Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/s1CvIYkPw6ycs2EZ1HcCt20XplA.roa
File: s1CvIYkPw6ycs2EZ1HcCt20XplA.roa (raw, json)
Hash identifier: lSVe4/PMZBjs43qDlQhn4R8SlG3uQi4gfRA9bHXIS3M=
Subject key identifier: B3:50:AF:21:89:0F:C3:AC:9C:B3:61:19:D4:77:02:B7:6D:17:A6:50
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/s1CvIYkPw6ycs2EZ1HcCt20XplA.roa
Signing time: Thu 15 Sep 2022 02:48:38 +0000
ROA not before: Thu 15 Sep 2022 02:48:38 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 218.160.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:38 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B350AF21890FC3AC9CB36119D47702B76D17A650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9c:86:69:28:a2:cf:6f:e7:48:72:9e:a1:15:
a9:75:35:74:cc:81:82:fe:de:91:f9:d9:5f:24:f2:
aa:42:18:4c:dc:6d:e6:0b:51:2e:6e:73:09:c3:73:
a9:84:c3:91:49:08:6b:56:7f:a9:e0:88:f1:a8:52:
25:ab:2e:14:3b:3d:af:85:4b:61:33:80:ba:8d:48:
d5:f0:0b:33:1e:8c:f0:50:13:8f:76:90:3a:0d:63:
59:3d:37:dc:7c:c2:16:62:00:e5:c8:4e:a7:7b:56:
6a:43:7d:6a:f0:52:96:ea:54:7f:8c:ee:6b:33:46:
a3:fa:a4:b8:c8:48:67:a2:a0:7f:f4:be:94:b9:4e:
bf:06:0c:67:ff:66:b1:fe:3f:95:70:c0:ac:2b:66:
73:5a:a1:55:a2:ed:63:33:06:17:c7:20:49:21:91:
23:48:66:ca:69:65:32:67:82:8b:86:32:4f:b9:65:
30:2c:f6:8e:3f:dd:65:30:71:9a:c7:7d:8c:e7:69:
47:3d:8c:02:fd:28:11:c4:e2:c3:ba:7e:e8:d9:85:
27:0c:bf:99:8d:3c:8c:74:fc:11:a9:1f:52:0f:42:
19:98:0d:81:2d:9c:9a:2d:f9:de:96:df:88:3e:68:
cc:2c:f2:80:25:7b:27:b6:4d:5d:bd:40:1b:c6:79:
16:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:50:AF:21:89:0F:C3:AC:9C:B3:61:19:D4:77:02:B7:6D:17:A6:50
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/s1CvIYkPw6ycs2EZ1HcCt20XplA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.160.0.0/14
Signature Algorithm: sha256WithRSAEncryption
a6:2c:4c:ef:bb:0a:44:7d:32:f6:ae:36:a1:6b:b3:50:b5:f2:
84:3f:c0:66:b6:1e:01:9a:3d:5d:ac:bd:68:d9:b1:26:3f:ee:
12:9d:a8:45:e7:55:5d:a4:89:dc:57:ad:f4:ed:ee:95:51:cf:
17:26:34:8f:4b:f5:82:f8:bc:ad:3f:4a:95:2f:ac:f4:92:ba:
a2:38:64:39:3a:e0:7e:ac:b2:8e:e0:b6:98:2f:61:ac:fd:32:
72:6a:9e:b9:31:2d:30:31:39:46:dd:35:e5:90:67:a7:f7:ed:
1d:08:84:2a:98:67:8c:c8:84:67:88:7f:07:45:d9:cd:c9:5c:
f6:c8:70:78:d8:52:1e:9b:57:5b:64:9e:d7:5e:99:43:82:fe:
8b:a7:05:94:9e:bb:e0:84:00:48:2d:1d:12:2b:5e:30:0b:bf:
44:12:50:a9:8e:e8:31:21:44:3c:b4:58:19:51:f2:c7:11:9f:
54:d8:54:5e:34:39:48:d8:98:75:7d:2f:ce:2f:fb:54:86:7a:
c0:d6:e1:c8:7d:2a:11:40:d4:ac:89:cc:38:58:67:d4:90:98:
6f:f7:29:0d:d2:e4:a3:36:12:fb:0a:15:67:23:fa:39:f5:01:
ce:f2:1d:ad:0f:7e:c5:a5:59:7d:84:06:63:5a:5b:24:b7:0b:
ac:e2:a9:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org