Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/qi7CiZW8wxyGWKjsP93gfrLrkRM.roa
File: qi7CiZW8wxyGWKjsP93gfrLrkRM.roa (raw, json)
Hash identifier: 0l+WYFbfx8qdP3UvjT+Vl1FWSCnjNm1FnsTfFYm5G9E=
Subject key identifier: AA:2E:C2:89:95:BC:C3:1C:86:58:A8:EC:3F:DD:E0:7E:B2:EB:91:13
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/qi7CiZW8wxyGWKjsP93gfrLrkRM.roa
Signing time: Thu 15 Sep 2022 02:48:20 +0000
ROA not before: Thu 15 Sep 2022 02:48:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 21859
IP address blocks: 210.61.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AA2EC28995BCC31C8658A8EC3FDDE07EB2EB9113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0b:b9:94:bb:a9:d9:47:2b:da:5c:fe:cb:db:
ac:0e:aa:0a:7b:bb:4f:74:ef:2e:11:63:11:0a:01:
26:89:b5:f8:0b:18:68:86:bf:d3:12:ff:f6:23:d3:
33:8a:c5:30:1d:4a:d5:f4:d9:21:7c:52:dd:93:6c:
c7:99:15:31:36:f6:bc:fb:bb:84:e9:84:eb:25:65:
af:3c:5d:50:38:79:6d:56:7f:a6:cc:48:8d:65:aa:
2e:f0:cc:4f:f9:44:86:ad:4a:01:dc:97:5a:57:08:
6c:e6:f6:18:d4:4b:73:5b:42:f3:bd:4f:2c:8a:fc:
fd:9d:8b:c1:83:ff:51:f9:14:e2:0d:78:c4:ca:99:
63:3f:f4:74:6c:14:4f:b6:34:47:9a:1e:ca:a8:f2:
a5:61:40:de:61:de:42:28:b2:6e:f9:27:57:8f:13:
4e:a1:bf:7f:6b:3a:e6:5e:ff:34:0d:2b:de:a5:ad:
3d:3f:17:93:df:1c:95:5a:ce:21:7d:b7:4a:61:9a:
59:50:d8:50:fa:8d:cf:f1:18:5f:4d:1b:aa:7d:62:
50:79:3d:f5:02:08:af:03:ef:8e:bc:98:4b:75:28:
f9:fa:74:96:c2:ab:87:87:a2:9e:41:85:12:47:50:
73:c4:b6:3c:54:b4:1e:84:8c:3b:2c:bc:d1:96:b5:
a1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:2E:C2:89:95:BC:C3:1C:86:58:A8:EC:3F:DD:E0:7E:B2:EB:91:13
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/qi7CiZW8wxyGWKjsP93gfrLrkRM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.201.0/24
Signature Algorithm: sha256WithRSAEncryption
47:f1:ea:5d:00:97:97:fd:32:db:07:27:b4:21:17:51:dc:20:
45:a4:20:17:0b:50:68:1e:37:31:07:2f:93:91:f2:7d:94:d7:
34:71:b9:dd:dd:69:dc:80:e5:73:c5:a8:bb:d2:aa:42:63:a7:
98:ef:9b:5b:ce:96:a2:57:bf:84:3e:c7:d2:bb:be:6b:9b:57:
ba:db:aa:42:a4:bf:3e:21:c9:3d:a7:93:4d:4a:19:cc:dc:9c:
02:b3:10:f4:5b:14:59:0c:50:b8:05:b0:0a:84:e5:2c:93:98:
1d:7d:9e:ed:41:ac:fa:01:a1:b7:8a:c6:52:be:01:a8:29:aa:
0a:57:c7:b4:3f:e1:b4:7a:a9:b1:66:2b:ef:62:a3:16:e4:5a:
95:58:00:e6:ee:c2:e4:9e:77:c3:bc:4c:55:23:86:22:ca:b8:
90:7d:39:b1:28:86:d9:b9:c1:60:d4:31:db:60:c8:59:26:23:
de:49:e1:a0:35:61:0e:53:81:d6:8e:b0:20:40:c9:1a:b0:b2:
71:59:4a:0c:d7:93:33:14:45:88:02:b8:46:60:c9:ef:19:a1:
c8:8c:fb:70:24:39:5d:93:56:a0:3e:f0:03:f6:b4:2e:9f:0c:
d5:cd:f9:eb:85:0a:da:4b:4d:ca:9d:18:36:54:91:3b:57:7b:
c0:3a:ce:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org