Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/hbMRAR5_rCgPlMPE58YA1fqG_yY.roa
File: hbMRAR5_rCgPlMPE58YA1fqG_yY.roa (raw, json)
Hash identifier: oBI07wcTz0SN0vxJbRc2kP4SnCihA0k0EA1l0zY+dHk=
Subject key identifier: 85:B3:11:01:1E:7F:AC:28:0F:94:C3:C4:E7:C6:00:D5:FA:86:FF:26
Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial: 077E
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/hbMRAR5_rCgPlMPE58YA1fqG_yY.roa
Signing time: Tue 29 Sep 2020 09:59:20 +0000
ROA not before: Tue 29 Sep 2020 09:59:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18182
IP address blocks: 219.85.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1918 (0x77e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Validity
Not Before: Sep 29 09:59:20 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=85B311011E7FAC280F94C3C4E7C600D5FA86FF26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4c:38:d2:d5:74:f8:9f:dd:69:4a:54:3a:42:
31:d3:6a:2e:8c:90:9d:0b:96:c5:ec:a6:4a:68:25:
c9:c0:5f:27:11:e5:9e:33:f4:3c:33:0a:19:3e:20:
6a:9a:cb:84:20:b8:44:d1:b9:97:e6:77:c7:d0:c5:
29:cb:59:d2:80:d5:ff:40:cf:3a:41:90:41:11:f6:
48:7c:c9:ee:e9:25:33:ef:4d:7d:69:27:c0:a1:33:
84:e8:92:1e:ba:f1:e0:43:61:03:7a:ce:3a:f5:5d:
45:88:0c:e6:98:6f:e1:83:8a:4d:35:b7:5e:9e:e4:
62:0a:8f:f5:05:4a:f8:ed:7e:3d:37:8f:b6:f7:57:
c2:cf:50:ed:23:61:17:1a:c9:d5:69:09:e7:6e:4e:
3c:e4:1e:ff:a8:25:be:99:8e:9a:49:db:cc:63:92:
fa:44:31:ca:73:02:47:0b:4e:71:ec:ad:00:c1:34:
43:6e:af:a2:e4:96:e7:07:a8:72:9a:13:08:9a:d7:
b5:fe:ec:e4:eb:8f:c5:15:77:8d:0e:a1:7c:30:0e:
b0:22:35:89:39:1f:09:fb:4c:37:83:84:57:fc:41:
0a:c8:5b:2f:38:db:2e:d6:77:40:30:ca:4d:6b:d4:
51:e4:83:ee:7e:dd:99:bb:42:bf:e0:36:cd:34:1d:
67:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:B3:11:01:1E:7F:AC:28:0F:94:C3:C4:E7:C6:00:D5:FA:86:FF:26
X509v3 Authority Key Identifier:
keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/hbMRAR5_rCgPlMPE58YA1fqG_yY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.85.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3d:eb:1f:65:85:a6:cb:1f:af:88:12:b4:ee:f1:de:28:05:03:
70:d7:c1:d5:56:ef:59:8e:27:72:dc:7e:87:95:dc:e4:95:f6:
79:5f:a1:86:21:9b:b4:6d:16:77:36:5a:d5:ad:31:d5:70:a1:
7f:88:9e:da:3a:3b:85:c5:5f:9f:65:21:fe:43:63:c3:43:ee:
fc:d1:ae:29:d8:73:ca:16:54:a6:20:86:f0:89:47:20:6e:45:
c4:74:3a:dd:f1:7e:9a:a3:e4:21:d1:47:6f:5e:1c:50:98:3d:
17:cc:71:cc:12:8a:51:59:4c:f4:95:02:cb:8e:95:53:c7:b7:
d8:98:e8:ee:a8:7e:cc:c7:ba:07:3a:86:86:a5:38:ac:80:33:
91:83:f4:68:11:de:de:29:91:ec:4a:a1:90:8a:7d:07:53:06:
68:ec:d7:b4:30:b7:5d:d2:da:20:63:a0:13:81:4e:86:21:3c:
9b:bf:a3:0a:2d:ee:d4:22:15:bc:38:88:ab:e7:a5:6c:32:f0:
ed:23:06:50:bf:bf:44:d4:07:c9:5c:cb:cb:fc:ca:3e:4b:d0:
ac:1a:c3:63:fb:c2:2e:7b:42:9e:08:86:48:f1:0f:a4:d2:0b:
4f:0f:53:91:43:f7:45:07:43:7b:28:a0:01:70:3c:7e:49:dd:
93:3b:2f:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:17 2023 by rpki-client on console-fra.rpki-client.org