Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/LMDgltJkxIytL-CQZRIcBIJYiJw.roa
File: LMDgltJkxIytL-CQZRIcBIJYiJw.roa (raw, json)
Hash identifier: tQ6rIykFEw90tIAuN6J+eQPTo9qNBIfyEBEnLaWbGEY=
Subject key identifier: 2C:C0:E0:96:D2:64:C4:8C:AD:2F:E0:90:65:12:1C:04:82:58:88:9C
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0B28
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/LMDgltJkxIytL-CQZRIcBIJYiJw.roa
Signing time: Sun 07 Feb 2021 12:43:23 +0000
ROA not before: Sun 07 Feb 2021 12:43:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131661
IP address blocks: 210.62.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2856 (0xb28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 12:43:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2CC0E096D264C48CAD2FE09065121C048258889C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:85:ed:c3:ad:ae:7f:f1:20:61:d6:db:c8:89:
fa:c0:4e:ae:82:4e:84:ff:12:31:28:6a:45:c0:57:
c7:12:ca:24:b5:02:62:20:01:d0:30:7a:51:fd:5c:
a7:c9:1e:b4:d3:51:c5:8a:57:ee:02:26:33:20:1e:
f1:7a:1e:90:4b:cd:88:3b:e8:29:c5:bf:7c:fb:f8:
75:6d:74:f8:24:d3:f9:c7:63:d9:5b:5a:d3:e5:2c:
f5:85:76:3d:45:90:f4:c3:f7:52:f2:4b:e5:b7:11:
ef:1f:d3:38:a9:8a:ff:f4:99:e1:eb:55:8e:15:f5:
3b:a3:8a:95:74:10:35:55:3f:51:0e:d3:ca:38:c8:
f2:29:4b:ea:9d:5c:9c:33:ec:f2:41:07:52:c9:df:
78:c6:4f:fb:6d:7c:21:79:26:aa:34:8c:e2:60:3e:
69:ac:bc:ad:eb:fe:47:6d:c6:57:a0:61:ac:62:70:
82:fb:7a:5e:f3:68:b1:70:1b:f6:b4:97:fe:93:12:
52:96:df:3e:c2:5e:bb:ec:15:46:68:f8:d2:5e:1a:
10:b5:36:f2:55:82:62:d5:84:4c:83:0d:57:55:1b:
51:62:61:c0:d3:9e:63:33:0a:c2:26:9a:b5:c7:17:
8b:98:6d:97:44:b4:25:ae:e7:60:0e:e3:b3:28:8a:
33:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C0:E0:96:D2:64:C4:8C:AD:2F:E0:90:65:12:1C:04:82:58:88:9C
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/LMDgltJkxIytL-CQZRIcBIJYiJw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.250.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:c4:e5:21:71:d7:ab:2c:98:27:64:01:06:93:b6:f4:8a:2f:
d7:4d:71:f9:7c:a0:00:89:ac:85:70:ec:5d:62:4d:8b:19:ef:
ce:44:6e:35:5e:35:fe:ac:db:8c:de:cf:44:8b:be:16:c0:8a:
d9:8e:e2:83:14:f3:5e:89:3b:53:e0:8d:0c:22:c1:99:94:05:
13:ad:e5:40:ee:ef:b0:02:83:d9:5a:f5:85:3f:32:a1:db:20:
b6:aa:0e:da:69:d3:ca:c4:2f:97:da:77:27:24:1c:32:ed:bb:
c8:6e:1d:91:c8:12:65:fb:a3:14:28:a7:81:4c:8a:d2:ad:c6:
66:72:1b:45:16:6c:20:21:2a:fa:c3:80:9f:bf:87:e7:d5:4b:
b2:93:41:77:d1:07:4c:7a:4e:f4:83:0f:c3:2c:af:dd:db:ca:
05:ea:4d:3b:99:cb:ef:15:8c:d0:10:a0:fd:62:11:53:11:72:
c8:17:0b:9c:16:fc:8f:ca:89:50:c8:ca:bf:9b:6f:0c:6a:6a:
be:e1:4c:6d:16:86:c0:85:69:6d:ff:df:6b:f7:88:d8:13:a2:
ec:d0:a7:66:22:c6:ba:a6:8a:6c:79:b5:6d:22:52:fe:c1:d9:
52:33:52:7e:93:6d:e7:df:f0:65:1e:f3:44:7b:8e:f9:e6:88:
b1:eb:1a:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org