Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/w3b3Fx7Z5ojX5YOv9sZOWoIa9L8.roa
File: w3b3Fx7Z5ojX5YOv9sZOWoIa9L8.roa (raw, json)
Hash identifier: WiuI+jucpmXLENJ30RFy4vVM7q9x71XZOg5VrVTVx0Y=
Subject key identifier: C3:76:F7:17:1E:D9:E6:88:D7:E5:83:AF:F6:C6:4E:5A:82:1A:F4:BF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0E45
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/w3b3Fx7Z5ojX5YOv9sZOWoIa9L8.roa
Signing time: Fri 07 Jul 2023 09:56:49 +0000
ROA not before: Fri 07 Jul 2023 09:56:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 142005
IP address blocks: 210.61.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3653 (0xe45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Jul 7 09:56:49 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C376F7171ED9E688D7E583AFF6C64E5A821AF4BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6a:d3:06:c6:f8:f7:78:e0:88:86:ef:92:82:
21:0a:e5:fa:12:46:38:11:ba:a2:47:46:67:72:84:
e0:18:6d:d8:2f:77:ad:e2:6a:73:bd:23:5d:aa:09:
2f:f5:27:c8:51:f5:b1:be:b0:1a:d4:2d:8b:51:08:
db:51:95:a1:6e:00:fe:bd:e9:70:b2:31:09:12:af:
72:14:8d:83:25:c1:4b:fb:1c:eb:24:52:c0:a2:29:
e8:fe:8b:c6:5f:39:8d:91:c0:91:b6:a2:5a:23:bb:
06:0a:d4:67:c8:67:69:0e:3d:e7:14:e4:07:ce:15:
6b:36:6c:f2:ae:ea:a6:10:ab:0e:a2:fc:4d:e7:20:
14:d6:57:fc:0b:41:fa:45:19:b2:1d:28:ec:47:59:
87:55:b0:61:49:36:2d:fd:76:43:9a:8d:c0:b1:8d:
76:a5:96:13:41:32:e6:84:b0:fd:c5:fb:4b:fc:84:
f1:d5:4d:cf:b6:2f:04:d7:dd:eb:cc:a6:53:e3:7a:
d3:26:e6:dd:a3:3c:2d:16:24:69:81:26:75:3e:37:
33:bd:30:6f:98:75:96:af:59:62:69:d7:7e:66:74:
62:85:47:4e:e0:2e:48:5a:1a:af:00:2b:a5:6d:db:
96:a8:b3:c4:76:b3:1a:9f:c2:e1:0d:d8:5c:8f:9c:
62:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:76:F7:17:1E:D9:E6:88:D7:E5:83:AF:F6:C6:4E:5A:82:1A:F4:BF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/w3b3Fx7Z5ojX5YOv9sZOWoIa9L8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.114.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:c3:62:b5:31:03:de:94:bb:fa:97:27:ef:14:b5:10:2e:9b:
28:cb:b4:de:0f:45:0b:87:ab:c6:4f:80:6e:0b:9a:ab:3e:fd:
71:2c:c7:8d:e3:ed:26:1f:6d:84:47:e9:f7:0a:d3:be:8c:bd:
37:d9:f8:ac:bf:7c:e9:52:16:1f:d9:4c:6d:c4:33:36:3f:c3:
f7:3c:25:e4:cd:3f:95:52:42:c4:06:53:50:07:cc:ae:90:66:
4f:04:e4:22:da:cd:56:a6:63:77:d3:93:77:60:e3:04:86:2f:
e9:af:42:39:50:0c:0b:ee:c4:a2:de:e6:70:77:55:ac:23:28:
e8:72:0c:d4:21:53:ff:82:ea:03:63:a2:37:2e:ec:e1:a3:f7:
bd:22:c2:42:1e:ab:ab:97:40:e9:f2:4d:ca:34:47:af:5d:18:
c8:1b:60:59:e7:e7:da:93:2e:68:a5:cb:00:f6:7f:8f:61:1f:
75:23:f4:53:48:ad:69:33:5a:27:6f:80:a0:20:39:7a:7d:5d:
0c:7c:91:6e:ce:82:7b:f0:83:6d:03:cd:19:78:c8:85:5a:eb:
33:16:3a:c1:78:42:c4:81:77:48:45:6d:29:3f:41:f8:68:ca:
a6:e7:22:4d:3e:e2:2c:28:ab:ff:39:00:08:ac:3f:c9:29:b2:
33:fe:54:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org