fa:3b:81:d3:47:ec:f0:5b:91:b4:50:b7:0d:ea:16:a6:cc:
c6:e8:63:9f:5c:4c:62:bb:2d:6a:98:fc:22:ed:b3:39:8c:fd:
8f:cf:bc:94:86:2c:e9:86:63:3d:e7:a4:d1:8f:59:f2:65:8c:
a5:4e:6a:ff:c2:30:e5:31:85:84:31:4a:66:6f:c4:7d:b0:bf:
46:78:0f:27:6e:8c:88:c4:d5:c6:39:f5:bb:be:cc:b5:da:44:
48:db:22:bf:0c:13:d9:b7:fa:ed:5c:e2:a3:6f:39:c9:10:3f:
f9:88:8f:aa:18:1c:af:1c:d8:b6:35:06:b5:ac:91:29:2d:2f:
7a:72:ad:d3:a3:bc:40:57:61:dd:43:d5:a0:1c:dd:71:2f:08:
2c:df:52:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org