Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/HpHL51UYkP-1d8nL6kYqXFJHYYI.roa
File: HpHL51UYkP-1d8nL6kYqXFJHYYI.roa (raw, json)
Hash identifier: y1xH5jDbkoz2/xKTQ17Oam5vF2eyI9vLgWB6pMSx8XM=
Subject key identifier: 1E:91:CB:E7:55:18:90:FF:B5:77:C9:CB:EA:46:2A:5C:52:47:61:82
Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Certificate serial: 088B
Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/HpHL51UYkP-1d8nL6kYqXFJHYYI.roa
Signing time: Sun 07 Feb 2021 13:00:49 +0000
ROA not before: Sun 07 Feb 2021 13:00:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17420
IP address blocks: 210.241.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2187 (0x88b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB
Validity
Not Before: Feb 7 13:00:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1E91CBE7551890FFB577C9CBEA462A5C52476182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:26:c1:2c:b9:fd:f0:d4:5c:f0:e6:74:4f:36:
5d:2a:d4:52:c7:66:23:16:1a:99:f1:14:5c:df:b2:
f9:e6:d6:bb:ec:5a:8b:9e:fa:b8:e1:3d:ca:b8:27:
26:55:0c:32:39:7c:33:f2:2a:e3:e7:9e:36:7c:a2:
28:5b:52:86:79:89:12:78:f7:1e:c6:e2:d9:60:89:
1f:bd:bd:f7:de:1b:55:d0:44:3e:1b:1a:1a:eb:a0:
c3:9a:94:89:51:a4:97:95:d9:ce:0d:74:69:32:82:
67:e5:04:48:6c:87:83:07:0a:54:b8:3a:bd:4e:a4:
ad:9e:72:7f:b4:e4:8e:59:2d:69:32:f1:a3:bc:77:
7d:ef:e3:30:a4:c4:17:a7:fe:03:ce:48:78:87:95:
fd:3d:f8:cc:c4:95:fb:30:59:e5:7a:64:6f:f8:7f:
33:98:25:c0:73:d1:de:cf:8e:f0:4a:d8:34:b1:19:
75:e0:0a:50:6a:54:06:8e:fe:c4:c7:25:74:a4:9b:
3c:d0:ff:96:f1:36:22:9b:74:0e:9e:1f:75:69:35:
ed:40:b1:db:70:ba:da:67:ed:0e:c4:85:b7:c5:89:
f9:e8:7b:d3:2c:9d:46:a0:bb:dc:19:0c:ab:d3:11:
df:00:6a:81:92:ae:b1:66:d2:fd:e2:27:61:a8:01:
f4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:91:CB:E7:55:18:90:FF:B5:77:C9:CB:EA:46:2A:5C:52:47:61:82
X509v3 Authority Key Identifier:
keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/HpHL51UYkP-1d8nL6kYqXFJHYYI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.241.128.0/19
Signature Algorithm: sha256WithRSAEncryption
27:ef:f4:b5:90:ff:74:a9:8b:dc:23:6e:b1:88:e3:15:89:e0:
b5:57:2a:8d:a3:b8:b7:dc:4a:83:32:73:d4:46:94:1d:49:b6:
ee:89:79:65:e8:03:46:3b:46:8f:67:59:07:d6:89:c6:38:e4:
d9:a5:96:92:f4:98:17:64:7f:3a:e7:b7:3d:cf:2a:e7:1c:13:
73:cc:a9:5c:a8:37:63:ec:2a:c2:d2:88:3e:26:96:db:06:86:
30:ef:3c:10:f8:1f:b8:2b:99:4f:87:7a:cd:e3:07:81:e8:dc:
89:4c:7e:a0:8b:4e:a2:43:a4:9e:74:3d:28:98:c5:da:0c:9d:
57:19:80:c2:d0:85:38:18:d5:3d:f4:8c:f2:21:78:00:b6:fc:
a9:6a:4e:28:f0:96:a1:16:2a:4d:10:0f:36:e7:85:d8:ae:eb:
e9:2a:16:61:33:c7:32:44:91:e3:e5:98:10:fa:20:85:e2:8d:
71:73:f5:c1:14:e9:76:66:5d:b7:fa:f8:57:7a:5a:fa:49:6b:
14:99:2e:14:20:62:ed:b9:b9:67:c4:56:9c:bf:f5:9a:ee:10:
0d:65:e2:b5:c6:38:f6:ff:5d:ad:5b:a0:8c:ba:16:3e:40:eb:
b8:6e:f3:6b:b0:9e:4d:30:a1:1c:96:8c:73:25:6a:05:24:a4:
e1:7b:fd:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org