Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/gwL5PFfhsSsBmKzVXlfPYSKDHzo.roa
File: gwL5PFfhsSsBmKzVXlfPYSKDHzo.roa (raw, json)
Hash identifier: ihyMGkpFc/xzIN511nEhpUlUHAe8WH/obId9WsfFEuw=
Subject key identifier: 83:02:F9:3C:57:E1:B1:2B:01:98:AC:D5:5E:57:CF:61:22:83:1F:3A
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 083D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/gwL5PFfhsSsBmKzVXlfPYSKDHzo.roa
Signing time: Tue 29 Sep 2020 09:58:30 +0000
ROA not before: Tue 29 Sep 2020 09:58:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17714
IP address blocks: 175.111.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2109 (0x83d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:30 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8302F93C57E1B12B0198ACD55E57CF6122831F3A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:94:81:1a:f1:2f:29:4a:32:7b:9e:86:71:27:
9e:23:c8:41:a1:2a:f2:cf:6f:b2:91:de:cc:97:77:
a0:2d:16:95:c5:4b:3e:26:be:84:cd:61:41:1b:c1:
96:65:b5:e0:59:b4:65:2e:76:47:b2:e3:46:71:46:
ab:8a:41:1c:9a:1f:9e:86:67:55:60:93:4c:a6:b0:
6c:74:aa:bd:75:40:c3:a2:a4:12:f5:dc:9d:9a:f6:
ee:5f:dd:e1:b4:17:6f:0d:73:bb:9d:73:89:40:4d:
8d:57:1c:ab:c1:38:a1:46:8d:f8:f4:fe:2a:44:5a:
38:b5:0a:bd:e8:fe:22:4e:25:84:5d:e3:5e:7b:b4:
d0:26:4d:d5:08:9c:dd:d3:89:4d:16:64:89:ab:5b:
ce:6e:57:c4:4b:4b:5f:f7:43:c9:54:65:b6:57:75:
36:f5:97:5c:cf:d9:8f:4b:cd:1d:84:74:ba:23:d0:
ed:fc:f6:41:c5:b7:7a:66:0f:b6:09:f7:8b:a1:1b:
4a:4f:9b:ec:3f:50:44:83:53:be:dc:4c:47:d0:7f:
f8:de:83:df:60:7f:15:b9:62:a2:bf:25:8d:fe:ad:
fe:69:25:4c:6f:aa:60:ce:87:d3:9f:a9:83:54:51:
2a:e9:3f:39:d0:96:d8:38:e4:e0:42:0a:d7:01:02:
db:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:02:F9:3C:57:E1:B1:2B:01:98:AC:D5:5E:57:CF:61:22:83:1F:3A
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/gwL5PFfhsSsBmKzVXlfPYSKDHzo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.252.0/24
Signature Algorithm: sha256WithRSAEncryption
66:19:ef:00:3d:ed:a7:3d:06:cb:76:fa:65:b8:36:af:e2:8d:
18:35:30:6f:b2:ea:67:3c:d0:5e:36:df:de:0e:13:6e:80:73:
90:db:17:08:1b:18:af:23:1c:07:4e:a0:fb:75:84:50:6b:78:
ca:9d:3f:d5:bf:7a:91:62:fc:82:90:c4:25:58:4e:bb:80:02:
ec:b7:2a:cf:55:2f:7a:40:55:a6:c9:24:87:98:f8:e2:d6:e9:
e9:ce:0d:2a:a0:6a:d6:88:16:4d:b2:07:c1:f0:5c:6b:78:40:
bc:9b:83:d2:e4:67:f5:5d:e4:df:dc:45:83:a0:4f:c5:83:f2:
f0:38:c3:26:d1:8f:bd:fc:04:25:64:4b:c5:07:15:84:6d:09:
52:21:3f:c8:4b:76:9d:34:a3:eb:11:ef:a7:5f:cd:bb:26:56:
b8:c9:d6:89:10:19:09:38:76:92:89:85:83:35:b6:32:cf:68:
0f:25:9a:bc:c7:a6:23:92:96:b0:4b:38:08:9f:e7:7a:47:59:
b1:25:e9:4f:7e:b4:10:4d:1c:58:05:ab:8a:7c:91:96:1c:3e:
f3:fb:45:16:9a:8a:9c:84:32:88:11:5f:62:f8:55:24:5e:04:
dd:35:bd:d6:2b:cf:dd:d1:c8:3e:f4:47:ab:47:e5:3b:70:4d:
6c:9c:1c:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org