Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/kXHjylnqN2eYgp2-2pL8uDhC01E.roa
File: kXHjylnqN2eYgp2-2pL8uDhC01E.roa (raw, json)
Hash identifier: y2quK1Yl0nbAtqJwFmCQgrzDTKb0zMqjRHgGtx8ga+s=
Subject key identifier: 91:71:E3:CA:59:EA:37:67:98:82:9D:BE:DA:92:FC:B8:38:42:D3:51
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AB3
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kXHjylnqN2eYgp2-2pL8uDhC01E.roa
Signing time: Sun 07 Feb 2021 11:38:47 +0000
ROA not before: Sun 07 Feb 2021 11:38:47 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 218.168.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2739 (0xab3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:47 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9171E3CA59EA376798829DBEDA92FCB83842D351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fd:2e:fe:1c:7d:dd:a5:7d:76:a7:a3:e2:ee:
33:9b:b2:00:35:8b:11:c1:21:be:e4:cd:49:b5:35:
51:36:ba:9e:6a:27:e2:fc:bd:0b:7d:49:ef:3a:95:
39:f0:bc:1a:39:2a:99:88:d5:e8:92:50:f6:7f:fb:
b0:e4:2b:b3:16:df:49:63:1c:67:59:38:fc:10:dd:
21:47:d3:29:94:fc:79:13:f5:39:28:b7:76:ef:95:
c0:bd:5b:2e:58:a5:3e:c2:d9:e4:b7:b2:33:8c:b4:
5c:08:d8:db:d6:41:69:da:92:45:c8:ea:ec:8f:c9:
34:56:74:47:b2:80:36:1f:93:25:cf:5e:e7:26:1a:
57:97:e6:e2:d2:8d:7f:de:e5:e2:c3:2f:e7:e0:88:
c0:bb:ca:bd:21:ba:4c:fe:36:0c:de:61:82:6c:fb:
62:e7:5f:fa:1e:bb:cb:02:1c:2a:7b:32:b9:1a:1c:
7d:99:bb:1d:17:2c:5b:5c:ad:3c:73:16:0c:2a:a7:
02:ae:48:ba:06:13:3c:f0:4c:55:80:fc:fd:32:7d:
fd:5a:cf:d6:90:30:5a:87:11:64:73:36:e7:96:3b:
1a:e8:06:bf:27:d3:00:a8:e3:87:9f:d5:01:0d:93:
a1:ab:da:96:2c:75:68:93:ba:28:1b:08:bf:ef:ad:
3c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:71:E3:CA:59:EA:37:67:98:82:9D:BE:DA:92:FC:B8:38:42:D3:51
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kXHjylnqN2eYgp2-2pL8uDhC01E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.168.0.0/13
Signature Algorithm: sha256WithRSAEncryption
42:14:b7:4d:46:1c:dc:06:5d:d9:bd:73:aa:0d:e4:f6:7f:6d:
8d:bf:24:87:8a:22:f5:7c:80:95:42:4d:1d:fd:47:48:ab:cd:
27:56:80:ad:cc:a4:a3:f8:10:1a:b7:e6:a0:59:97:6e:0e:7d:
94:09:7b:06:b7:3f:10:11:d1:0d:92:74:63:7b:84:e0:35:df:
f7:d0:0a:bf:f4:f8:84:7b:4e:52:a8:6e:6c:21:65:f3:98:30:
a5:05:d5:b9:d0:30:cc:e9:16:4c:45:f6:34:26:ae:1b:15:6f:
76:26:3c:61:15:fe:85:c2:ae:28:96:6e:ca:9e:b3:2d:5d:80:
54:8a:28:dd:38:bb:62:88:42:66:84:dd:0f:c1:30:f6:9f:60:
02:c8:c9:6a:39:d3:9c:ff:1d:41:a3:3a:e4:51:94:3f:f8:87:
a0:51:36:f5:cf:82:ef:52:8a:0b:86:e7:71:ed:9d:e4:b8:99:
21:7c:a3:6e:0b:af:7d:f4:97:62:65:76:90:01:6e:e5:be:9b:
5b:0d:d2:52:e0:b9:a2:67:7a:18:3c:80:04:21:f3:ff:27:94:
9b:bb:65:7a:76:5d:0e:3e:a1:ec:54:34:a1:8e:10:13:84:bb:
15:eb:7b:97:bf:1d:23:7b:79:da:58:42:41:65:37:68:2d:ee:
f7:9d:22:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org