Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/nmzka9mn68kY2irq8sX4-1t3TzA.roa
File: nmzka9mn68kY2irq8sX4-1t3TzA.roa (raw, json)
Hash identifier: s5xnoam/6wF5YziwnohYHjwo3hkZ689bnlk+4DA0jxA=
Subject key identifier: 9E:6C:E4:6B:D9:A7:EB:C9:18:DA:2A:EA:F2:C5:F8:FB:5B:77:4F:30
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AD7
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nmzka9mn68kY2irq8sX4-1t3TzA.roa
Signing time: Sun 07 Feb 2021 11:39:20 +0000
ROA not before: Sun 07 Feb 2021 11:39:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 61.218.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2775 (0xad7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:39:20 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9E6CE46BD9A7EBC918DA2AEAF2C5F8FB5B774F30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ec:bd:32:24:b8:fb:32:ee:75:d0:2d:1a:03:
e3:42:75:66:78:32:e7:df:5c:b6:eb:f5:e1:bc:20:
23:cf:5f:e3:d1:f8:d8:96:7b:b9:9c:d4:89:25:e8:
ae:17:df:ed:85:93:39:50:c0:42:86:59:cd:cd:53:
19:8e:77:42:c4:35:fc:d3:be:32:a2:81:9e:84:0a:
4d:8d:e2:e3:43:c3:53:1f:20:f8:c1:84:0a:99:fc:
b6:4e:0b:a7:5d:97:cb:c0:e1:df:4b:51:30:7c:12:
c2:06:7d:88:b3:f0:d1:9b:45:d2:65:65:c9:34:d4:
55:31:6e:85:ef:d6:df:d5:f8:93:02:6c:b7:01:b3:
f8:0a:f3:f8:c9:6d:b6:f8:03:d9:32:65:a5:99:f2:
0f:22:5a:09:f6:5d:a6:00:e2:6c:54:22:02:fb:77:
f9:9d:30:26:a8:bb:50:9f:9b:01:d9:d4:27:f0:d5:
5e:04:75:f3:ce:e5:6d:c5:06:4d:7a:d6:b9:bb:44:
11:16:2d:84:17:27:c5:07:ee:1f:ff:39:07:1f:b8:
34:91:f8:88:3b:34:29:1b:fa:a2:70:62:96:ac:92:
82:d3:61:a2:15:b6:28:c3:43:29:97:92:7c:9b:a6:
2a:21:95:ea:86:07:d1:cc:b6:df:fc:d1:29:d0:07:
21:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:6C:E4:6B:D9:A7:EB:C9:18:DA:2A:EA:F2:C5:F8:FB:5B:77:4F:30
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nmzka9mn68kY2irq8sX4-1t3TzA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.218.0.0/15
Signature Algorithm: sha256WithRSAEncryption
b3:b9:5a:22:da:25:5f:20:63:79:af:7a:ee:b3:50:ad:93:da:
0e:a8:82:6a:9a:17:1e:c4:11:c5:0b:dc:22:12:7a:ab:09:9e:
18:bc:d0:1b:9e:15:da:b0:13:c6:af:d6:d4:af:3c:5a:38:0b:
5c:8f:9b:e2:1e:33:ab:2c:05:aa:c8:a4:1a:e7:8b:a4:1a:26:
b4:c2:05:66:b6:cc:23:d6:83:f7:c1:a0:18:d7:b0:95:56:00:
cc:c7:c8:20:c9:26:58:10:77:c6:47:4f:9f:1c:57:2a:17:29:
62:12:35:85:36:ba:64:21:46:e8:94:7d:8b:3d:e2:a8:b5:77:
08:b1:d6:41:4d:c7:cd:b8:b7:d3:58:2a:8a:de:88:74:4f:87:
c7:f0:a1:76:f8:e1:af:58:b3:cb:17:59:6b:d8:ba:1e:73:a3:
96:67:60:a8:bd:cc:4c:87:e8:8b:24:8e:29:de:9e:4f:6e:c8:
fd:63:90:6b:a1:a5:55:72:6b:8f:f7:ec:27:f6:63:42:3d:6f:
0b:31:70:ca:a2:19:3c:33:2e:ba:d3:74:5f:b1:be:fd:da:cd:
ae:2e:7c:ea:c1:8d:a2:83:fd:d6:0f:e0:26:6d:73:4f:80:11:
a1:74:d8:df:65:80:1e:ba:c4:f7:5b:14:1a:de:40:c9:26:68:
ab:17:4b:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org