Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/pf3WCPID5kflBfK72w1RLFgUfp4.roa
File: pf3WCPID5kflBfK72w1RLFgUfp4.roa (raw, json)
Hash identifier: CRhzxPgdDZ7nROaT8Bo9NQn3P65iU5Tbhcp9TjXm2Qk=
Subject key identifier: A5:FD:D6:08:F2:03:E6:47:E5:05:F2:BB:DB:0D:51:2C:58:14:7E:9E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0862
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pf3WCPID5kflBfK72w1RLFgUfp4.roa
Signing time: Tue 29 Sep 2020 09:58:41 +0000
ROA not before: Tue 29 Sep 2020 09:58:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20940
IP address blocks: 2001:b032:104::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2146 (0x862)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:41 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A5FDD608F203E647E505F2BBDB0D512C58147E9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5d:ba:4d:17:08:63:25:e1:26:36:0c:72:04:
3b:4a:6b:8a:6e:47:bb:42:25:aa:1a:1d:e9:2c:c5:
b3:e2:da:20:b4:ad:04:3c:6b:d9:62:81:02:2a:df:
16:4e:2c:d8:33:a4:4d:55:a2:e4:09:76:a8:26:54:
18:83:2f:44:31:b6:19:a5:0a:58:21:03:39:ac:c4:
8a:dd:88:94:72:16:e7:a9:a1:10:e0:29:d4:40:ef:
20:72:8a:80:83:ec:af:13:15:e3:9d:f0:8c:bc:b4:
19:d5:a6:30:03:39:2e:a7:24:0a:fb:da:9b:ce:a5:
7d:9b:dd:d1:d3:c1:26:9a:b1:71:28:e2:91:b4:f7:
ed:a5:bc:ce:7e:3f:2c:e2:8f:bc:64:80:76:23:8f:
a2:14:d7:d1:cb:5f:a5:3d:b0:a5:a6:9a:06:ad:10:
fc:a0:66:94:45:ae:cf:09:c9:6d:37:06:1d:cb:31:
44:be:45:60:0b:f8:ed:ad:88:9b:ce:71:4a:62:ad:
e0:d2:a0:90:ff:64:ff:56:19:6b:27:fb:e2:0e:4e:
63:05:78:29:b9:f8:7d:2a:27:c0:60:fb:b6:24:87:
4d:a3:73:3f:17:29:9f:4d:29:2b:7f:17:a3:f8:6d:
9b:b3:00:19:98:b7:9a:0a:20:19:f6:51:17:16:e3:
8e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:FD:D6:08:F2:03:E6:47:E5:05:F2:BB:DB:0D:51:2C:58:14:7E:9E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pf3WCPID5kflBfK72w1RLFgUfp4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b032:104::/48
Signature Algorithm: sha256WithRSAEncryption
76:c8:ca:dd:5b:26:c7:ac:e4:a2:90:f5:97:1b:75:3f:8f:36:
a1:18:4d:02:d1:76:4d:6e:3f:c1:36:b4:72:4a:81:8b:9c:30:
ee:6e:80:08:8f:f2:23:48:79:79:ba:8b:dc:ad:87:24:81:fe:
3f:45:a5:4d:fb:cd:3b:68:7e:ab:fa:b1:21:00:b1:54:55:c5:
27:c3:ce:bd:df:01:5e:1e:9b:32:e7:24:ed:ec:6e:db:33:cb:
a8:13:99:0a:3d:7d:51:ff:c9:ab:a5:59:4b:ac:98:4b:e6:fd:
68:92:11:0f:d8:ff:eb:9d:6e:ce:49:5a:aa:ed:b6:fe:f5:ae:
f1:0f:07:76:a0:86:e4:a4:95:65:96:21:ac:3a:79:83:ca:fc:
22:88:c5:79:2b:ce:63:bb:0a:a1:19:23:99:c2:7c:75:6f:59:
8d:c6:6f:31:88:a0:f9:3f:d2:ae:5d:b5:46:af:29:ad:99:02:
52:00:cc:02:b4:a8:00:7d:f8:0a:e4:16:31:d3:a3:d6:03:d2:
4f:f0:7d:a8:cb:d2:69:00:04:f3:b2:2a:4e:14:0c:bf:60:ef:
cb:51:46:57:fe:66:28:c3:85:4c:7d:54:eb:c6:d7:df:a5:a1:
44:dc:90:32:66:11:aa:cb:18:7a:ec:c2:cb:34:1f:ca:03:4a:
f7:5c:d4:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org