Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/lMfg6gkI4ruWeYyiC2Ps5D31ohA.roa
File: lMfg6gkI4ruWeYyiC2Ps5D31ohA.roa (raw, json)
Hash identifier: 8D7hir5xM/4AKUusWAEoQLVhmM1cPCB+m63fSzbCG38=
Subject key identifier: 94:C7:E0:EA:09:08:E2:BB:96:79:8C:A2:0B:63:EC:E4:3D:F5:A2:10
Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Certificate serial: 098D
Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lMfg6gkI4ruWeYyiC2Ps5D31ohA.roa
Signing time: Sun 07 Feb 2021 13:02:49 +0000
ROA not before: Sun 07 Feb 2021 13:02:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9680
IP address blocks: 168.95.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2445 (0x98d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Validity
Not Before: Feb 7 13:02:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=94C7E0EA0908E2BB96798CA20B63ECE43DF5A210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:56:36:d3:f6:61:4a:ed:aa:5c:d8:40:ad:cd:
07:d6:6a:a1:97:cf:06:16:ad:e1:11:91:8d:1d:a2:
9f:98:a7:83:9c:0e:f5:6a:e3:d2:91:af:a8:68:9b:
03:6f:27:4d:94:d9:18:08:e8:64:fc:9e:e8:ea:7d:
09:46:96:c9:5f:dc:2d:93:d4:e5:9b:cc:18:11:5b:
9f:f2:9d:19:bf:dd:41:62:eb:a1:92:6f:0c:77:72:
f3:17:01:42:dc:70:f0:85:f8:48:17:02:f5:28:49:
5a:06:86:45:fc:c0:46:d1:91:b2:84:0b:b9:43:67:
69:09:34:c3:bf:89:a7:85:b5:73:e1:24:e6:df:4f:
66:69:21:d2:f7:d2:89:80:9b:c4:f0:62:82:6f:6e:
f3:d9:a6:82:4a:ba:04:f2:87:7d:ad:c3:c1:a2:2c:
23:3f:01:76:f2:52:24:cc:53:47:d1:44:9e:c8:f5:
f7:3a:7f:22:e6:36:05:06:8b:2d:f5:82:1d:7b:a3:
2b:25:83:f7:f8:3c:74:93:10:8c:3e:21:d4:5b:7a:
17:bb:e9:43:98:bd:1c:1b:7e:28:4b:0c:db:f0:76:
89:93:79:78:23:7e:15:41:f5:ae:1b:16:2e:22:f9:
4a:23:e3:3b:fb:e2:d8:83:f1:b9:b7:a7:68:18:a2:
36:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:C7:E0:EA:09:08:E2:BB:96:79:8C:A2:0B:63:EC:E4:3D:F5:A2:10
X509v3 Authority Key Identifier:
keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lMfg6gkI4ruWeYyiC2Ps5D31ohA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
168.95.246.0/24
Signature Algorithm: sha256WithRSAEncryption
05:fe:66:8e:24:a3:98:f6:a7:c8:c8:f1:43:c1:c6:64:29:9d:
3f:b8:47:9c:05:de:87:dd:a6:17:50:68:9e:cc:cf:62:3c:81:
dd:09:b5:65:dd:5d:20:36:a8:d6:d1:38:ce:b5:d5:4a:3e:e6:
f0:5b:b0:82:bd:3b:00:e0:2a:3f:7d:e6:79:39:ad:94:97:20:
1e:d7:58:38:f0:82:16:d5:fa:01:60:4a:ee:35:4b:f0:78:d2:
cd:25:a4:78:94:9d:50:9a:c3:31:77:f4:c3:a9:5f:8b:50:84:
45:29:d4:ce:27:ba:38:3f:72:99:c0:85:1d:a9:fe:90:43:69:
31:1b:38:f8:ca:eb:1d:63:68:36:8d:0b:ba:31:df:1a:62:a6:
3a:e6:3e:8c:73:6e:fc:08:c7:a3:98:a5:e7:8e:21:c5:36:16:
94:3f:23:97:c2:3b:8a:c7:8e:de:37:f9:23:28:9c:82:2b:a2:
04:04:65:eb:44:b4:cb:20:29:cb:f5:49:a9:95:f5:0d:07:15:
ae:55:5c:36:f2:f5:8b:c1:11:76:c5:8a:c0:26:15:df:f5:79:
bb:76:3f:ca:53:61:5f:ee:88:d2:13:3f:22:71:ff:67:be:23:
52:43:08:f1:72:a9:10:13:02:6a:6b:2d:1e:cb:fd:4c:56:e1:
6e:4b:24:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org