Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/R-QpTqa4RmqcMl3GY9Y_4pckt6g.roa
File: R-QpTqa4RmqcMl3GY9Y_4pckt6g.roa (raw, json)
Hash identifier: h2CpniSAFwlHy4hIBc8H9oMtPWiFTQjYAoTQ1SXa1iA=
Subject key identifier: 47:E4:29:4E:A6:B8:46:6A:9C:32:5D:C6:63:D6:3F:E2:97:24:B7:A8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 086A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/R-QpTqa4RmqcMl3GY9Y_4pckt6g.roa
Signing time: Tue 29 Sep 2020 09:58:43 +0000
ROA not before: Tue 29 Sep 2020 09:58:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 60.250.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2154 (0x86a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=47E4294EA6B8466A9C325DC663D63FE29724B7A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2a:c5:8b:07:3a:ab:6f:94:4a:32:c7:57:ca:
bb:f8:e7:68:8d:61:a7:bf:a4:7f:8e:91:c3:6e:c6:
81:c7:e6:14:f3:40:90:5a:c5:59:b1:f5:9b:ed:f7:
9d:2e:64:b9:95:b2:8c:fb:83:a6:00:e0:07:dd:9d:
3d:ee:f4:01:3f:c9:ae:89:14:13:e3:d1:5b:00:8d:
5c:95:30:6f:c8:7e:35:60:19:f3:ed:f5:13:5c:01:
aa:b1:68:40:fb:c7:29:91:f5:89:b0:e4:b5:06:f0:
0a:da:71:dc:bb:37:25:56:4e:1b:01:08:56:cd:a0:
b3:b8:18:e9:e8:78:b5:6e:c3:18:b9:ac:1d:e9:5e:
bc:24:1d:83:9d:47:52:06:59:5d:45:69:51:37:b0:
ea:f5:83:df:26:ad:fd:98:28:40:2a:b1:be:8a:83:
50:f2:79:0c:5c:e9:13:a1:ba:e0:2b:0f:74:b1:d9:
f3:30:ab:5b:ac:86:76:02:3b:d9:67:6c:7a:e3:48:
d8:85:5c:8e:d6:8e:c0:74:07:1b:5a:27:51:98:fb:
5c:de:d4:d5:f8:b5:20:75:d7:56:76:e3:63:50:7f:
db:f1:d1:20:4d:cf:fc:05:ba:32:5f:bd:1c:e7:8d:
41:93:de:b8:4d:95:11:54:6f:cf:e9:c0:4f:2d:a0:
05:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:E4:29:4E:A6:B8:46:6A:9C:32:5D:C6:63:D6:3F:E2:97:24:B7:A8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/R-QpTqa4RmqcMl3GY9Y_4pckt6g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.250.0.0/15
Signature Algorithm: sha256WithRSAEncryption
9f:55:c4:66:fa:06:71:02:77:60:ea:61:e8:55:d2:69:76:71:
ad:8b:b8:4e:ee:b3:3d:d9:1f:2b:d0:7f:5e:3a:58:f6:c9:5b:
c6:fb:6f:92:ef:ba:33:4d:e9:06:d8:79:f6:f8:f9:f6:eb:c1:
16:68:44:02:35:ff:02:e3:78:cc:d8:cd:4e:3b:eb:99:0f:6e:
aa:2c:c4:33:5f:ba:82:97:9b:04:fa:85:6d:38:19:ab:ea:0a:
45:98:e8:d0:60:8a:43:d8:4f:2a:89:60:0f:f6:e9:9a:46:bb:
6e:e5:50:75:c9:fc:05:af:f2:b9:96:3f:a5:45:c0:cb:50:1c:
6b:ff:9e:85:5d:f2:f6:5a:9c:54:dc:be:fb:ba:c7:d8:db:ad:
fb:83:61:f3:65:25:aa:ad:b4:42:53:60:a1:f2:8a:d3:0c:ad:
f9:54:a9:77:c7:86:b9:9e:4d:6c:14:6c:86:a0:4d:b6:89:dc:
2b:2a:9c:99:73:9f:b4:49:2e:e3:e5:c7:6d:7c:cf:f0:d6:be:
3c:4b:d9:ea:d5:f8:32:b7:79:eb:0e:88:01:63:59:82:62:89:
08:25:8f:ab:eb:f3:cb:1c:1f:77:26:85:1c:55:4f:e9:30:69:
0a:95:eb:1f:2b:ad:3b:a9:71:c6:5a:e9:d5:f8:32:9b:28:a4:
88:94:bc:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org