Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/p1pwW6KAHqnza74u3E-MTtimWS8.roa
File: p1pwW6KAHqnza74u3E-MTtimWS8.roa (raw, json)
Hash identifier: 9ixIP3D68rAG5U0QdXj13eOGGtrbt210fK/bVLFannA=
Subject key identifier: A7:5A:70:5B:A2:80:1E:A9:F3:6B:BE:2E:DC:4F:8C:4E:D8:A6:59:2F
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A7E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/p1pwW6KAHqnza74u3E-MTtimWS8.roa
Signing time: Sun 07 Feb 2021 11:38:00 +0000
ROA not before: Sun 07 Feb 2021 11:38:00 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 122.118.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2686 (0xa7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:00 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A75A705BA2801EA9F36BBE2EDC4F8C4ED8A6592F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:46:a9:64:26:a5:86:aa:8c:a1:02:4c:3d:e9:
f3:67:88:6f:cb:5e:6d:c9:3e:b8:81:e7:e8:f6:81:
68:57:01:37:a9:84:cf:11:c8:02:04:82:02:71:19:
5f:7a:b2:46:03:33:c6:72:d4:fa:e4:16:1e:e8:a5:
23:14:12:bf:97:42:0f:c6:db:94:93:be:46:d2:25:
bb:7a:e9:04:13:32:0e:f8:f0:43:c6:d4:2e:db:15:
b9:9a:ff:bf:68:f9:60:b4:b0:3a:32:78:8e:52:79:
c0:8d:73:51:7d:8b:67:ea:de:28:8b:61:62:7d:64:
48:be:d7:68:dd:f9:8c:85:0e:1c:d9:6b:2c:8f:94:
ec:64:33:d7:a4:20:00:89:ff:c3:95:d4:3e:0c:87:
26:a4:1e:12:91:d2:47:da:c3:96:ba:a7:3e:7c:e7:
90:4b:8e:78:cd:67:d4:96:e9:42:13:40:57:75:6b:
c4:d8:d8:26:54:ad:0c:02:90:56:57:2c:d3:cd:8c:
3b:f4:9c:95:5a:6d:b5:b5:96:d3:d2:f5:5d:6a:b8:
5e:4a:83:46:ff:09:50:c5:44:29:d4:00:62:c8:2a:
e5:7f:ba:bf:5d:f6:34:48:6e:7f:5c:36:84:ce:c0:
4a:a4:9c:5f:1b:28:f4:77:cc:1d:ee:41:2f:16:fc:
87:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:5A:70:5B:A2:80:1E:A9:F3:6B:BE:2E:DC:4F:8C:4E:D8:A6:59:2F
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/p1pwW6KAHqnza74u3E-MTtimWS8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.118.0.0/16
Signature Algorithm: sha256WithRSAEncryption
32:7e:29:1b:c3:c4:b5:d4:c7:8b:e5:37:e9:fd:46:f8:81:03:
ec:3c:72:d6:92:92:06:09:ee:17:31:80:f9:76:00:16:1d:7b:
00:c4:a1:58:10:c6:a7:e3:02:66:34:a8:ae:ce:37:d2:00:4c:
a0:85:9e:f4:d3:f1:82:af:dc:c4:46:0f:6b:80:1c:3f:29:88:
4a:e3:1a:14:3f:06:99:f1:b7:61:ca:e7:2d:9f:a2:f9:f0:79:
8a:b2:5f:5a:91:9e:61:f1:b0:2e:0b:4a:17:9a:f4:d3:2d:66:
5b:f8:3b:b3:61:9a:64:a8:a7:4d:46:f1:c2:56:9b:84:9f:18:
1d:1e:b0:36:db:67:53:76:93:a0:c1:5d:c0:6b:58:2b:21:c6:
f8:8a:ff:e7:e8:56:2a:ff:92:e1:9d:10:ac:58:e3:e9:b4:fe:
23:a7:4e:0d:78:bb:9f:da:b7:0d:ef:0f:ff:b1:9c:be:c0:3d:
db:04:13:98:b2:93:6c:2d:d9:11:f7:40:ba:e2:3b:9e:0b:db:
6d:46:37:e5:57:c2:c2:5d:46:bf:1a:07:86:48:d4:61:2f:66:
f1:6d:c2:1a:14:54:49:97:eb:3d:f9:19:03:05:cc:8c:7d:78:
b2:33:a9:29:35:b7:79:d9:c0:26:1d:f0:ff:44:80:7b:c9:f1:
a9:eb:87:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org