Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/NM4094CfDXpvYwiw993-gD6Uyok.roa
File: NM4094CfDXpvYwiw993-gD6Uyok.roa (raw, json)
Hash identifier: K1Geka1idDdrfODALU/wBKHcYp4RsJzy97yLyIhugdI=
Subject key identifier: 34:CE:34:F7:80:9F:0D:7A:6F:63:08:B0:F7:DD:FE:80:3E:94:CA:89
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0837
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NM4094CfDXpvYwiw993-gD6Uyok.roa
Signing time: Tue 29 Sep 2020 09:58:28 +0000
ROA not before: Tue 29 Sep 2020 09:58:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 210.65.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2103 (0x837)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=34CE34F7809F0D7A6F6308B0F7DDFE803E94CA89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e0:99:36:36:8b:55:96:d0:31:14:d0:65:67:
fe:13:78:5b:1a:1c:21:12:0e:60:93:af:de:15:ad:
64:4a:70:9f:42:b9:d6:26:97:f5:8b:cf:36:17:46:
2d:66:9c:bc:a7:24:93:c5:8e:90:fa:71:79:07:b7:
e8:5a:2a:65:96:3c:e1:9f:27:51:d8:dd:02:a4:d0:
53:3d:49:38:d5:6b:ce:b8:72:68:f8:ab:ba:3c:1a:
6a:37:57:1b:ae:b7:5d:4a:e9:27:65:69:30:bc:b8:
19:a5:93:6f:fe:59:ac:48:03:3e:23:1e:a8:90:ed:
4a:e4:30:7a:9b:f1:ce:74:a5:28:c6:ea:4f:4b:7f:
6d:a6:09:7d:7f:2c:a7:3e:14:58:ab:5c:df:ce:b0:
ea:2a:f7:f6:a3:37:42:6b:3c:15:4b:fa:b5:cf:44:
a2:62:6b:ba:2b:68:c6:b6:bd:fd:2a:7c:4e:16:91:
f8:10:6a:d3:5b:d8:04:89:35:9f:23:2b:b1:75:d7:
20:5b:37:bf:39:8c:61:d2:99:a3:a9:61:c4:3b:b4:
ec:53:c8:85:c5:a5:0b:ba:56:54:83:4b:87:87:80:
07:0e:6f:30:f2:47:86:eb:6d:5d:1f:30:dd:95:37:
ca:06:82:61:59:d6:18:ad:3c:b0:ee:91:20:67:89:
df:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:CE:34:F7:80:9F:0D:7A:6F:63:08:B0:F7:DD:FE:80:3E:94:CA:89
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NM4094CfDXpvYwiw993-gD6Uyok.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.65.0.0/16
Signature Algorithm: sha256WithRSAEncryption
39:32:31:73:74:36:4c:0a:db:dd:16:22:f0:ca:04:42:a2:08:
a0:58:de:4e:c6:9f:0f:94:14:b2:d0:63:d9:b7:65:57:49:8e:
2e:e6:3e:09:ce:fd:37:51:be:e5:d7:52:a8:45:cd:5b:e9:d8:
fb:6f:6a:88:3c:51:a0:55:76:bf:70:10:51:21:be:11:b8:5b:
cc:3f:25:48:65:d3:04:81:69:a0:5b:3f:0d:09:33:b4:e7:92:
70:f0:10:15:30:be:66:5d:e0:11:d2:d0:7d:b2:f5:ed:65:92:
b7:da:a7:87:5e:72:81:9c:2e:09:bf:d0:b1:90:81:c9:94:85:
51:67:20:02:d3:ab:0c:98:e8:97:8d:bb:ad:48:62:73:5f:a9:
e4:77:fa:56:13:a1:50:d8:72:bc:40:28:aa:c0:bb:1e:d2:16:
f2:ff:05:65:72:25:e5:a6:dc:89:88:38:52:1f:0d:b7:59:64:
22:ab:9c:d1:a3:59:15:0f:6f:9d:82:bd:2d:e8:cf:3a:ce:5b:
af:dc:8a:3e:20:c5:97:9f:8d:f3:8b:a3:89:29:6c:6d:4b:da:
68:05:b6:9f:10:35:54:9d:a4:d6:8c:9c:8d:a2:13:7c:0e:17:
f4:70:bf:b8:d0:4e:8a:4c:89:ac:d3:4e:a3:59:82:10:01:51:
d7:5c:d3:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org