Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/xjqpSzIrYuG3davj0w--Y1RLUlU.roa
File: xjqpSzIrYuG3davj0w--Y1RLUlU.roa (raw, json)
Hash identifier: o1+jW6jpeu3FewOSdaciX7BZ3Vg5jgcNMKjYOk7DM/Q=
Subject key identifier: C6:3A:A9:4B:32:2B:62:E1:B7:75:AB:E3:D3:0F:BE:63:54:4B:52:55
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AAF
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xjqpSzIrYuG3davj0w--Y1RLUlU.roa
Signing time: Sun 07 Feb 2021 11:38:43 +0000
ROA not before: Sun 07 Feb 2021 11:38:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 218.164.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2735 (0xaaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:43 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C63AA94B322B62E1B775ABE3D30FBE63544B5255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a2:0b:45:78:8f:28:1f:f5:a6:c3:c1:65:06:
f4:26:a0:c1:10:e6:62:97:35:73:9b:62:61:26:80:
c2:22:be:90:19:cc:11:01:df:eb:eb:98:18:1d:de:
c2:f5:66:53:7e:d6:01:20:6b:f3:de:0d:2d:0d:8b:
39:3b:0a:79:75:8c:e0:fd:12:b2:d4:93:80:17:05:
2a:6b:84:63:12:d1:93:46:1c:44:49:cb:91:f0:9f:
4d:f5:bc:b4:8e:fa:97:3d:53:db:31:c3:a2:63:55:
32:21:eb:ab:40:9d:c2:a4:5a:13:2b:0f:5e:fb:f2:
f4:8f:8f:38:fe:6e:10:2e:c8:0d:1c:b3:38:1b:a6:
52:f2:05:d4:47:da:49:e0:e2:59:8d:9f:d7:a2:53:
76:3d:de:e0:9a:a7:61:a7:a3:40:c8:aa:69:f6:30:
74:2b:51:d9:a9:87:e5:d6:fc:39:d6:7a:55:61:af:
74:bc:bc:49:d7:36:5f:c7:54:d6:6d:f3:4c:49:71:
8b:6d:9e:87:57:49:2c:1b:ec:a6:2d:01:cb:35:36:
12:a3:66:38:c3:f0:19:1d:88:50:5f:cc:f9:6a:76:
59:b8:59:89:34:20:8b:ec:f2:a5:a2:64:d2:e4:ad:
19:aa:bd:9a:3d:8f:43:76:f0:0a:ee:a0:34:6c:a2:
b1:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:3A:A9:4B:32:2B:62:E1:B7:75:AB:E3:D3:0F:BE:63:54:4B:52:55
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xjqpSzIrYuG3davj0w--Y1RLUlU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.164.0.0/15
Signature Algorithm: sha256WithRSAEncryption
c3:e6:0e:67:7f:5e:cb:c2:ec:e7:a2:32:6e:d8:73:26:01:4d:
4e:ed:91:7a:fa:26:0d:00:d9:5c:32:21:a0:d1:c5:4f:fc:45:
65:65:c4:a4:2a:7d:0f:b1:3c:44:f8:6f:3f:92:41:95:0a:6c:
fe:21:e6:55:f9:f9:ef:5b:20:aa:d0:33:dd:4d:fd:ca:aa:3b:
c0:f7:0b:8b:7b:33:41:a5:35:fe:b2:52:2b:56:07:a7:15:5d:
38:6d:95:0a:d9:fe:3a:26:df:e8:1d:08:51:09:c8:46:59:4f:
f2:cc:f4:c0:c2:99:5d:81:dd:81:4a:cc:e4:11:d6:95:a2:c3:
43:20:b2:c4:a2:27:43:9f:66:1b:6b:6c:48:09:03:81:53:ba:
41:cd:97:54:d5:78:d2:37:cb:cd:40:d8:6a:c3:00:c3:84:e6:
ff:3f:ec:3c:d2:6a:30:de:6d:bb:3e:82:84:6d:34:fa:12:b0:
76:9b:78:8a:0e:d9:2d:b9:fd:23:bf:92:26:01:c9:4b:4a:d4:
57:27:a9:06:2c:a7:3e:d8:ab:93:a1:36:f3:db:3b:f1:26:71:
84:80:67:69:59:1d:d4:7d:d2:85:b7:3a:fe:35:82:8b:a4:34:
84:d5:b1:b8:ec:0c:f4:2e:a8:c6:4c:73:61:7b:7d:ef:00:d4:
02:24:5c:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org