Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/NySjOU_u7M7i2oExMvKO11PSkWY.roa
File: NySjOU_u7M7i2oExMvKO11PSkWY.roa (raw, json)
Hash identifier: 3OCeoAr6zI96iwysXSbmlKBu5OQ5bv/1Oml/GDaet8Q=
Subject key identifier: 37:24:A3:39:4F:EE:EC:CE:E2:DA:81:31:32:F2:8E:D7:53:D2:91:66
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0851
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NySjOU_u7M7i2oExMvKO11PSkWY.roa
Signing time: Tue 29 Sep 2020 09:58:36 +0000
ROA not before: Tue 29 Sep 2020 09:58:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 21859
IP address blocks: 210.61.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2129 (0x851)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:36 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3724A3394FEEECCEE2DA813132F28ED753D29166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d4:cf:ee:5f:58:78:5e:e6:c8:83:c0:63:ee:
18:a5:e4:6c:df:f9:09:11:b5:2b:a0:f9:9b:cd:11:
9a:2d:c7:7d:cd:3f:02:a4:d7:39:8e:38:d8:b9:30:
fc:10:cd:db:17:5f:2e:f7:55:d2:9b:c6:80:84:60:
0a:60:dc:ae:2e:ef:7f:33:b6:3c:66:80:39:ba:24:
50:20:8a:cc:4e:61:95:81:0f:02:ab:46:83:34:d3:
76:5b:f9:5c:54:83:00:ff:1e:42:55:e2:54:ff:ff:
48:c2:ca:bc:0c:2a:11:78:f4:bc:0d:c9:ea:36:ae:
eb:3a:36:4a:34:2f:e9:d3:35:ca:c3:1b:ea:99:fd:
7f:16:c0:9d:b3:c7:b8:3f:f7:d9:25:0e:ea:96:b4:
1e:43:7f:f4:08:e9:a1:bb:ee:3b:68:e3:cf:e5:57:
20:49:69:b8:6e:38:87:87:6a:72:08:73:9f:0e:52:
29:cb:f9:7f:6e:c7:e0:af:cf:9b:db:c4:27:34:9a:
22:df:78:9d:92:1c:d1:06:ed:21:62:90:ee:56:67:
be:46:0d:e8:b3:b0:7a:b7:b5:37:17:5b:d1:14:2f:
36:66:e4:43:88:ee:fe:98:80:8d:8a:c3:33:e8:35:
e0:68:de:df:09:1d:83:bc:75:ce:bd:2c:a0:51:c9:
4c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:24:A3:39:4F:EE:EC:CE:E2:DA:81:31:32:F2:8E:D7:53:D2:91:66
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NySjOU_u7M7i2oExMvKO11PSkWY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.201.0/24
Signature Algorithm: sha256WithRSAEncryption
be:9a:44:43:60:3d:5c:d4:fd:b3:53:27:4e:27:72:4a:fe:54:
53:3b:00:53:dc:ee:e2:8d:db:36:20:e7:9a:1a:51:11:64:1f:
61:b9:c4:85:67:2c:61:64:3e:e3:f9:a7:f5:2c:46:ce:1a:4c:
a4:bb:c3:86:41:02:9a:56:0b:b3:f4:a2:14:dc:c1:ee:31:b5:
92:a0:d5:4e:84:32:9f:66:d0:b2:d6:8d:aa:c5:5d:9c:9e:37:
94:2c:88:02:fd:6d:7e:b8:28:39:3d:b2:68:06:7c:82:f2:87:
a8:d4:66:24:ca:33:6e:95:87:46:ee:01:df:7a:97:4d:45:63:
73:34:3f:42:da:e4:eb:65:00:3c:5e:47:e1:81:4e:b3:04:cb:
ea:56:ec:61:a0:20:5f:45:31:0f:37:21:95:f3:75:f7:7b:30:
08:e0:19:72:9e:5c:fb:29:07:cb:21:04:93:e8:5d:92:00:bb:
87:72:0c:98:eb:67:78:b4:33:b9:11:6b:4e:4a:26:4c:02:b5:
30:28:5e:63:43:e2:c0:68:e2:14:d8:76:b8:7c:73:78:c9:07:
3b:19:6c:72:24:94:2e:83:1a:86:66:9c:9a:22:e2:cb:8a:34:
3e:4b:42:67:31:65:0e:fa:a2:40:d3:16:80:1d:24:23:05:eb:
b6:82:dc:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org