Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7lkIf3m8l6hgYaOg1aV6zpa5wzI.roa
File: 7lkIf3m8l6hgYaOg1aV6zpa5wzI.roa (raw, json)
Hash identifier: 5/6TytcIoyxqfNKkDUGJwtiVZIIk70qRhm6Lf41miKU=
Subject key identifier: EE:59:08:7F:79:BC:97:A8:60:61:A3:A0:D5:A5:7A:CE:96:B9:C3:32
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C3A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7lkIf3m8l6hgYaOg1aV6zpa5wzI.roa
Signing time: Wed 29 Sep 2021 02:51:02 +0000
ROA not before: Wed 29 Sep 2021 02:51:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 60.250.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3130 (0xc3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EE59087F79BC97A86061A3A0D5A57ACE96B9C332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d3:ab:23:e2:fa:5b:1b:69:fb:f7:18:e2:dc:
ce:32:b7:44:c6:5d:a3:e9:55:b7:6b:05:fb:6d:b4:
68:09:61:c4:f1:d4:44:0d:3c:f1:1c:8c:10:17:5b:
98:63:e1:25:d2:ea:43:e0:96:c8:01:cf:8e:99:a8:
4f:ce:63:ac:64:9a:f2:70:06:96:a9:b8:3c:3b:85:
27:67:49:a9:d2:f8:b8:da:bd:bb:1a:c6:d3:96:28:
6f:96:77:11:0d:fa:c3:25:d5:1d:7c:e1:62:8d:62:
60:f4:f0:1a:90:de:9d:72:fb:58:f7:2e:a7:80:bc:
e8:07:39:da:dc:ea:2d:8c:19:5e:a6:07:3b:9b:e3:
80:6a:55:96:ba:63:d6:b0:64:55:cb:59:8b:d9:5f:
42:73:8e:7c:85:5a:33:d4:ea:3c:01:af:fa:27:5a:
2f:7c:b5:6a:f1:dd:8d:ab:da:ca:95:f7:34:d7:84:
b8:41:12:e0:fe:ad:87:38:1f:f6:cf:02:54:0f:37:
72:e6:eb:a1:68:34:f8:ef:5b:6a:56:b4:8f:f8:eb:
dd:e9:bb:9b:8e:51:88:30:94:73:49:cc:15:95:85:
0b:75:b7:62:98:6b:d1:fb:93:ba:ce:ad:97:89:9c:
13:b5:0a:ad:d1:aa:e6:f8:db:1a:83:1f:a4:62:8c:
6c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:59:08:7F:79:BC:97:A8:60:61:A3:A0:D5:A5:7A:CE:96:B9:C3:32
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7lkIf3m8l6hgYaOg1aV6zpa5wzI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.250.0.0/15
Signature Algorithm: sha256WithRSAEncryption
b1:38:d2:1d:aa:36:e8:ee:35:d7:91:24:b7:02:7a:dd:db:61:
40:14:70:59:ca:3d:9f:80:3c:c7:bc:4d:ea:e3:a4:77:d7:90:
3f:83:d4:9e:db:de:63:b4:ba:f2:5d:e8:39:52:ae:2b:27:01:
ec:94:67:93:cc:68:b8:12:ee:9d:f0:65:c0:85:f8:1b:f9:3b:
c2:a6:db:d2:11:95:08:02:8e:0e:f9:ca:32:19:18:bc:f6:10:
ae:f7:02:aa:57:4e:7c:fe:88:50:7b:ba:09:35:8c:a5:ee:3b:
b1:9b:aa:12:cd:25:0e:9d:1e:d4:76:b5:d7:f8:90:ab:0f:e9:
80:e8:dd:85:76:b5:6c:f8:f8:5f:3a:a2:0d:c3:18:58:49:a2:
93:ff:5b:9c:c9:8c:d8:cf:f9:9f:53:86:81:34:6a:5b:e2:b4:
bd:1b:e1:ad:fa:d1:21:87:9e:f1:c1:2f:b2:56:67:fe:74:1b:
c1:fd:21:33:c1:c7:69:93:72:92:b4:9f:09:13:a9:ce:47:d5:
fb:37:67:f4:28:de:80:e0:1f:2c:4c:b2:78:b8:bd:38:f7:c7:
38:39:3e:ac:9e:66:6f:2a:b8:e4:f3:d0:d5:5b:42:23:79:e9:
15:36:0c:07:d3:e2:c9:97:d8:de:5c:0d:bd:28:62:92:a4:3e:
b0:ac:30:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org