Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/oAtY8xA5o7H2Quxdlz9KsWc09Mk.roa
File: oAtY8xA5o7H2Quxdlz9KsWc09Mk.roa (raw, json)
Hash identifier: KaY2Oo5wW2FQ8x0ZlMBJ03NlxHgZO57cTtzuO0N1MNg=
Subject key identifier: A0:0B:58:F3:10:39:A3:B1:F6:42:EC:5D:97:3F:4A:B1:67:34:F4:C9
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AFB
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/oAtY8xA5o7H2Quxdlz9KsWc09Mk.roa
Signing time: Sun 07 Feb 2021 11:46:27 +0000
ROA not before: Sun 07 Feb 2021 11:46:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10126
IP address blocks: 114.30.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2811 (0xafb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:46:27 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A00B58F31039A3B1F642EC5D973F4AB16734F4C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:ec:3d:9e:f2:55:20:76:1d:67:4c:1a:34:fb:
f5:9f:51:87:da:0b:fc:a5:6a:68:7d:37:35:75:6f:
b1:2e:c0:cd:a8:aa:b9:18:b9:99:66:89:42:cd:9b:
73:42:6e:c7:5b:ef:9f:d6:c4:d4:ae:9e:e5:05:d4:
45:28:d8:73:88:ac:15:32:ed:36:b7:1a:16:73:25:
e1:a2:cc:9e:da:09:3a:d6:7a:2b:bc:4a:20:5d:f3:
3b:95:27:f1:3f:59:c6:47:98:1d:a6:25:5a:09:b1:
82:11:e9:da:50:f6:d7:13:02:da:ce:52:0b:23:39:
e7:5e:56:c0:4d:87:15:fe:d8:e7:a8:6c:96:4a:bf:
16:0f:6b:ee:58:d0:1f:e8:43:95:e5:1f:17:84:2e:
d2:43:93:4b:f4:5e:cd:54:ab:f4:e5:4b:29:96:7b:
b5:2a:1c:dc:20:a9:bb:25:e8:b8:cf:34:36:b5:e3:
53:91:57:56:43:50:00:4a:01:fa:64:54:49:27:cf:
1e:0b:20:61:55:43:08:ad:86:2f:ce:aa:71:6f:76:
e2:d9:60:6d:e2:17:8d:ac:8c:77:2c:32:b9:61:89:
b5:19:ae:ee:5a:6b:fb:05:5d:72:90:d7:9e:c3:08:
0d:24:5c:48:4f:72:c9:f6:49:03:a9:4b:08:38:f5:
bc:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:0B:58:F3:10:39:A3:B1:F6:42:EC:5D:97:3F:4A:B1:67:34:F4:C9
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/oAtY8xA5o7H2Quxdlz9KsWc09Mk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.30.32.0/20
Signature Algorithm: sha256WithRSAEncryption
8c:af:64:55:d0:96:80:62:ec:6e:98:bc:2c:67:58:df:cd:e9:
d4:b3:7f:24:90:b8:92:08:e5:43:84:5f:13:d9:ce:cf:67:e9:
b5:b2:f1:e3:cf:5c:17:14:b8:a5:13:d4:5a:07:4e:09:89:85:
21:33:8d:11:15:34:2b:08:3d:13:35:95:5d:7a:30:cb:38:fb:
89:7d:1e:da:f9:1b:36:85:83:a4:31:4e:25:35:1a:23:e9:14:
28:d3:83:e0:0f:03:36:90:01:5c:bf:1f:88:d8:35:f3:f3:4e:
bb:54:e8:d0:b0:55:0a:6c:fc:29:6a:94:9a:7d:fc:7d:4a:7b:
14:d1:8d:1f:c4:2c:44:67:37:26:ce:41:b1:94:26:ff:0c:60:
a7:59:b3:b4:5f:32:00:90:59:54:41:8f:29:1a:10:40:1d:88:
e1:d7:ec:17:50:1e:92:56:24:70:3b:a4:41:30:e3:58:37:d1:
02:28:23:d7:fe:d1:c9:b5:91:dd:3b:db:5c:89:4f:b3:4f:ee:
18:0b:81:1b:8a:b1:25:a9:bc:b3:c8:7e:df:02:15:87:31:28:
5e:0f:a0:9b:44:67:b0:56:fb:22:24:f0:d4:73:08:e7:86:ff:
b1:53:48:4d:77:6d:1c:c8:18:ce:85:b5:7a:d0:4f:e8:f8:73:
13:e5:53:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org