Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/jTvCAj_1Qm4iPrR329H3Hh9YL9o.roa
File: jTvCAj_1Qm4iPrR329H3Hh9YL9o.roa (raw, json)
Hash identifier: WzZZPqx3wNU2QscHQbDNTZNaOusuu12hPpHzIRpzaF4=
Subject key identifier: 8D:3B:C2:02:3F:F5:42:6E:22:3E:B4:77:DB:D1:F7:1E:1F:58:2F:DA
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0B09
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/jTvCAj_1Qm4iPrR329H3Hh9YL9o.roa
Signing time: Sun 07 Feb 2021 11:46:42 +0000
ROA not before: Sun 07 Feb 2021 11:46:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17714
IP address blocks: 203.78.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2825 (0xb09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:46:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8D3BC2023FF5426E223EB477DBD1F71E1F582FDA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:fe:6a:33:75:f7:1c:df:25:f2:9a:52:0d:23:
72:9d:c5:0b:3d:2a:0d:66:a4:42:45:8a:c0:3c:24:
cc:06:6b:f9:bd:0c:44:83:4c:e7:7d:0c:cf:df:50:
4b:0e:b1:d8:a2:a9:45:6a:3b:72:d4:6a:43:f8:2f:
93:65:de:2d:c3:6e:6c:b1:6c:08:bd:d6:09:77:0f:
02:9b:4b:d0:ad:1a:d3:f7:17:b4:df:6f:e0:53:a6:
09:61:4e:0f:d2:bf:42:c5:17:37:bd:41:22:71:80:
41:77:98:53:02:20:e0:5b:ab:23:e4:e0:5a:4b:60:
e3:50:25:a3:29:ba:75:48:60:35:2f:22:06:87:35:
06:4b:59:90:ee:86:23:1a:a9:f5:c6:19:bd:32:96:
08:58:e0:b1:f0:29:6a:80:bd:ea:99:41:4b:11:4f:
fe:c8:8a:3c:f3:ea:59:07:14:b8:5a:3d:08:91:1f:
dc:e6:67:bc:2f:0a:0a:9e:d4:f4:b8:7f:1c:8e:be:
62:df:e4:1e:07:6f:30:9d:d7:ce:f4:85:eb:4f:75:
30:0b:b3:b5:10:e2:3e:3b:22:0e:aa:db:fb:89:be:
51:df:a8:bc:b7:1a:0b:4a:1c:1a:7d:14:51:78:a2:
f4:2f:0a:dc:de:51:4e:06:e6:a0:20:ca:e5:2a:0e:
d7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:3B:C2:02:3F:F5:42:6E:22:3E:B4:77:DB:D1:F7:1E:1F:58:2F:DA
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/jTvCAj_1Qm4iPrR329H3Hh9YL9o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.78.190.0/24
Signature Algorithm: sha256WithRSAEncryption
24:e5:6e:c4:3b:04:bf:99:97:0d:c5:55:2d:39:b4:c2:80:60:
d4:de:46:8b:d0:c4:50:62:cb:e1:87:0e:cf:df:05:79:b4:d9:
ea:b2:12:99:77:43:68:f0:b3:dc:b5:38:8d:88:2a:34:48:b6:
25:88:73:86:07:40:2c:8c:86:3e:4b:0d:b5:61:3f:00:ab:2c:
d9:73:eb:cf:5b:44:e0:11:7e:d4:93:28:33:9d:09:7e:a4:ea:
12:18:43:3f:cf:cf:66:be:70:00:c6:df:df:be:ff:f9:f8:ec:
88:13:d5:34:ff:7b:66:be:ea:25:53:37:fe:46:9f:af:3c:f3:
27:c3:24:8e:ae:83:a5:76:a4:05:e7:22:f0:e0:de:c2:58:01:
07:8a:51:6f:1c:e6:1c:f5:71:25:7c:1b:b1:ec:74:e7:76:79:
ae:c9:30:eb:a6:1b:63:7a:9a:fa:fa:a5:25:30:a5:5d:e2:f0:
cf:23:75:bf:a3:16:9e:85:c7:10:38:d4:1f:3d:2a:9e:a5:98:
f8:ad:cf:a0:4b:83:7e:4b:1c:89:19:50:8b:77:f4:5f:44:60:
2f:68:3c:95:69:d0:1d:90:c8:a5:cc:95:78:8c:c1:32:f8:be:
91:78:bd:eb:19:d1:1f:b2:dd:c9:cb:c6:32:4c:e6:8f:a7:1f:
7b:f4:6e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org