Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/pgkwjpt13cly6gLMV0MZzgPKMq0.roa
File: pgkwjpt13cly6gLMV0MZzgPKMq0.roa (raw, json)
Hash identifier: OjRk/9f57m5JmhIKJEQghrYsIUB3+UEQchYbEBqhlKQ=
Subject key identifier: A6:09:30:8E:9B:75:DD:C9:72:EA:02:CC:57:43:19:CE:03:CA:32:AD
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0B2A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pgkwjpt13cly6gLMV0MZzgPKMq0.roa
Signing time: Sun 07 Feb 2021 12:47:44 +0000
ROA not before: Sun 07 Feb 2021 12:47:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9678
IP address blocks: 203.66.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2858 (0xb2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 12:47:44 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A609308E9B75DDC972EA02CC574319CE03CA32AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:aa:8c:d1:09:fe:66:27:7d:0a:be:ea:ad:17:
23:dd:d8:8e:4e:03:10:cf:86:60:eb:22:da:55:44:
bd:69:79:ec:9d:09:d4:d0:c8:a6:18:9a:2c:17:b5:
2f:bb:a0:e0:c6:ed:94:b4:d1:7b:04:3e:d3:f0:d3:
21:55:aa:89:ca:74:cc:c2:34:fc:1b:0e:d8:65:3f:
42:af:2d:03:b7:f5:de:be:a6:6a:fb:26:83:25:9d:
90:52:07:98:e7:71:10:33:5f:7f:2b:1c:54:fa:66:
ba:14:bc:1e:02:ec:80:44:2f:7c:a3:2b:38:89:4f:
c0:7d:ef:6f:72:ef:0b:46:7a:ef:29:5f:55:05:2e:
55:82:69:a3:b6:ef:e6:32:1e:89:f4:ea:a5:ec:d3:
b2:77:52:68:df:53:35:52:54:97:9e:8a:87:2c:11:
20:b8:57:fa:2a:8d:7a:ae:fa:96:ab:2f:db:11:c6:
c2:c7:63:ab:09:7c:56:44:e4:1a:3e:de:01:9c:08:
13:60:66:e9:1b:c5:91:52:b8:2b:4f:cc:ee:a8:27:
30:9d:b1:10:7f:75:31:23:36:74:5c:00:b9:af:d9:
92:06:17:5e:ca:0b:2c:4f:1f:e2:ff:7a:dc:d8:64:
86:84:e2:eb:41:74:f4:1b:9a:9b:79:ac:c8:3c:b4:
44:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:09:30:8E:9B:75:DD:C9:72:EA:02:CC:57:43:19:CE:03:CA:32:AD
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pgkwjpt13cly6gLMV0MZzgPKMq0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.151.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:02:f2:25:13:00:b8:5b:11:33:f1:6e:5d:80:db:29:fe:8b:
da:e8:39:76:b4:b2:41:bf:53:32:ea:03:b9:48:01:14:ea:de:
16:cb:87:cc:f2:f4:33:d5:c0:01:77:5e:b5:23:33:28:54:db:
e7:9d:d7:4e:76:74:10:dd:5d:a2:53:e8:84:4f:fc:6f:b5:1a:
83:2e:44:c3:a5:56:7a:cb:5d:56:2f:3a:99:33:3c:6d:5e:88:
2e:96:d5:a0:6e:17:a4:2a:af:0b:d9:7c:f7:a9:4d:44:d1:93:
04:45:41:dd:4f:45:75:e7:df:cd:50:86:b0:1d:07:da:20:59:
17:91:d2:43:56:e4:f4:cd:b1:28:cb:21:d7:44:bf:2f:09:d3:
a1:ce:77:b1:6b:5c:12:c9:e0:15:a8:c6:c9:a1:d3:9c:65:80:
c7:5f:2d:ba:06:57:a0:8d:a1:0a:69:34:f3:74:1f:c4:47:38:
ab:ba:a1:a1:c0:45:e0:a9:7a:25:ec:b2:d2:af:7a:b5:32:dc:
98:a5:e1:95:1b:60:f7:da:e4:2d:08:de:67:aa:50:2d:61:d2:
37:53:18:4f:66:59:8f:05:d4:ef:6b:f4:12:ea:f2:43:ff:e0:
2a:81:0b:2b:a9:19:d3:2c:5b:77:b5:94:25:5a:a6:59:60:9e:
1e:7c:df:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:07 2023 by rpki-client on console-fra.rpki-client.org