Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/m6tUPF-uSdQWkaN9vi2i4SsLEjg.roa
File: m6tUPF-uSdQWkaN9vi2i4SsLEjg.roa (raw, json)
Hash identifier: nIzj07QVSdAA4QT6rhUHMKU99Q2Qgo+5/RAjqH6J/uI=
Subject key identifier: 9B:AB:54:3C:5F:AE:49:D4:16:91:A3:7D:BE:2D:A2:E1:2B:0B:12:38
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AA3
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/m6tUPF-uSdQWkaN9vi2i4SsLEjg.roa
Signing time: Sun 07 Feb 2021 11:38:33 +0000
ROA not before: Sun 07 Feb 2021 11:38:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 211.21.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2723 (0xaa3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:33 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9BAB543C5FAE49D41691A37DBE2DA2E12B0B1238
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f2:73:f8:f7:ad:c2:1e:d0:5d:4a:60:8d:bc:
27:3b:68:27:fe:b3:0e:45:fd:31:d8:6c:bf:15:64:
f5:ac:d4:2d:f5:b8:58:09:83:d9:b3:69:4a:d6:98:
84:aa:09:07:26:5f:2d:c1:35:0f:7c:5b:9b:5b:ec:
35:ac:13:77:4a:a9:07:c7:b0:b0:36:4d:a3:bb:27:
e7:95:9e:5a:56:4b:01:17:c4:b1:66:9b:51:cf:c2:
45:28:ce:30:f9:82:f4:ae:53:9d:91:d4:31:03:d5:
8f:92:93:36:44:65:da:7c:df:77:9b:a7:4b:ca:24:
af:a6:5e:ee:12:04:bf:26:1b:18:b0:41:6a:46:83:
ad:e3:f5:03:49:7d:52:d7:4b:c3:f5:c7:fc:28:f1:
a0:bb:84:71:f2:45:18:5f:99:4f:0c:ab:98:06:80:
95:0f:5d:d8:b3:90:4e:90:36:2b:0f:ea:6d:b2:28:
39:f6:e9:40:ce:65:b7:dd:e8:6b:01:1b:89:9a:96:
d3:8a:36:4f:09:a7:db:ad:c2:10:ab:bb:a8:3b:80:
79:b1:e2:a0:95:4a:d5:dc:02:74:a1:e1:d5:f7:2c:
5d:a0:c2:2a:6e:4d:23:39:89:cc:1d:38:75:35:54:
05:43:5c:10:fd:96:a7:4f:8b:b5:ef:63:e1:94:5b:
60:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:AB:54:3C:5F:AE:49:D4:16:91:A3:7D:BE:2D:A2:E1:2B:0B:12:38
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/m6tUPF-uSdQWkaN9vi2i4SsLEjg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.21.0.0/16
Signature Algorithm: sha256WithRSAEncryption
84:23:fb:2c:50:27:7f:30:f6:e7:b5:05:e3:f8:0a:38:86:7b:
9f:df:90:56:ca:f4:f5:ed:74:3c:e2:ed:ce:7e:c6:82:ce:8e:
d0:9f:93:ab:f1:79:1e:4a:d2:f8:39:f2:8f:60:ab:85:4c:53:
4f:01:8f:0e:dd:20:07:56:ce:26:bf:37:75:1b:41:a8:7a:b4:
8e:d1:8a:0a:6f:e1:0a:40:8c:4d:4c:ab:e2:65:4c:25:8f:0f:
35:6a:96:ef:68:1b:08:74:c3:ac:b3:e4:47:dd:ad:1c:aa:ee:
3e:6d:e5:c0:2b:92:ee:0d:7b:39:d2:34:e3:64:8b:e4:7c:f2:
25:fa:00:bf:cd:95:1d:af:4e:14:a6:e9:7b:5a:a9:27:b3:9f:
03:d5:9a:36:d0:8c:dc:8b:21:aa:b8:8a:ae:d4:56:17:2c:27:
59:f8:15:74:46:ad:1b:77:ea:38:30:48:15:5f:10:df:39:6f:
ab:1f:c0:f0:d8:54:64:f6:1b:9f:36:d8:e5:fe:35:22:6b:70:
1b:90:4d:27:76:23:be:75:50:22:af:90:6b:d1:b7:8a:00:c0:
b8:65:84:f3:f5:bd:29:86:2e:ec:6b:2f:4c:f0:e3:0c:29:74:
65:79:5a:b9:cb:c3:3d:3a:e2:39:16:70:4a:c9:f2:12:18:39:
d9:5e:91:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org