Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/WXqxyKnZeTS_G8BJc-dFlpVcTys.roa
File: WXqxyKnZeTS_G8BJc-dFlpVcTys.roa (raw, json)
Hash identifier: B7BQeISimq0gpmMCbkfO8n1zsWttuhmxQZnYNJRX/oY=
Subject key identifier: 59:7A:B1:C8:A9:D9:79:34:BF:1B:C0:49:73:E7:45:96:95:5C:4F:2B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0BFB
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WXqxyKnZeTS_G8BJc-dFlpVcTys.roa
Signing time: Wed 29 Sep 2021 02:50:44 +0000
ROA not before: Wed 29 Sep 2021 02:50:44 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 15133
IP address blocks: 61.221.181.64/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3067 (0xbfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:44 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=597AB1C8A9D97934BF1BC04973E74596955C4F2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c9:7d:5e:12:88:df:21:e6:df:5b:bf:2f:6b:
88:5e:73:fc:06:b6:81:f8:5b:95:fe:6c:60:95:2b:
ef:fb:a5:dd:05:d5:d7:b9:d2:e1:f3:fb:d6:32:6c:
5d:fb:86:28:bd:dd:ee:3e:09:c5:3c:da:51:0c:9b:
02:0b:8c:8b:cf:79:c3:2c:17:ab:c8:e2:69:3a:92:
d2:e7:c6:84:e8:81:04:d2:c2:d4:8b:d0:57:05:8c:
ef:71:96:18:8e:f5:db:0a:6d:92:5d:97:f8:f9:5a:
01:77:68:22:b5:61:ea:59:25:e1:14:bb:19:ec:93:
3f:b9:58:b6:70:7c:bc:0e:ff:87:39:87:d0:ea:46:
de:a4:7f:a3:4e:1c:5a:5a:99:b4:1d:7f:a2:ce:f9:
76:85:9f:d4:ee:95:ee:f2:ab:c6:97:2c:a8:0c:95:
53:0a:10:3d:f8:32:74:f7:23:cf:2f:e7:74:f2:c9:
c5:0a:9b:b9:81:61:cf:0a:37:a9:63:05:d4:e9:59:
46:8f:ac:4f:b7:b9:e6:f6:88:f1:32:0c:68:b2:83:
36:11:4a:8e:a7:98:ec:07:37:4e:b6:5f:08:75:a8:
2d:f6:3d:fe:f4:85:f0:29:81:a8:2c:4b:a1:55:cd:
4a:d0:44:06:26:b7:38:f8:d1:cb:fe:7b:1b:b3:f4:
3c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:7A:B1:C8:A9:D9:79:34:BF:1B:C0:49:73:E7:45:96:95:5C:4F:2B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WXqxyKnZeTS_G8BJc-dFlpVcTys.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.221.181.64/26
Signature Algorithm: sha256WithRSAEncryption
5c:e6:90:b9:39:26:57:ff:60:70:1d:d5:86:7e:68:34:64:58:
15:5d:c3:4f:4b:b2:4a:39:9f:c0:fe:d6:2c:94:bf:02:da:e5:
ac:b4:fe:5c:53:18:9a:dd:5c:c9:f7:be:10:ea:8f:ef:74:e4:
8a:72:85:9c:c9:19:b5:bc:fd:c6:6d:c5:d4:28:c2:d5:42:04:
c6:c5:f7:f0:ba:2c:da:13:e6:04:a8:5a:aa:d9:0a:61:09:7b:
fa:90:3a:77:26:13:d9:d3:d5:af:bb:e1:13:b5:f8:2f:2e:c2:
66:b6:08:44:c3:20:a9:f7:9c:c8:38:01:d9:f5:45:ea:a6:be:
e3:77:0c:62:de:69:f7:8c:16:25:e1:e1:9f:35:ae:eb:5b:f9:
45:b3:67:64:de:2b:3f:4d:a3:30:8a:9f:76:63:d7:2e:e2:67:
2b:45:63:b8:bc:5b:bb:a5:b6:b3:ac:0c:43:ba:ce:b9:34:c9:
c0:0a:e9:6b:0a:07:61:55:0c:c3:2b:f3:2a:3c:49:7d:16:3f:
e2:c9:21:8d:85:8f:aa:63:73:33:63:a3:10:8a:19:31:36:04:
b5:57:dd:17:69:a8:e6:d8:97:af:94:c5:a6:d5:02:14:25:a2:
4f:b9:3a:a9:97:15:db:22:0b:1e:c4:38:7d:57:bf:a6:a2:2e:
14:f8:c1:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org