Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/efx90zYHmIpq2y3Ky7QgS0XEMkI.roa
File: efx90zYHmIpq2y3Ky7QgS0XEMkI.roa (raw, json)
Hash identifier: RzR4N3bRDOCZtUJCmvdisV/QfHdgcOutloSzSrNTVZQ=
Subject key identifier: 79:FC:7D:D3:36:07:98:8A:6A:DB:2D:CA:CB:B4:20:4B:45:C4:32:42
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/efx90zYHmIpq2y3Ky7QgS0XEMkI.roa
Signing time: Thu 15 Sep 2022 02:48:35 +0000
ROA not before: Thu 15 Sep 2022 02:48:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17714
IP address blocks: 175.111.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=79FC7DD33607988A6ADB2DCACBB4204B45C43242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ff:d3:1a:09:28:69:2e:4f:f7:d0:f3:b9:58:
8b:18:ed:f4:43:10:c7:3b:da:03:e2:9c:2d:9d:e7:
51:a9:bb:39:34:b3:85:f4:e8:a7:36:14:d8:df:56:
76:c8:ad:5f:e8:b1:74:27:cd:a9:5e:3c:1b:40:f7:
1b:fc:1a:f8:2c:16:55:2a:a1:08:c6:fd:55:26:7c:
a1:f6:23:63:71:b5:4e:b4:7f:14:dc:51:1c:0d:91:
70:c7:0c:87:da:c6:65:41:49:44:e4:ad:a3:52:1c:
3e:80:c8:44:72:58:81:f5:11:5e:ea:33:34:5f:16:
01:cd:28:0b:bf:48:20:71:d7:3c:f5:35:cc:27:93:
69:e5:86:80:79:00:6c:4c:a4:49:ae:71:aa:93:a7:
47:0a:5b:90:8f:9b:0d:da:8e:b7:d7:b3:f9:75:6f:
c7:b9:85:3c:87:3e:1f:f9:39:68:c3:51:ec:2d:f7:
0b:2e:6c:6d:02:6f:6e:38:28:f1:cc:8c:47:e0:6d:
fb:e6:cc:8a:98:45:a4:6e:c4:f8:63:ca:50:fa:90:
51:53:d2:90:54:ff:9f:bd:48:df:6a:4f:1a:f3:97:
04:91:39:5a:92:c2:d9:78:86:6d:f7:d3:d9:5b:e5:
17:5d:c3:32:51:15:00:c1:0d:c7:a8:6e:fc:01:51:
5b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:FC:7D:D3:36:07:98:8A:6A:DB:2D:CA:CB:B4:20:4B:45:C4:32:42
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/efx90zYHmIpq2y3Ky7QgS0XEMkI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.255.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:4e:c2:82:bb:1e:49:32:e7:9a:60:5f:b0:fb:70:cb:79:65:
bb:c1:58:10:08:69:82:1a:b7:72:81:f3:22:ef:1d:e2:d9:49:
a7:6b:34:92:af:51:09:50:86:fc:b9:4f:60:97:c5:81:5a:5e:
c1:b3:9e:58:52:1a:bd:fb:84:e0:43:29:f3:87:8e:54:b9:8b:
8c:b9:20:c8:a3:48:94:8d:b1:03:41:35:84:13:92:96:6d:2c:
f2:ae:f5:2c:78:72:de:72:5b:d7:c6:1e:da:f7:97:07:b3:aa:
2a:ba:f9:49:05:1f:c5:15:16:89:bd:14:58:34:30:e3:75:2b:
19:e5:03:ea:80:a5:1e:76:47:67:4c:06:05:fb:dd:44:47:49:
e3:4c:f8:dc:25:ad:89:ab:a8:5d:14:d8:9f:b8:f7:79:04:8c:
92:71:a5:91:97:8e:06:06:15:20:87:04:26:96:9b:f2:27:53:
97:31:e4:38:ec:5c:8d:41:b7:1c:41:f9:20:1a:24:de:08:5a:
ba:ee:33:e2:d0:23:cc:f9:7d:9e:f0:c2:dc:0b:34:f5:a6:d7:
f6:aa:25:ec:66:b2:68:01:57:9e:9a:49:17:4c:cc:80:f8:04:
6d:8a:b8:49:97:ed:24:9c:a4:8e:27:a2:e1:d2:94:f3:44:7a:
ae:ae:af:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org