Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/siY-qm_0DH6hkHlNv0b_1fnbb5M.roa
File: siY-qm_0DH6hkHlNv0b_1fnbb5M.roa (raw, json)
Hash identifier: pvDJZmruo0vRPCGWK1cmzF2RmAbdgT231U2yQOl/PYQ=
Subject key identifier: B2:26:3E:AA:6F:F4:0C:7E:A1:90:79:4D:BF:46:FF:D5:F9:DB:6F:93
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/siY-qm_0DH6hkHlNv0b_1fnbb5M.roa
Signing time: Thu 15 Sep 2022 02:48:13 +0000
ROA not before: Thu 15 Sep 2022 02:48:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 198949
IP address blocks: 210.242.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B2263EAA6FF40C7EA190794DBF46FFD5F9DB6F93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:20:b9:b7:73:f6:06:6f:20:57:55:fb:85:e1:
42:39:60:36:82:1e:27:52:ae:f8:4d:14:ee:31:5c:
c5:f1:61:8f:f0:ca:20:73:a4:1a:38:24:3b:51:be:
8c:4a:7e:f4:2a:a0:75:1c:67:8a:b5:3d:f5:d2:cf:
94:b5:e6:06:5d:ba:c3:54:6d:45:c2:39:41:d1:96:
27:bd:5c:4f:8e:e0:ba:51:3a:fe:0e:08:8f:2d:20:
65:c7:f4:61:26:a7:71:d6:91:7f:68:e3:f7:a0:e2:
0c:08:a8:d6:3f:7e:bb:2e:c9:85:82:fe:6b:8e:fc:
c8:e0:20:7f:bb:ad:ef:bb:71:f7:ba:53:68:80:c2:
98:38:e0:45:0d:6b:60:60:6a:fb:96:18:52:8a:3d:
8d:c4:6b:95:f6:36:d5:4c:d4:29:8a:80:e9:70:04:
62:6d:86:e6:ef:35:80:68:eb:ba:e2:c1:09:c4:82:
43:7a:16:5b:30:5b:45:9e:02:35:d3:e6:ad:b4:5d:
75:dd:c2:ce:b2:30:d7:77:db:5f:c7:4c:5c:27:89:
4f:26:fb:46:1a:71:b1:5a:9a:20:75:e0:88:39:71:
9a:7e:3b:8f:fd:ac:51:82:75:e9:c8:35:08:75:cf:
0a:40:d7:4e:9a:b9:fe:50:95:ba:7a:30:f6:39:cb:
74:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:26:3E:AA:6F:F4:0C:7E:A1:90:79:4D:BF:46:FF:D5:F9:DB:6F:93
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/siY-qm_0DH6hkHlNv0b_1fnbb5M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.83.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:a9:dc:a4:3b:ed:ab:80:6c:5f:14:f6:df:7c:51:bc:75:a6:
8a:f3:0b:c5:d8:7c:c0:a7:db:68:d4:21:b9:5c:f2:ef:48:1e:
af:0a:5f:e7:a0:cc:5e:06:e3:e2:76:5b:db:40:87:6c:11:b0:
9e:2e:93:49:0c:68:51:0a:ab:55:1c:03:01:85:61:17:2b:ea:
fa:f7:37:10:bb:ed:ee:e0:34:ba:21:9b:f5:b4:ac:c3:95:00:
fd:a1:c9:28:90:cb:e9:63:56:da:ea:ab:2d:a1:8d:56:2d:e1:
6d:80:58:28:74:8e:be:50:91:51:94:78:28:25:2a:bc:7f:f8:
c3:d5:75:7b:f4:0f:f9:b8:5f:f4:e8:2c:b5:f4:c1:6b:bb:6a:
30:a6:93:49:bd:8a:f9:66:a4:73:34:ca:01:f8:1e:46:c2:03:
de:27:76:e7:0c:39:04:02:09:60:48:c7:24:d6:2e:aa:c9:57:
ba:5c:93:28:dd:6f:85:36:a2:32:a5:ad:60:d4:4f:ee:ef:ac:
04:a2:7f:61:4b:b9:5d:31:41:3e:bb:1b:dd:d5:90:80:88:fb:
2d:1a:25:ee:ca:f9:58:d3:88:12:14:b1:b6:b3:63:eb:37:5f:
03:3d:ca:ba:34:30:78:6c:3d:15:01:f0:5b:02:e4:db:56:81:
8b:fa:f2:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org