Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/oSZPUQYHy5yIhj-97Bdb8SZIEmI.roa
File: oSZPUQYHy5yIhj-97Bdb8SZIEmI.roa (raw, json)
Hash identifier: QeBrOgoCBizWs/UkJzQ80xG0c5bmEE+mbTPIpx77N24=
Subject key identifier: A1:26:4F:51:06:07:CB:9C:88:86:3F:BD:EC:17:5B:F1:26:48:12:62
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/oSZPUQYHy5yIhj-97Bdb8SZIEmI.roa
Signing time: Thu 15 Sep 2022 02:48:42 +0000
ROA not before: Thu 15 Sep 2022 02:48:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 114.32.0.0/12 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A1264F510607CB9C88863FBDEC175BF126481262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a3:21:3e:19:27:b4:bf:02:da:18:d0:22:2e:
ba:2f:13:ee:78:4b:28:9f:d2:d2:ee:b4:23:f6:c8:
b8:bc:38:1e:90:f6:56:e5:e3:bc:86:41:7c:4b:c7:
c1:94:cb:76:f5:ad:3b:41:fa:61:9b:f0:04:f2:03:
f4:07:2f:58:a1:c5:9c:33:1c:cc:99:9f:4b:e1:f6:
dc:f3:c6:1d:e6:cb:c6:c4:78:9f:07:57:59:81:dc:
e9:76:e3:e3:33:7c:13:0b:a2:7c:5c:c6:1b:b3:fd:
c9:5b:b9:63:2f:d0:cd:6f:0f:19:31:47:d4:b7:98:
64:bd:0e:7b:d1:d5:17:e3:7b:7a:b3:5b:1a:de:4e:
bc:de:bf:52:f4:7d:8c:66:99:5d:d8:e1:69:d0:81:
26:bd:13:74:a9:9b:53:ae:1a:41:66:a3:e4:e3:e5:
e0:9a:72:6b:89:f8:56:3f:f4:d9:12:76:34:13:27:
d7:0b:f8:01:45:d2:70:0d:cb:ff:39:ee:03:93:5c:
0a:68:b7:f0:b1:a7:fe:52:40:33:6c:eb:71:8d:52:
6b:f0:0d:b9:08:29:c4:e5:49:a4:d9:4a:a6:dc:1c:
74:9d:a0:d3:b4:a7:82:21:c8:f6:78:b8:ac:28:d0:
16:b0:11:fe:9c:de:8b:e4:a7:fe:a3:cc:db:35:ed:
36:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:26:4F:51:06:07:CB:9C:88:86:3F:BD:EC:17:5B:F1:26:48:12:62
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/oSZPUQYHy5yIhj-97Bdb8SZIEmI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.32.0.0/12
Signature Algorithm: sha256WithRSAEncryption
02:47:7a:52:4b:ef:9d:0b:e9:4c:fb:ca:ca:67:70:a0:b2:64:
1b:eb:42:a7:a2:c6:98:cc:ea:46:ca:17:fb:3c:af:71:a9:be:
63:44:fc:be:45:8a:46:e5:4d:92:12:38:2a:0b:1b:e7:0e:b5:
29:61:7c:f7:b8:3d:6c:b9:b0:1a:2e:cf:b1:54:b4:a6:e5:19:
c8:9f:0e:7b:fa:c5:8c:9d:80:63:87:2f:da:a0:8a:a6:2e:a3:
0d:92:d3:ac:20:e2:29:64:ae:c7:c9:a4:e2:14:72:1a:1d:7b:
47:f1:27:d8:1e:cc:3e:a2:68:df:f1:9f:af:31:cd:f6:21:38:
ad:3f:92:bc:e1:e9:40:fa:5c:08:24:9b:af:8d:1c:64:c2:41:
fc:e9:38:86:af:ff:ba:af:01:00:50:c2:18:65:75:4a:b7:9d:
05:6c:ea:8d:48:f1:4e:a4:53:02:21:06:08:24:95:59:f5:f3:
00:48:dc:7f:43:ed:4d:96:9c:42:cc:c5:94:91:58:37:b4:41:
9a:b5:30:95:2a:a5:c0:e4:5f:be:ee:5e:4f:48:1e:44:db:2e:
88:86:c9:c7:18:f2:f9:b7:57:c6:f9:94:d1:e1:42:77:e6:88:
5f:b4:ba:38:ea:8b:ec:7f:a6:46:1b:01:4b:47:56:c2:db:3e:
1d:03:11:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org