Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/RUN9SAmlmsMLUbm10riPy1XH1eE.roa
File: RUN9SAmlmsMLUbm10riPy1XH1eE.roa (raw, json)
Hash identifier: cpIvum9Bo/DTTpU3GQcDn26fhEkvuJ4N1hnJcfKv1PE=
Subject key identifier: 45:43:7D:48:09:A5:9A:C3:0B:51:B9:B5:D2:B8:8F:CB:55:C7:D5:E1
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A52
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/RUN9SAmlmsMLUbm10riPy1XH1eE.roa
Signing time: Sun 07 Feb 2021 11:37:26 +0000
ROA not before: Sun 07 Feb 2021 11:37:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 21859
IP address blocks: 210.61.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2642 (0xa52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:37:26 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=45437D4809A59AC30B51B9B5D2B88FCB55C7D5E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ca:bf:b3:b4:d4:05:16:27:77:9c:74:61:b1:
5f:db:b6:fe:1f:2a:79:5f:9c:4e:03:4a:0e:0d:76:
93:9c:5e:ef:18:1b:12:4f:42:ea:26:62:95:c7:71:
c3:b5:a3:a5:7b:dc:e2:4c:8f:50:23:c7:78:ca:34:
4b:42:d4:fb:28:75:0a:da:0f:c7:46:21:5f:38:c7:
14:70:ef:41:20:13:e4:c8:8c:23:0a:09:72:59:23:
84:3d:7d:85:d6:94:74:41:74:ca:52:06:47:02:7a:
bd:3d:f0:a1:bd:99:80:69:fe:7a:d6:cd:be:9b:95:
3a:f1:fc:2f:66:52:f8:32:e9:fd:00:e0:12:6d:95:
82:fd:8a:4a:96:4d:58:52:de:36:30:dc:9b:e6:b0:
27:0b:35:12:e5:0c:bf:7f:e7:82:8e:cd:27:68:a1:
a5:56:63:17:d6:3d:54:f6:fa:86:f9:a6:f8:a5:75:
eb:c5:fb:86:8e:f8:89:02:75:e6:51:ac:4b:91:3f:
08:79:55:4a:ad:8a:d6:1d:86:be:c3:36:8e:70:9a:
e2:d2:87:94:e2:60:86:57:c4:c2:a3:06:a2:cf:4b:
6b:07:27:37:9e:26:17:47:45:ef:86:d6:03:28:47:
59:04:fa:4c:35:7a:cc:02:4b:93:ec:ee:30:6d:49:
12:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:43:7D:48:09:A5:9A:C3:0B:51:B9:B5:D2:B8:8F:CB:55:C7:D5:E1
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/RUN9SAmlmsMLUbm10riPy1XH1eE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.201.0/24
Signature Algorithm: sha256WithRSAEncryption
83:87:7a:95:e0:69:2d:43:fc:35:14:d0:0f:15:c0:57:a2:7d:
f0:1d:d7:71:d5:4f:cb:92:55:f5:bd:52:73:a3:56:40:f5:34:
16:7d:34:4e:94:c1:49:b8:af:eb:8b:91:c7:bb:1e:47:2c:23:
63:78:4d:de:ce:29:ce:ce:b6:1c:17:87:11:1c:be:50:3b:a5:
88:01:bb:4c:a8:71:c8:c2:5d:3c:f7:de:e1:53:cc:35:13:96:
2a:03:4c:b9:dc:3b:cf:2f:51:6b:79:e4:a1:79:33:cd:92:28:
84:dd:0d:d0:63:40:06:64:ed:5a:0d:c3:89:30:b8:85:6f:bd:
87:e7:08:53:48:b7:fd:dc:a6:77:43:d9:cf:e6:40:7a:b2:7d:
3b:1b:5e:6f:0e:ce:11:6c:ef:a7:de:8e:7f:09:25:b6:90:09:
1b:83:72:78:1f:25:0f:a4:d2:d3:d4:fe:7d:67:9e:4f:4e:2b:
cb:75:d0:a2:3b:1d:ac:34:cd:61:86:8e:6d:47:01:f8:f1:48:
1d:f3:82:ae:49:84:64:61:0e:2f:ca:88:61:eb:99:3b:9a:f7:
e2:fa:16:59:d0:af:b8:e6:47:14:ab:96:c8:fc:e5:5a:b1:ee:
3b:60:be:69:12:e7:68:95:09:95:cf:13:9d:1a:fe:ec:0b:ed:
86:ed:40:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org