Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/4hFYaS8dDazdv5bcmUXg6_Dp_4g.roa
File: 4hFYaS8dDazdv5bcmUXg6_Dp_4g.roa (raw, json)
Hash identifier: VNo/FENDw595JzU3e6TJ23hmt4ZRMyPWfo19u39ycW4=
Subject key identifier: E2:11:58:69:2F:1D:0D:AC:DD:BF:96:DC:99:45:E0:EB:F0:E9:FF:88
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0861
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/4hFYaS8dDazdv5bcmUXg6_Dp_4g.roa
Signing time: Tue 29 Sep 2020 09:58:41 +0000
ROA not before: Tue 29 Sep 2020 09:58:41 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 210.61.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2145 (0x861)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:41 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E21158692F1D0DACDDBF96DC9945E0EBF0E9FF88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:da:b9:67:84:a1:5b:ca:2d:d3:3a:53:0d:c2:
5d:ba:06:5c:60:8f:a1:a3:b8:dd:76:34:c7:2e:62:
e3:34:d2:bb:1d:f0:55:2b:4f:6b:61:cf:c7:81:cb:
bf:78:48:23:d5:a0:45:07:3e:d0:39:1c:00:8f:1f:
c8:b2:39:f7:0a:9d:a8:f4:0e:c9:3f:7c:27:cc:f4:
51:91:4a:a0:95:eb:d0:03:f1:e5:56:95:51:f5:d4:
7e:63:9c:60:81:4a:b7:01:95:6d:66:42:b3:de:b1:
a2:38:da:7f:63:41:15:ac:fc:29:e9:b5:b2:25:78:
1a:ba:e6:88:69:94:61:95:6d:46:01:91:d6:1c:e7:
a3:84:0f:d1:5f:04:86:a2:f2:24:1a:c9:68:f5:e7:
d2:1d:47:23:2b:2c:2b:d3:ca:45:76:02:fd:ae:31:
05:2f:1f:ef:82:40:67:c8:db:12:16:99:97:fe:db:
a8:7a:4d:16:50:ed:d0:09:6c:b0:c9:e8:d5:98:4e:
0d:04:28:18:b2:aa:0e:02:b3:19:a9:1c:fa:b0:9e:
9c:74:b1:f0:a3:e2:5c:89:fd:f3:d1:6d:04:d3:0c:
60:74:85:2d:a6:0e:ec:87:83:4e:be:70:09:c8:e3:
86:a8:8f:f5:cb:45:12:8f:9f:32:5a:69:e4:e0:00:
0d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:11:58:69:2F:1D:0D:AC:DD:BF:96:DC:99:45:E0:EB:F0:E9:FF:88
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/4hFYaS8dDazdv5bcmUXg6_Dp_4g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.0.0/16
Signature Algorithm: sha256WithRSAEncryption
66:84:35:0a:8f:df:9b:83:6a:7c:50:15:2d:7a:2f:0e:c8:8e:
a0:a1:12:ce:33:cd:ce:cf:99:ac:e1:be:ce:df:83:13:e1:ff:
f0:d7:d9:a5:cf:3f:5c:6c:90:b0:83:b5:45:3a:a1:8e:05:8a:
a0:86:b0:8b:a0:e8:0f:12:37:dc:53:f6:d5:65:85:78:6f:06:
d0:0b:c4:bb:16:99:21:9b:6d:9a:2e:82:64:4e:0d:89:99:17:
b3:c4:28:24:20:ed:75:9f:c1:f1:a9:17:17:6a:76:d6:64:f5:
72:5c:e3:3a:d4:05:58:5c:3c:9c:54:e7:d8:d7:67:2f:fb:4f:
64:9c:ac:d8:09:69:c1:df:9d:a4:9b:69:61:48:6a:21:94:a8:
23:34:cf:8a:a7:08:53:e2:cc:3e:8c:e5:09:5d:4a:4b:35:ac:
b1:bf:b7:be:6b:27:3a:4c:46:03:40:7b:15:82:44:82:25:48:
c5:be:70:3d:1d:ae:26:a7:11:32:54:1e:f3:96:dd:0e:62:da:
b2:cc:1a:b7:16:0d:36:23:73:5d:a6:aa:4a:fa:a5:92:2d:64:
3e:99:8f:00:41:2b:7b:81:72:50:37:20:e7:07:45:74:c9:29:
bc:56:97:21:c5:b1:ea:86:e7:47:f7:a5:51:45:e5:6a:6b:c6:
83:92:14:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org