Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/tGuA50swR6enBrf7ZplpBE7TQEc.roa
File: tGuA50swR6enBrf7ZplpBE7TQEc.roa (raw, json)
Hash identifier: OKtPgD5sHNE5uBN/kfbqSbwz7dh7ZM0SB6zJbmwbe3k=
Subject key identifier: B4:6B:80:E7:4B:30:47:A7:A7:06:B7:FB:66:99:69:04:4E:D3:40:47
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tGuA50swR6enBrf7ZplpBE7TQEc.roa
Signing time: Thu 15 Sep 2022 02:48:23 +0000
ROA not before: Thu 15 Sep 2022 02:48:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10126
IP address blocks: 175.111.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:23 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B46B80E74B3047A7A706B7FB669969044ED34047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:36:56:ce:55:a9:91:d2:1e:0d:d6:70:04:5c:
35:fc:cc:a4:ef:29:4d:29:46:07:27:97:b2:77:12:
8c:5f:b8:4f:a3:10:3a:db:59:b7:66:7e:bc:91:ee:
35:ee:1f:4d:6e:aa:09:48:be:e5:7b:e9:52:f0:3b:
07:ec:71:65:13:a1:f7:b6:be:fb:7f:96:6d:17:b2:
21:68:c3:17:49:09:21:4c:88:f5:18:7d:c1:db:e8:
7c:a4:c7:e9:83:3e:54:92:8e:87:75:b7:74:37:4d:
20:07:e0:91:ab:80:13:13:30:0d:33:4d:19:ef:08:
4d:ac:2d:d2:94:1e:7f:ca:1c:5f:78:ed:36:4a:16:
11:3e:7a:41:5d:eb:f9:b7:16:5c:29:f4:b6:78:e1:
53:10:09:0e:f5:87:22:55:20:e9:20:40:96:08:ef:
ec:03:49:e9:45:60:ed:90:59:65:9c:48:a1:07:14:
91:72:ec:f8:5a:e9:85:8e:3a:75:fb:cd:63:67:b4:
33:1a:f8:06:07:c7:9c:3e:15:cc:3f:f7:f3:e2:bc:
b0:27:e5:dd:20:cb:8d:a3:0b:a5:84:6c:8e:3a:ad:
eb:db:6c:6b:70:97:13:d6:34:6b:28:cb:d1:a8:4d:
f8:b1:c2:10:a0:a1:65:72:64:8f:42:7a:eb:9e:d7:
fd:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:6B:80:E7:4B:30:47:A7:A7:06:B7:FB:66:99:69:04:4E:D3:40:47
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tGuA50swR6enBrf7ZplpBE7TQEc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.192.0/18
Signature Algorithm: sha256WithRSAEncryption
87:75:b3:cf:cc:14:85:86:5e:19:79:67:36:d3:d9:5d:bb:69:
0b:3d:70:77:07:33:03:1c:97:55:0d:02:da:48:1c:1e:a0:44:
eb:d9:55:6e:57:36:f2:52:9b:6d:03:1e:c0:2d:23:ab:f5:36:
38:ef:8c:5f:9f:84:7f:e2:f2:7a:23:ba:f8:e0:c8:56:74:b6:
2f:7a:d3:23:c2:01:76:86:52:e0:bf:a6:98:ad:fe:26:7f:0a:
0a:6a:44:e3:1f:3d:55:1f:7d:0b:42:2e:94:39:94:7e:e3:e5:
b5:e8:1f:c9:40:d3:c5:6f:d7:09:ef:3b:50:cd:41:29:b4:7d:
fc:29:80:d4:66:82:0c:49:29:52:f1:68:7e:12:ab:21:d8:6f:
b0:2f:a2:f2:12:ac:ca:a0:21:ab:6b:63:7a:3d:34:2e:87:4a:
e0:a0:dc:31:54:46:fc:ae:59:9c:dd:65:51:b4:d0:66:9f:de:
77:18:f8:b4:8f:d0:25:e5:40:6b:de:ad:46:4d:e9:8f:47:6f:
c7:a6:bc:11:d7:e9:38:d3:64:06:c9:15:44:f4:5f:96:37:3c:
ba:55:d7:0a:70:45:e4:24:53:e3:a1:92:46:f7:4d:d9:f0:98:
9c:88:a8:21:79:39:01:13:d9:fd:1d:eb:c4:ce:63:70:d7:64:
58:99:d0:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org