Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/1M-45OP5WFbBhnb251_F2_t49H0.roa
File: 1M-45OP5WFbBhnb251_F2_t49H0.roa (raw, json)
Hash identifier: 0Mh0OJw0ABqP8ilkYuClbaKUJCianhCVxvoPsECgdpg=
Subject key identifier: D4:CF:B8:E4:E3:F9:58:56:C1:86:76:F6:E7:5F:C5:DB:FB:78:F4:7D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0858
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1M-45OP5WFbBhnb251_F2_t49H0.roa
Signing time: Tue 29 Sep 2020 09:58:39 +0000
ROA not before: Tue 29 Sep 2020 09:58:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 61.220.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2136 (0x858)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:39 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D4CFB8E4E3F95856C18676F6E75FC5DBFB78F47D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ef:5d:16:01:95:e0:53:53:99:6c:11:68:ad:
dd:32:c7:ac:9f:1d:b1:d4:f2:f5:ca:2f:63:ae:24:
18:20:8f:ea:41:be:3d:a8:e1:dd:01:c4:e6:8e:9e:
47:f9:41:42:5d:7b:00:cb:99:80:90:fd:e1:0c:78:
38:9b:34:b9:b7:c8:00:df:d3:d0:ea:d5:82:05:52:
48:23:f0:bf:20:67:00:da:49:72:ff:3f:b3:83:d5:
97:e9:eb:b3:fc:83:9f:8d:ae:66:9f:fa:4f:73:79:
6b:e0:dd:83:e1:eb:f9:98:af:dd:51:ec:12:c8:37:
ba:b2:31:a8:b2:38:a5:bb:9f:fa:be:ba:b2:b7:9c:
a7:7d:a0:94:ce:d8:84:0b:3c:dd:d4:48:de:cd:7b:
45:01:96:94:ac:af:2e:64:c4:af:09:65:c8:c9:96:
6e:7c:c9:cd:3c:3a:6e:a4:87:43:61:c6:7b:3b:e0:
3e:7e:17:0a:d2:b4:c6:18:65:c5:47:e9:af:05:f4:
80:5d:3b:e4:45:a6:d3:65:81:2d:dc:fa:59:f7:cb:
bc:02:10:3d:97:4a:d8:c8:4f:01:77:94:45:3d:43:
78:0f:1f:56:bf:5a:5f:33:23:2c:85:b7:67:34:88:
33:7e:ec:b2:7e:ac:66:aa:1c:e1:7e:30:f7:1e:17:
aa:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:CF:B8:E4:E3:F9:58:56:C1:86:76:F6:E7:5F:C5:DB:FB:78:F4:7D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1M-45OP5WFbBhnb251_F2_t49H0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.220.0.0/14
Signature Algorithm: sha256WithRSAEncryption
96:26:61:18:86:a6:ee:2d:9f:23:45:89:88:71:38:c9:dd:9e:
10:7a:93:da:9b:e5:f5:0f:8c:71:80:44:9e:25:f2:ad:b3:a9:
4b:15:f0:da:68:fa:c4:ed:f5:ae:79:80:4d:a7:af:c8:24:1e:
06:d1:af:42:83:4d:79:8f:a2:80:37:e0:62:d8:bb:51:6c:5c:
9e:16:9d:e3:c0:61:5e:50:cc:8a:74:f2:82:fd:7f:f7:18:b5:
07:3e:2a:a4:3e:fb:e7:bf:5a:d6:eb:be:da:e3:bf:23:3a:c3:
b3:2d:3f:7d:82:85:ab:ff:9e:79:c9:51:e3:6f:d9:f7:e3:1b:
12:37:f3:15:32:fb:09:7e:10:33:12:a2:b9:24:43:74:b5:62:
db:47:4c:a3:e3:21:a0:7a:bd:d9:86:23:8a:66:b6:f9:2b:c4:
d1:28:22:01:67:6b:0c:fd:51:75:31:f8:ac:0c:22:06:d5:e8:
6d:ea:aa:40:f0:a1:c7:db:9c:6f:46:7e:16:a5:30:21:7f:8b:
93:11:d6:e4:a1:13:6f:1a:e9:72:a5:e0:79:41:2f:07:60:85:
9a:db:6e:2c:58:7f:9b:58:49:37:3f:66:82:cc:95:2c:47:6c:
d4:20:bb:37:e7:de:a1:d3:3a:20:e1:23:c3:58:ce:95:a0:4b:
72:3e:ae:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org