Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/rKyKuuVso3LvaVxDAyUP54OZOXM.roa
File: rKyKuuVso3LvaVxDAyUP54OZOXM.roa (raw, json)
Hash identifier: 5Igi8TLAJ3s9N7wWNl72D5VKTbpih6jWPi3lcDZBngQ=
Subject key identifier: AC:AC:8A:BA:E5:6C:A3:72:EF:69:5C:43:03:25:0F:E7:83:99:39:73
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/rKyKuuVso3LvaVxDAyUP54OZOXM.roa
Signing time: Thu 15 Sep 2022 02:48:37 +0000
ROA not before: Thu 15 Sep 2022 02:48:37 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 60.250.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:37 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=ACAC8ABAE56CA372EF695C4303250FE783993973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f0:71:cd:ff:48:a9:1d:34:36:1e:8e:5e:ed:
63:06:15:9a:cb:61:28:e5:5c:11:6c:5f:53:86:ca:
b1:5c:01:cc:4a:80:66:d3:33:24:3a:5e:1b:97:69:
69:5b:7c:69:c6:f2:f1:c2:a4:30:d5:8f:98:22:3a:
3f:c8:3f:1e:bf:dd:b1:51:43:c9:9e:d1:1e:a5:62:
b4:95:4f:2a:42:14:2d:d8:06:df:5e:6c:26:a0:32:
c7:de:c8:8a:d1:96:0e:e6:05:98:12:65:8a:cf:cf:
d7:d6:d6:c1:bc:1a:66:7d:3b:bc:d3:24:4d:6c:a3:
fd:5c:26:41:68:30:18:fa:dd:f1:a0:f6:e7:2f:6e:
59:85:4c:cd:1a:e6:1e:d2:26:e6:51:2d:e5:6d:d6:
3b:71:63:ce:b2:43:38:fe:9b:a2:f4:b0:eb:81:1d:
63:58:f6:9c:b3:8a:1a:8b:3c:e7:54:5c:4a:08:1e:
0a:37:7a:78:f1:41:6d:a7:be:5e:47:72:4e:1b:33:
34:12:5b:4c:b7:79:26:79:0e:9d:39:99:cb:1a:ea:
45:89:80:9c:8f:f8:df:75:6c:d7:49:4c:55:6f:e3:
03:ec:9a:ff:df:0c:0a:9b:03:cf:b1:d3:18:b7:dc:
24:1d:70:40:ff:73:e8:ff:f7:f6:86:7e:a3:7f:ee:
30:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:AC:8A:BA:E5:6C:A3:72:EF:69:5C:43:03:25:0F:E7:83:99:39:73
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/rKyKuuVso3LvaVxDAyUP54OZOXM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.250.0.0/15
Signature Algorithm: sha256WithRSAEncryption
3d:05:aa:21:eb:d2:b8:e3:c9:d2:61:83:ff:5d:34:4a:26:38:
13:6e:f1:43:ec:ab:42:f3:8d:c1:22:08:d3:1f:1e:cd:89:9b:
9f:ce:4c:27:d2:d2:3b:d3:d0:d5:87:32:79:02:49:13:c2:63:
72:92:03:70:a5:f3:9f:b9:78:40:0b:19:79:40:63:41:63:33:
ff:de:7d:e2:6f:14:53:18:62:92:0d:24:85:3d:d9:00:f3:f4:
22:9f:43:41:f8:1e:b3:94:54:52:b6:9f:64:b5:c1:7c:72:f4:
c0:4f:55:9c:a1:7b:f3:9d:7f:09:4f:ea:9c:5e:64:eb:05:9e:
f0:93:52:2f:fc:6a:0b:5a:bc:cb:ec:65:18:da:0c:1b:11:8f:
3f:e0:fb:60:63:c6:76:c0:7e:03:57:99:f3:b8:6c:56:22:8a:
c6:f5:5b:d2:d1:1b:a9:36:3f:97:cd:37:d9:c8:be:25:b8:5b:
50:a5:61:01:9b:8e:cf:a3:72:d5:5a:16:81:70:bd:6a:98:c2:
cf:09:ec:f2:32:d2:8e:4b:ba:bc:ad:74:6c:b8:2a:ff:e2:9a:
5d:4c:9d:0d:39:89:64:63:be:dd:5f:c9:ba:3e:c8:e4:f4:3a:
2c:bc:c6:fe:41:00:ba:53:fb:51:bd:56:22:51:47:92:a4:bf:
7b:7f:3a:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org