Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/mULXj70A439DV9iDPEi8ZBR0xyQ.roa
File: mULXj70A439DV9iDPEi8ZBR0xyQ.roa (raw, json)
Hash identifier: xUx85RrRZBPAVM18i4/4D7fUkJFkUbQDuJyPqmBI1Us=
Subject key identifier: 99:42:D7:8F:BD:00:E3:7F:43:57:D8:83:3C:48:BC:64:14:74:C7:24
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C26
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mULXj70A439DV9iDPEi8ZBR0xyQ.roa
Signing time: Wed 29 Sep 2021 02:50:56 +0000
ROA not before: Wed 29 Sep 2021 02:50:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 211.72.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3110 (0xc26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9942D78FBD00E37F4357D8833C48BC641474C724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ac:fd:07:a1:a7:5e:b6:2d:1e:f8:cb:03:4f:
bd:03:40:81:ea:4a:4b:d3:8d:b1:8f:49:2a:36:b2:
4e:be:04:1c:64:e3:46:c7:e8:b3:b4:94:29:21:95:
da:6e:06:bb:cb:8a:e1:d8:40:96:3e:48:d9:79:0b:
7a:26:50:e8:60:11:42:bb:91:45:14:1b:c0:5d:76:
e0:fa:e7:ae:3c:ee:7f:db:52:3e:0c:86:62:3a:e2:
e7:ae:a7:22:03:f5:94:c6:fd:4e:5f:c3:e4:e8:34:
b8:c8:9a:40:cb:78:4e:70:2e:70:6f:22:2f:fb:07:
b5:21:e6:a0:e6:17:0c:74:51:9a:02:36:38:c0:c9:
a0:b8:4d:b1:df:2e:93:64:dc:6c:15:a7:b9:e7:7e:
d5:6e:69:90:f7:b6:c6:c8:c4:fa:86:2e:29:6c:70:
71:13:35:f5:d7:18:4f:a6:ee:f2:19:9b:34:ae:0a:
f5:57:e6:73:99:7c:d4:f6:35:03:54:2a:71:c6:c2:
a2:b0:4e:ff:56:21:11:8b:10:52:d5:99:76:18:79:
2c:2d:24:a9:2a:4a:6b:db:05:c3:38:2b:23:31:ec:
70:b1:5d:5c:be:38:73:5a:87:19:2f:30:df:a0:e5:
0a:03:dd:45:f3:5f:35:cd:14:11:42:1e:dc:05:50:
2f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:42:D7:8F:BD:00:E3:7F:43:57:D8:83:3C:48:BC:64:14:74:C7:24
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mULXj70A439DV9iDPEi8ZBR0xyQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.72.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ad:10:f5:f4:80:16:b1:d9:70:6f:07:81:d2:69:ba:70:f4:04:
96:04:07:33:6a:16:17:95:c3:33:1c:00:48:69:36:49:32:4f:
ac:29:b9:da:c5:39:cf:99:61:50:cc:53:70:e6:e9:a1:4c:2c:
94:5f:54:b7:cc:fa:20:58:77:40:05:0b:00:74:d7:e3:b8:41:
c9:d6:bf:c2:a7:8c:b4:73:d0:f6:9f:3b:2b:aa:1b:53:ec:a1:
56:e1:80:8a:a5:f6:5c:44:92:c4:ac:a8:26:2f:a4:b2:f4:2d:
f5:45:fd:4a:f5:04:fe:53:5c:4a:d9:b1:cb:71:b5:03:e2:20:
5d:0b:b2:6b:5f:b5:f5:6e:69:63:07:16:e3:c1:46:4c:ff:bb:
c4:2d:06:36:4b:c3:ea:74:e9:57:17:00:40:4d:8a:8e:74:53:
62:28:e1:c5:3c:de:cb:d5:f0:5e:48:7d:34:2b:b0:7f:82:12:
00:be:9d:78:17:be:2e:b4:83:0c:c1:e9:97:11:c4:f6:0e:9b:
d8:1e:a6:87:03:f4:91:52:0d:ac:21:26:f8:6c:b8:b5:f8:ee:
5c:be:62:39:64:ad:3e:54:8c:e4:98:2a:37:ec:57:de:48:17:
cd:f1:4a:ce:9d:d5:8b:17:a0:ce:5e:49:f0:63:fa:dd:79:23:
9f:50:6b:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org