Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/z1hJUYeW7HoOIOsCKOyF_dDrVf0.roa
File: z1hJUYeW7HoOIOsCKOyF_dDrVf0.roa (raw, json)
Hash identifier: DqR4A8Rpbt0bxqeU7Y+op8uIRp2bhdWt92kGGh0Q6po=
Subject key identifier: CF:58:49:51:87:96:EC:7A:0E:20:EB:02:28:EC:85:FD:D0:EB:55:FD
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C42
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/z1hJUYeW7HoOIOsCKOyF_dDrVf0.roa
Signing time: Wed 29 Sep 2021 02:51:04 +0000
ROA not before: Wed 29 Sep 2021 02:51:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9680
IP address blocks: 202.39.80.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3138 (0xc42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CF5849518796EC7A0E20EB0228EC85FDD0EB55FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6c:12:b1:a8:bd:a1:2e:24:26:87:eb:95:0a:
a9:de:fd:a4:da:a0:f8:c1:45:df:61:1c:41:df:80:
79:38:50:e2:2e:a3:47:4c:68:00:fc:51:4d:6c:28:
b5:31:04:c5:a3:e2:f8:58:e7:ce:ed:74:92:1e:4e:
3f:31:cc:ab:b9:22:69:b5:e7:f8:d0:14:e5:9a:97:
57:66:95:99:39:b8:17:6e:41:7f:1b:6f:04:94:8a:
19:e7:9c:07:07:86:45:2c:c1:68:00:86:3e:67:a1:
53:c9:9d:8b:05:cc:6f:8c:90:90:30:62:d3:51:a4:
93:ee:f2:61:68:ea:be:cf:e0:7d:db:ea:5e:ff:c4:
13:94:81:7d:d7:19:9a:19:ae:bc:56:7e:45:9b:b8:
7a:68:d7:65:be:eb:86:4a:95:61:78:f1:21:b2:d6:
f6:26:fc:dc:26:59:06:db:9a:e0:b9:11:dd:44:3a:
d8:53:d8:ae:73:a1:09:4a:52:af:e3:a5:63:bd:f8:
0e:d3:77:6f:2b:4f:29:5f:ba:4a:b7:11:47:d5:7b:
6c:90:99:56:fc:81:c0:1f:21:45:94:46:1e:28:d9:
35:fc:21:c8:c3:6e:de:06:9d:84:97:f6:5d:d1:74:
6e:05:20:f0:8a:cd:93:e8:fd:bf:49:93:bc:71:62:
ee:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:58:49:51:87:96:EC:7A:0E:20:EB:02:28:EC:85:FD:D0:EB:55:FD
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/z1hJUYeW7HoOIOsCKOyF_dDrVf0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.80.0/20
Signature Algorithm: sha256WithRSAEncryption
aa:49:82:09:7f:6b:72:10:28:66:68:22:32:3b:7b:55:0f:cb:
27:1d:b0:02:ab:7c:6b:e8:6d:21:68:a0:4f:e8:80:e3:8a:ff:
b1:c7:01:a1:44:7d:61:8e:bb:52:b5:f3:c4:83:47:d5:d0:85:
74:34:32:97:34:d5:e8:15:c6:65:36:9b:3d:42:6a:1b:8e:73:
1c:eb:41:fb:b6:a4:67:d1:ba:4d:ee:e8:20:cd:11:0f:38:26:
22:65:4c:b8:f4:19:e0:38:7f:77:dd:77:70:2b:de:2b:b7:e9:
f6:59:12:c9:82:48:53:08:e5:47:a7:97:cb:7d:0d:09:79:92:
e2:7a:7f:ae:a0:97:21:50:23:2e:24:c1:b8:39:ad:ab:80:97:
c8:05:c8:f1:a1:39:e4:54:7d:de:c9:d8:5c:72:d7:4f:b3:72:
0e:da:87:db:71:d0:6f:0d:50:99:06:ba:08:13:11:50:c8:0c:
0e:b2:95:90:36:0a:d5:42:25:c5:59:f7:e0:e3:0e:fe:d1:d0:
13:71:54:58:49:b1:ee:27:7d:a9:ff:f6:3f:75:50:d4:f8:d0:
b8:94:bc:1a:1c:83:87:c6:3c:c4:61:fa:94:09:53:75:d3:c6:
4a:1c:d6:0d:0c:e2:3f:44:ab:67:2b:25:06:74:eb:dc:30:40:
fd:ba:0f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org