Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/kD-ubgIXLI--PYOyWq3wizLNmcU.roa
File: kD-ubgIXLI--PYOyWq3wizLNmcU.roa (raw, json)
Hash identifier: tdTM7uZx8LWsI9ZtHT15TbkYAE37Sp+iYrtnqKk4p6s=
Subject key identifier: 90:3F:AE:6E:02:17:2C:8F:BE:3D:83:B2:5A:AD:F0:8B:32:CD:99:C5
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kD-ubgIXLI--PYOyWq3wizLNmcU.roa
Signing time: Thu 15 Sep 2022 02:47:59 +0000
ROA not before: Thu 15 Sep 2022 02:47:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 1.160.0.0/12 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:47:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=903FAE6E02172C8FBE3D83B25AADF08B32CD99C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ea:12:f0:3e:a0:b5:a1:55:74:df:83:16:bc:
06:d7:39:63:50:ad:45:6a:60:cc:47:84:b6:21:df:
6a:16:10:30:61:bb:9e:50:dc:eb:01:77:6c:7a:fa:
89:22:cd:d4:f3:bf:0a:73:b2:df:3f:37:74:28:cb:
56:40:d8:d2:47:65:93:54:5b:d6:ac:39:dd:a4:ed:
bd:dc:39:05:bf:b4:07:9a:ae:ee:e3:6b:df:5f:7c:
49:bb:aa:34:71:5c:b2:ab:09:c4:2e:14:a4:95:09:
81:b6:f0:37:cd:11:64:df:1a:de:17:8f:2e:43:78:
ce:a6:5b:ce:5f:27:76:cb:25:af:b2:b3:76:9c:9d:
dd:76:87:76:0a:e1:db:dc:12:f0:5f:01:e0:d7:22:
db:b8:39:c4:e7:c9:c4:34:bd:08:30:77:42:12:0c:
93:31:4a:25:42:80:78:e1:d1:63:ed:14:90:c6:94:
de:7a:fd:1d:6b:46:1c:7b:5a:51:4b:23:80:a6:4a:
0f:25:95:41:53:f3:2b:cf:0d:c8:d3:07:8c:aa:67:
78:17:70:e4:44:56:ce:f7:cc:d5:2e:59:f0:19:3e:
87:1a:aa:d3:be:40:29:3a:46:b5:8f:63:a7:e6:0c:
fa:41:ae:07:24:f1:71:cc:e2:af:dc:3e:f8:4e:51:
a1:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:3F:AE:6E:02:17:2C:8F:BE:3D:83:B2:5A:AD:F0:8B:32:CD:99:C5
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kD-ubgIXLI--PYOyWq3wizLNmcU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
1.160.0.0/12
Signature Algorithm: sha256WithRSAEncryption
a6:67:6f:57:46:b0:b5:d1:be:7f:c0:78:35:40:fa:7c:96:22:
cf:43:25:27:1a:c2:67:cb:2e:31:ca:21:a3:61:95:55:c7:68:
b8:68:9c:be:d0:4b:79:11:03:de:d2:30:ea:4f:ed:30:63:43:
17:8c:ab:b7:12:89:d7:1d:48:10:3a:43:4d:a0:cc:c0:71:1f:
34:75:c2:90:a6:f3:a2:cf:ef:fc:e0:d1:89:72:28:2a:30:23:
ab:23:85:b2:38:13:69:4e:9e:5e:a9:fd:81:be:6d:91:2a:38:
37:70:6c:78:40:03:62:65:3c:f2:e0:32:8c:a4:ce:6e:03:03:
57:d6:83:3f:33:b0:f8:96:82:8c:52:8c:1f:4c:fa:66:c0:96:
37:e9:00:64:48:07:b8:57:db:06:5a:3d:df:b6:76:e0:92:18:
18:a6:5b:60:70:12:34:a4:4f:24:a3:4c:8e:ff:87:ce:f5:6a:
3c:d0:88:da:fc:7e:7a:3f:0d:fa:a1:34:43:e1:68:7c:2a:91:
77:d2:de:a6:1a:32:e3:ed:88:b3:42:af:2f:fd:a7:91:f6:53:
4e:64:f9:81:5d:60:47:db:f6:2b:3b:b4:61:6e:6b:13:58:dc:
d9:93:32:8b:af:15:49:d9:d0:26:b1:79:c2:0e:0c:61:9c:f9:
8e:f9:86:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org