Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/iHY00B7ZdN-_ohlF41wtuxyLMuo.roa
File: iHY00B7ZdN-_ohlF41wtuxyLMuo.roa (raw, json)
Hash identifier: Mdb21yw7z0wllZsBWY4jqpUeRgYJdMrRiHBN5XIZ4kU=
Subject key identifier: 88:76:34:D0:1E:D9:74:DF:BF:A2:19:45:E3:5C:2D:BB:1C:8B:32:EA
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/iHY00B7ZdN-_ohlF41wtuxyLMuo.roa
Signing time: Thu 15 Sep 2022 02:48:02 +0000
ROA not before: Thu 15 Sep 2022 02:48:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 125.224.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=887634D01ED974DFBFA21945E35C2DBB1C8B32EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:79:c3:33:3d:d1:ac:db:d0:1f:02:e4:eb:fa:
7e:93:55:98:06:5d:ba:52:c6:72:9f:e7:2a:b9:79:
e2:30:35:17:c7:cd:10:4e:19:61:9b:59:c6:43:4f:
ad:c4:58:2c:12:c4:0d:5d:de:3b:97:2f:fc:7a:db:
19:25:de:af:70:f4:ef:56:38:b2:00:18:3c:d7:42:
de:7f:a8:d5:11:56:22:3b:bb:86:f9:e9:dc:56:a7:
de:de:3d:85:f1:5a:53:bf:bf:e9:f5:df:bb:b3:c4:
7f:fb:7f:5f:1e:5f:55:41:8f:f1:ed:cf:3f:11:f6:
68:f0:8a:35:fe:37:cb:50:e8:9d:e2:5a:e9:2d:4c:
34:be:e1:ab:97:a2:b8:a2:59:0f:40:49:47:eb:e2:
2b:ef:d1:25:73:5d:6f:34:cc:cb:a3:c6:5a:52:bc:
1b:21:44:7a:01:60:15:21:1c:2f:b0:cb:9c:8e:5c:
89:aa:63:e8:a9:cb:0c:5f:b0:d8:b6:1c:21:6c:bc:
ce:e0:5d:3f:16:2d:20:c1:40:d0:e9:a2:04:e8:c6:
28:fd:93:65:a3:06:5a:6c:f5:3d:90:69:7a:5b:27:
43:27:99:5a:57:91:92:af:01:e7:76:8b:79:bf:cb:
38:11:21:fc:ea:26:30:41:36:60:95:98:00:9b:f1:
b8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:76:34:D0:1E:D9:74:DF:BF:A2:19:45:E3:5C:2D:BB:1C:8B:32:EA
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/iHY00B7ZdN-_ohlF41wtuxyLMuo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
125.224.0.0/13
Signature Algorithm: sha256WithRSAEncryption
4e:77:6e:ff:2e:91:64:f0:c9:61:b2:e2:38:fd:61:37:02:b6:
87:f4:58:c0:85:ed:d2:92:bb:a0:29:7b:ca:5d:9d:39:38:e0:
ef:bd:78:c7:81:30:32:33:f8:9c:04:b3:a5:a1:35:8a:dd:ee:
1b:1a:64:7e:3e:6d:07:63:9d:c3:23:95:b6:9f:6c:ec:74:b5:
13:49:66:8e:15:07:80:00:10:29:cd:aa:49:68:af:b1:b5:41:
01:02:dd:98:56:01:a1:2f:09:b3:a4:2b:c7:6a:49:f1:df:ff:
b3:4d:ac:81:8f:e3:0f:e1:98:c2:cf:6a:10:2e:20:5f:71:af:
aa:fe:98:67:8b:d9:ab:44:ac:09:8e:4f:dc:8e:bd:07:f8:f8:
67:da:5b:de:cb:be:15:9b:0d:9a:16:cc:aa:25:f7:a3:e2:f4:
90:7b:96:7b:0e:2b:71:bf:32:29:84:fd:df:cc:2f:72:ab:d0:
00:a4:13:98:df:b7:d1:39:d2:91:f4:50:f8:41:40:17:e4:5b:
47:72:76:d4:57:3e:73:98:b7:ed:8d:dd:55:24:c4:2f:09:10:
fb:55:a4:34:6c:2f:a3:ed:aa:d9:25:56:28:8c:14:dd:da:c4:
37:b3:38:c4:15:ec:42:cf:65:4d:20:39:c7:c1:95:d8:73:bf:
f1:58:20:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org