Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/uqsj8bVMd6I7CqeDx_keGA2-1oI.roa
File: uqsj8bVMd6I7CqeDx_keGA2-1oI.roa (raw, json)
Hash identifier: T9Y2tTDoytNFRlpf//pPh2TxleFahBNbsxgQPdi7Fco=
Subject key identifier: BA:AB:23:F1:B5:4C:77:A2:3B:0A:A7:83:C7:F9:1E:18:0D:BE:D6:82
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A4E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/uqsj8bVMd6I7CqeDx_keGA2-1oI.roa
Signing time: Sun 07 Feb 2021 11:37:23 +0000
ROA not before: Sun 07 Feb 2021 11:37:23 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 54994
IP address blocks: 61.221.181.128/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2638 (0xa4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:37:23 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BAAB23F1B54C77A23B0AA783C7F91E180DBED682
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:66:31:ba:f5:72:6a:29:a6:3b:c2:fe:d9:7e:
38:87:05:a1:5c:48:3b:ed:6c:00:29:63:9f:60:d0:
a4:9e:1b:80:a5:70:49:8b:de:c1:80:e9:64:a2:5a:
dc:20:cb:28:12:f1:33:68:99:14:01:f3:09:5c:09:
b1:5d:30:15:21:7f:ed:05:dd:2d:42:4b:d3:83:f5:
04:cc:1e:38:7c:77:cb:28:e4:fb:ae:f1:c1:61:a3:
ce:32:6f:42:ca:6b:c9:6a:7c:8e:4f:9f:50:af:17:
ac:dd:a2:c7:65:95:75:5a:b3:7f:21:ce:e4:2e:1e:
9f:ca:3d:4f:4c:2c:5f:ae:62:99:13:e9:f6:4f:e0:
e8:b1:49:b4:37:9d:cd:4a:69:c5:e0:1f:6e:99:63:
7a:5c:55:85:68:d1:9c:10:a6:aa:03:c7:dc:60:7d:
6e:63:ff:af:a2:59:c0:30:18:fd:82:43:18:02:11:
c9:49:19:52:99:19:8b:f4:85:4a:b4:e7:96:67:a5:
bc:ce:93:b2:93:ae:10:64:3b:a0:ad:b2:b3:8a:1f:
64:13:6e:aa:ee:75:e0:ad:fa:8d:7d:dd:2c:68:eb:
84:cf:4a:88:9b:d2:ec:06:12:5a:7a:90:3c:47:2a:
a5:b0:f3:4d:38:fb:8b:2a:74:3b:5a:e0:ad:4f:d9:
f2:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:AB:23:F1:B5:4C:77:A2:3B:0A:A7:83:C7:F9:1E:18:0D:BE:D6:82
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/uqsj8bVMd6I7CqeDx_keGA2-1oI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.221.181.128/25
Signature Algorithm: sha256WithRSAEncryption
53:92:50:32:2f:bc:27:39:a9:4b:85:9f:52:24:8d:ac:95:ba:
ff:b9:49:7c:8d:c8:c4:05:c6:6f:37:52:2c:8e:ce:7a:ea:7c:
e3:6b:72:af:2e:45:ab:f1:3e:9c:06:62:5e:a3:3e:03:95:30:
b0:12:8c:23:13:eb:45:0e:4a:51:9f:e7:7b:1a:14:14:90:eb:
4c:93:16:ab:25:d1:13:a4:69:b3:1a:db:f5:fd:c6:d1:07:be:
c9:06:9e:00:01:1f:8f:7f:b9:1d:5f:8f:00:8f:2d:43:ac:84:
30:27:54:6a:6e:23:4b:d2:21:7f:44:14:77:78:3b:1f:c5:da:
fe:59:dc:4f:03:97:89:3a:1e:df:b9:90:ed:c3:0b:4a:fd:0b:
00:e2:bb:c9:ca:82:b4:fd:ad:3b:1c:01:c3:50:c0:c8:ac:d2:
d5:41:e6:16:f2:67:f1:d2:d7:bc:96:93:e5:31:cd:32:27:67:
70:ef:a1:23:02:7f:5a:9d:3b:bc:ec:00:42:6f:8c:26:ba:1e:
64:a8:77:17:68:0a:11:da:ff:c8:3b:4e:af:30:03:e1:7f:55:
35:58:92:d5:85:e5:fa:8b:d4:25:1b:66:63:fb:63:38:10:57:
dc:3e:e9:26:13:29:85:6b:a5:7a:d0:33:c5:88:f3:46:12:c9:
d4:70:59:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org