Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/pr5DPsf0WpuxDk4DozFmvlVgj6E.roa
File: pr5DPsf0WpuxDk4DozFmvlVgj6E.roa (raw, json)
Hash identifier: eu3nVYS7Vu61PDNS3GFUHUY43P/wf/iBEJxOSor4MAw=
Subject key identifier: A6:BE:43:3E:C7:F4:5A:9B:B1:0E:4E:03:A3:31:66:BE:55:60:8F:A1
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0B0D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pr5DPsf0WpuxDk4DozFmvlVgj6E.roa
Signing time: Sun 07 Feb 2021 11:47:15 +0000
ROA not before: Sun 07 Feb 2021 11:47:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17421
IP address blocks: 211.79.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2829 (0xb0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:47:15 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A6BE433EC7F45A9BB10E4E03A33166BE55608FA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:13:8f:ff:ba:d8:26:a2:14:64:70:2c:dd:e3:
cd:eb:5c:cc:22:68:c7:6a:ff:6e:ac:3b:75:1a:d8:
70:c4:18:46:af:5f:aa:4e:3d:55:6f:21:3b:c4:7c:
a8:d6:fe:c9:fe:8a:86:9c:99:0b:ff:71:ef:e1:d7:
91:e5:08:8c:17:b1:7e:0c:99:04:f2:22:f1:df:25:
2d:c7:9f:16:1b:99:be:16:cf:60:1f:a3:1f:2d:83:
4f:fe:72:22:85:01:d1:46:85:51:c0:5a:62:8a:7b:
34:d8:c8:33:fd:52:86:39:4f:58:17:1e:f5:22:48:
25:cf:5b:a7:0d:fa:f6:bf:a0:27:64:0c:64:9f:2a:
e1:ad:8b:b7:08:65:1f:92:52:0d:4c:6a:2c:a1:64:
6b:35:f3:5e:fe:0b:e2:9a:7f:b2:88:be:1e:f6:09:
aa:5c:30:f2:c1:6b:8e:ce:ab:75:25:8c:cd:56:92:
30:84:c2:2f:47:92:e2:81:88:41:e3:78:ce:48:34:
41:cc:c0:61:6f:3f:14:4c:98:62:35:06:51:b7:c2:
1e:4d:76:09:d5:45:a3:2c:05:7b:c2:c8:8f:e1:36:
83:55:fc:c9:91:3a:69:01:ff:96:01:c0:16:d6:e5:
3e:b9:b4:ef:e2:c3:14:f9:d5:0e:ab:59:97:0c:f1:
2b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:BE:43:3E:C7:F4:5A:9B:B1:0E:4E:03:A3:31:66:BE:55:60:8F:A1
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pr5DPsf0WpuxDk4DozFmvlVgj6E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.32.0/20
Signature Algorithm: sha256WithRSAEncryption
22:8a:a5:fb:6a:28:88:ad:39:a0:53:f5:c1:ee:6a:7e:41:06:
33:c5:cb:b6:14:e7:d2:e8:e6:c5:91:9e:a9:b3:47:b5:5c:15:
87:df:de:1d:f1:ef:7b:42:ca:d8:fb:6c:99:2f:99:ad:79:b2:
d7:59:17:a7:11:aa:30:bc:e4:f0:d6:1d:56:c0:93:71:0f:08:
98:c7:8c:7b:09:2e:5a:8b:cd:64:f1:b8:34:45:9d:9b:d5:24:
4a:fd:50:63:83:d8:b6:3d:66:59:c6:9a:09:be:8c:c3:3f:c6:
6b:71:13:f3:2f:bf:4c:81:1f:ce:9a:f2:1d:ae:f8:74:74:36:
7e:09:7a:1b:6d:5c:d2:27:34:f2:e5:5e:e2:33:04:d1:8f:f3:
06:22:61:23:ea:88:a7:92:d4:3e:2c:ca:b4:26:96:8a:68:95:
39:93:0d:2d:ed:4c:03:46:66:85:fe:03:5b:8d:23:8f:c8:2b:
83:bd:98:7b:64:f6:b5:1f:8f:e7:2d:31:76:3d:01:aa:f4:80:
43:d2:18:26:73:7f:e0:5b:f6:ee:9e:96:4b:8b:71:56:6a:ff:
c4:62:ee:f3:16:44:86:4e:e6:67:fa:fe:94:93:ef:a0:50:12:
4f:4d:8f:83:b4:22:8b:0d:91:c1:bd:b5:5e:2a:0e:f2:86:c0:
ca:02:e3:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org