Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/p75HyEuASfjJOQpzzTaVq5mGdcY.roa
File: p75HyEuASfjJOQpzzTaVq5mGdcY.roa (raw, json)
Hash identifier: Zy4LKwhM7DZGd5qyziFj0/9sph1JxKza/6ZUh5GxatU=
Subject key identifier: A7:BE:47:C8:4B:80:49:F8:C9:39:0A:73:CD:36:95:AB:99:86:75:C6
Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Certificate serial: 0A3B
Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/p75HyEuASfjJOQpzzTaVq5mGdcY.roa
Signing time: Wed 29 Sep 2021 02:51:23 +0000
ROA not before: Wed 29 Sep 2021 02:51:23 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9680
IP address blocks: 168.95.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2619 (0xa3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Validity
Not Before: Sep 29 02:51:23 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A7BE47C84B8049F8C9390A73CD3695AB998675C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:bb:de:6d:17:0a:1e:77:d5:74:f4:c9:5a:fd:
e4:c8:38:aa:51:1a:53:6c:ad:10:8a:3e:44:64:44:
ed:fd:a1:38:11:7a:a6:96:43:37:b4:3b:2c:89:b8:
dd:22:9f:1c:2d:7b:19:83:17:0b:33:c1:c9:3b:98:
27:57:3b:08:d0:22:4c:16:0c:1b:d5:fd:fc:0a:26:
48:ee:6a:94:9e:23:4b:45:04:80:df:8a:cc:63:bb:
f9:c1:c3:07:47:cd:1e:05:f3:6c:e5:fc:d5:43:b5:
cc:38:76:79:57:7f:85:b5:32:00:ee:cb:68:47:87:
a6:d8:7e:80:45:f0:cb:78:54:4f:98:82:06:86:55:
87:bc:4a:f0:2c:3e:76:87:73:b8:36:c6:03:0c:02:
ea:82:d1:2e:40:4e:4a:b0:52:1a:08:3c:f1:17:2d:
46:9e:0e:bf:61:c0:52:1c:af:0f:19:dd:1c:44:84:
c2:45:da:99:8f:09:bd:4e:e5:cc:98:43:1f:d2:b3:
8e:0c:74:87:15:84:5f:fd:1a:a3:b7:6b:4d:7b:7a:
17:69:54:a9:24:86:3f:82:60:05:75:b4:b4:2f:46:
37:e8:40:36:48:de:f9:12:24:87:e6:af:53:60:7b:
9a:51:93:45:21:70:6c:9a:18:a5:3f:02:78:cb:f4:
59:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:BE:47:C8:4B:80:49:F8:C9:39:0A:73:CD:36:95:AB:99:86:75:C6
X509v3 Authority Key Identifier:
keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/p75HyEuASfjJOQpzzTaVq5mGdcY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
168.95.245.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:9d:d0:df:0f:32:d3:b5:f6:dd:29:29:6f:44:d5:1a:47:2b:
d6:a5:a1:1e:86:98:e3:46:12:ba:35:47:0f:6b:4d:62:27:49:
e5:90:39:ab:fb:51:d0:07:d3:47:fb:80:c1:03:3e:22:a5:11:
70:64:0c:c2:df:c7:5a:34:46:23:bd:3f:2a:e2:8e:94:44:d4:
6b:67:60:63:5a:76:74:05:79:42:b9:a1:0c:e7:f7:b9:6e:d1:
9d:cd:de:fc:45:da:cb:24:97:cf:20:da:d9:ad:38:48:b1:38:
d3:4c:0f:81:65:e2:c5:ff:eb:d6:b3:1d:b0:61:46:15:93:3d:
d7:16:86:f7:e1:31:6d:b7:41:87:90:8e:07:d5:29:f5:66:29:
ab:b4:48:82:92:6d:f6:74:15:6c:ef:2c:7a:c6:8f:2a:47:25:
7e:80:ad:77:af:b5:27:5c:52:f3:76:61:2e:4b:27:54:c3:fe:
7f:0c:3f:c9:79:77:98:7a:14:14:df:7b:5c:88:ed:37:5a:e2:
ee:b1:a7:90:da:e2:c3:0a:51:d9:37:36:16:ab:2d:c7:e3:25:
0b:31:58:13:3d:ef:a6:a4:d8:04:8b:af:07:3d:1a:f4:08:63:
0b:e9:e6:5a:25:1a:d3:72:ae:70:4e:08:9d:fb:e4:00:6e:9b:
21:c7:4d:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org