Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/20YyAK7zF4f9FvW25g2eO2jsxgc.roa
File: 20YyAK7zF4f9FvW25g2eO2jsxgc.roa (raw, json)
Hash identifier: BiQGYu4uOWhhh0GJx2JUPETUnm7HhlQo0qx2gp8ZVf8=
Subject key identifier: DB:46:32:00:AE:F3:17:87:FD:16:F5:B6:E6:0D:9E:3B:68:EC:C6:07
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0B13
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/20YyAK7zF4f9FvW25g2eO2jsxgc.roa
Signing time: Sun 07 Feb 2021 11:47:21 +0000
ROA not before: Sun 07 Feb 2021 11:47:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17421
IP address blocks: 116.59.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2835 (0xb13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:47:21 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DB463200AEF31787FD16F5B6E60D9E3B68ECC607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d0:3e:68:ac:d7:f5:31:2a:ec:f7:a7:95:75:
23:36:d6:2a:0b:18:18:e9:71:fe:55:a0:53:d4:7a:
c3:75:87:0e:38:06:39:8a:01:15:8e:6f:3a:67:88:
c8:09:90:1a:20:c3:8e:02:1b:1e:88:e0:d3:58:a6:
eb:9f:6c:e0:d7:02:18:c0:4a:1c:e2:42:8d:bc:d9:
c3:5e:61:ba:27:4d:1a:d8:4a:1b:57:0d:a6:6a:ed:
d3:a4:0a:30:f8:40:26:11:09:ba:56:1b:ff:ec:73:
5d:f5:cc:04:94:b1:11:51:a9:f1:c4:ca:bd:b0:a1:
78:78:75:4b:69:ca:dc:df:aa:8c:c1:c8:8e:f7:73:
1d:58:0f:f4:30:28:99:ae:e9:f9:1d:cc:f4:54:71:
7f:7e:d4:a8:e6:32:45:68:94:29:06:31:94:f1:ad:
36:50:b1:28:c4:fa:a8:ed:06:35:7d:07:5e:ee:b1:
0e:fd:62:da:95:1d:5f:1d:8b:53:01:5a:84:58:72:
bc:e7:aa:9e:2f:34:00:68:23:30:db:c3:21:48:20:
66:fb:c6:89:05:05:6c:3d:5c:b2:2b:05:3a:4a:a0:
10:8c:af:4d:f1:8d:63:a7:3b:9d:18:dd:7d:f4:0a:
26:42:ca:b0:53:73:e5:38:17:4b:b4:06:b2:16:e3:
51:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:46:32:00:AE:F3:17:87:FD:16:F5:B6:E6:0D:9E:3B:68:EC:C6:07
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/20YyAK7zF4f9FvW25g2eO2jsxgc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
07:1b:9b:b7:dc:a0:b9:dc:73:21:35:bd:00:08:f5:88:bd:92:
05:4f:f8:ef:75:9b:35:02:ea:f6:1f:8d:ff:4b:2b:f5:6c:b5:
ff:a4:27:ab:12:90:0e:89:a9:a8:d8:7b:b9:dd:e0:1e:7c:77:
fc:66:db:cf:a8:70:82:94:86:8e:98:e4:27:1a:0e:42:6d:0d:
5a:72:cf:74:7c:bc:90:77:b7:a0:73:6c:35:89:41:08:5d:60:
08:80:68:1e:ba:3d:74:f7:5e:61:1d:2c:cd:db:55:90:09:d0:
ec:d0:af:9f:01:7d:65:53:3b:8a:44:af:5a:98:83:34:40:7b:
3f:22:19:3d:b2:6d:b5:26:3b:33:4f:bd:98:d2:14:59:59:a0:
8c:a3:eb:3f:b2:ad:0b:67:d4:23:64:37:69:b5:ce:eb:db:53:
70:ac:64:36:fb:d8:e7:f3:64:6c:a7:07:70:f7:2d:d8:08:08:
19:ec:67:63:73:69:f2:20:ee:f1:e4:38:cb:36:df:ed:cc:fb:
a5:77:c4:81:8a:e0:6f:ae:26:08:97:f6:35:ad:7e:32:e7:dd:
4f:99:68:b1:c9:0d:b0:79:e0:c1:3a:d8:d9:9c:aa:d1:b0:fc:
b4:d5:ce:e2:33:75:bb:72:ba:d7:cd:30:ac:74:6b:77:c5:12:
9c:b3:2a:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org