Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/tvys97kU7Bpks1jltVrDXBYq6ao.roa
File: tvys97kU7Bpks1jltVrDXBYq6ao.roa (raw, json)
Hash identifier: lOR1vx0OgXYoif3YKuCfqFYEQ36tH1D9pnsEuqyCZTU=
Subject key identifier: B6:FC:AC:F7:B9:14:EC:1A:64:B3:58:E5:B5:5A:C3:5C:16:2A:E9:AA
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C62
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tvys97kU7Bpks1jltVrDXBYq6ao.roa
Signing time: Wed 29 Sep 2021 02:51:12 +0000
ROA not before: Wed 29 Sep 2021 02:51:12 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17421
IP address blocks: 223.136.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3170 (0xc62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:12 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B6FCACF7B914EC1A64B358E5B55AC35C162AE9AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b2:86:56:36:73:d5:1f:d6:3f:b6:21:77:64:
65:08:71:f5:9a:75:ec:2d:6c:0f:08:52:8e:df:19:
0d:46:36:5e:79:6e:0b:8f:9f:13:24:12:b7:f4:52:
35:48:3b:e7:03:c8:47:45:27:17:bf:ed:d9:de:b9:
fd:73:61:2d:fe:fd:95:d0:f6:4c:90:8a:1d:da:36:
d5:e2:12:7f:c0:02:84:92:38:16:33:36:f2:9b:d0:
47:9d:b0:e0:e9:51:d3:88:c3:38:d7:8c:6a:15:fd:
21:33:71:31:89:5c:d5:f2:c7:8c:44:cb:29:f9:3f:
61:ba:fc:e7:81:da:7f:ab:18:b5:19:ac:ca:e6:cf:
13:b9:de:da:89:dc:17:71:d5:a1:23:81:28:6f:db:
29:98:e7:90:e5:01:03:a4:4d:45:8f:02:cc:d9:64:
4a:52:b5:df:bf:99:92:93:9e:07:82:13:bb:cd:37:
ea:19:20:c9:aa:1c:68:8a:c3:96:c0:62:07:61:6f:
df:c0:5e:f1:e2:23:32:6a:eb:a4:c5:eb:35:41:04:
cc:14:2a:2c:43:ab:5d:14:81:08:86:49:41:a6:59:
a9:0f:ea:e7:c2:a4:ff:4e:a3:60:3f:04:cc:00:eb:
44:cb:f3:c4:88:35:90:4f:4e:af:89:ad:3b:05:3b:
f1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:FC:AC:F7:B9:14:EC:1A:64:B3:58:E5:B5:5A:C3:5C:16:2A:E9:AA
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tvys97kU7Bpks1jltVrDXBYq6ao.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.136.0.0/13
Signature Algorithm: sha256WithRSAEncryption
5a:3f:18:dd:26:00:cd:2e:cb:c2:5b:d6:0b:95:97:84:65:c3:
c3:7a:6c:bb:d8:b2:ce:7e:71:c9:c3:83:0d:25:38:9f:b3:cf:
0d:d8:a4:bc:68:c4:3d:6d:fa:0f:f1:f9:9f:b5:bf:d4:6c:a7:
2c:a1:de:be:b5:28:24:28:88:dd:f2:ce:05:b4:d6:53:a8:9f:
e4:ec:47:d8:92:8d:5a:05:51:31:25:34:c9:51:c6:85:01:32:
59:6f:1d:8c:d3:1c:f8:4f:09:94:12:21:61:3e:01:6e:b1:33:
13:52:63:34:ed:69:b0:6a:12:7b:38:ff:88:7c:02:2f:29:02:
33:29:6c:2c:01:cf:f7:1d:41:1e:b3:60:11:d5:d6:c1:b6:cc:
1d:9b:91:f8:95:1d:02:58:89:a5:4c:dd:15:98:a1:ee:e4:a1:
d8:f9:9a:42:81:9c:12:da:0f:b6:d9:62:12:4c:b6:f5:7a:1f:
9f:ae:d2:a3:a8:75:7f:92:0d:b1:63:4b:47:00:dc:37:d5:3d:
5e:2a:36:59:0a:18:28:c0:11:e2:0d:32:8d:54:b5:15:f0:df:
42:e9:0a:f7:f2:ae:c0:13:3d:07:c6:f9:1d:cc:d6:e5:f2:26:
ba:04:7c:47:8c:56:c9:30:ff:2b:39:13:89:8c:35:86:d3:71:
e6:bb:25:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org