Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/J0K1B4QXO9dycLb5IfykV3lE3Ks.roa
File: J0K1B4QXO9dycLb5IfykV3lE3Ks.roa (raw, json)
Hash identifier: CkKCSo4xnbjo3VQ/uB+NTRFvcB+j8JoxI02dZ4vYJpY=
Subject key identifier: 27:42:B5:07:84:17:3B:D7:72:70:B6:F9:21:FC:A4:57:79:44:DC:AB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A72
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/J0K1B4QXO9dycLb5IfykV3lE3Ks.roa
Signing time: Sun 07 Feb 2021 11:37:51 +0000
ROA not before: Sun 07 Feb 2021 11:37:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 111.240.0.0/12 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2674 (0xa72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:37:51 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2742B50784173BD77270B6F921FCA4577944DCAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1c:ea:24:64:5b:1e:db:d7:18:62:c8:a3:f7:
f2:bb:69:e1:09:bc:6d:96:39:6c:70:04:b3:e5:85:
09:d3:60:11:9f:b4:98:80:de:35:1a:c9:0c:13:d6:
3e:66:c0:a5:de:80:9d:62:7b:a7:ca:20:fc:9a:2f:
83:7f:19:9b:1f:8a:81:ee:96:cb:21:a4:54:b9:0e:
5f:98:f7:4a:14:c5:e2:25:6e:7f:fe:b2:54:c4:8a:
6f:2c:9f:e4:79:28:e4:ed:d8:97:e3:9d:68:c8:1f:
c6:40:d5:07:5a:2f:01:9f:56:5c:c7:cc:b8:3b:d3:
d6:84:ed:ec:90:98:64:be:f0:e2:55:da:2c:fa:ec:
06:ae:20:7e:7a:07:94:75:fb:c0:a6:8c:f4:07:12:
ef:71:b9:b7:88:0c:fe:3b:79:13:9d:86:bd:d3:66:
8e:c2:d9:f8:cb:46:ec:fc:ad:69:45:5e:4b:f0:b8:
c0:55:e5:aa:84:fb:d7:a6:bc:7b:8b:2e:98:88:29:
3c:54:43:8d:1e:88:14:c0:bb:e4:8a:3c:00:9c:d5:
eb:75:d7:2c:89:c3:b9:66:02:07:b4:9f:da:eb:47:
93:73:b8:57:de:f6:01:14:e7:2a:96:66:77:6c:d6:
e7:59:a5:4f:5d:0c:cd:80:70:27:44:f8:22:48:cb:
55:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:42:B5:07:84:17:3B:D7:72:70:B6:F9:21:FC:A4:57:79:44:DC:AB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/J0K1B4QXO9dycLb5IfykV3lE3Ks.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.240.0.0/12
Signature Algorithm: sha256WithRSAEncryption
87:99:29:6d:cc:70:ec:13:ee:1e:91:1c:8a:f0:4f:53:f2:17:
87:b7:c2:4d:f5:88:32:89:82:c4:c8:59:13:26:10:69:f6:b7:
e3:6d:91:74:f1:bb:47:2c:ca:69:1c:14:28:75:ef:08:a9:92:
dd:ef:2f:83:a9:d3:b8:89:d9:79:9b:58:75:b6:32:0c:6d:c7:
12:51:fd:2d:05:81:f0:96:a6:cd:b0:6d:68:63:79:48:1b:33:
be:e7:6b:be:64:26:4d:b6:80:75:72:11:da:87:a8:bc:d0:50:
15:aa:3a:91:bb:a5:80:f7:79:97:c9:ee:0e:10:71:94:66:aa:
14:9d:c7:94:6a:e4:6d:29:fc:d7:26:3f:43:ed:ee:fc:b0:3a:
bd:8d:a8:01:f4:29:75:65:14:42:fd:2e:6e:b2:2d:21:f2:48:
91:3d:9c:38:f0:4c:5c:e8:52:21:27:29:0a:3b:14:eb:33:28:
ff:04:e5:db:f6:04:a3:60:99:b4:30:e4:d7:17:d4:d3:c6:67:
b9:ca:59:c7:41:5a:56:d2:06:34:33:fd:aa:56:71:60:f5:68:
48:04:c1:3d:d1:04:1b:b4:ba:c9:68:7a:61:09:75:2e:3b:6c:
80:70:a0:d4:4b:07:7f:3f:b6:f2:8e:fb:45:91:1d:a4:41:0a:
5e:93:6c:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org