Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/vuZU8twnDYNYOfuBtqOLkBXUA_g.roa
File: vuZU8twnDYNYOfuBtqOLkBXUA_g.roa (raw, json)
Hash identifier: MVXsEqz8h+RScPWx4Y46KsSmVGYvHulMaOP2Zd50g3k=
Subject key identifier: BE:E6:54:F2:DC:27:0D:83:58:39:FB:81:B6:A3:8B:90:15:D4:03:F8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0ACB
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/vuZU8twnDYNYOfuBtqOLkBXUA_g.roa
Signing time: Sun 07 Feb 2021 11:39:08 +0000
ROA not before: Sun 07 Feb 2021 11:39:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 59.124.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2763 (0xacb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:39:08 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BEE654F2DC270D835839FB81B6A38B9015D403F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:34:60:cd:10:cc:89:26:46:30:33:ca:75:fa:
ed:22:73:77:b9:cb:1b:91:c4:dc:d5:4d:4d:83:67:
6a:75:6a:92:f0:35:8b:9e:70:95:7d:3e:3b:e8:fe:
ca:63:53:92:50:57:0d:ec:2c:cd:d8:b9:fe:dd:22:
a4:29:97:16:2a:7e:74:b8:09:7d:6c:96:b3:88:f0:
92:b6:89:91:eb:d0:c9:96:21:10:43:5d:e8:b2:f3:
12:ef:c2:06:37:02:78:8e:f8:aa:72:f7:13:a4:ee:
05:4b:d4:42:58:d7:39:26:33:e3:fd:62:b8:53:70:
87:c9:cd:79:9d:ae:90:cd:42:a6:7a:c9:70:89:fc:
21:59:45:da:fa:0d:87:b9:ed:6d:78:7d:aa:fb:ea:
c6:7d:12:4d:76:0d:5c:bd:a4:1f:53:02:ad:31:c4:
40:45:79:3c:e6:be:a4:f0:95:09:ff:5f:fb:17:76:
b9:5e:f9:81:0d:21:01:4d:9a:b4:ec:ae:22:b3:78:
68:4c:22:12:3d:9a:95:5f:87:cf:ca:f3:4f:9b:27:
fe:13:3a:f6:38:f2:0a:5d:2f:e5:a1:11:35:52:1d:
bc:e7:c6:32:84:6d:fa:ad:0d:54:72:22:43:3d:e5:
b8:53:b3:f6:ae:b9:97:84:52:87:eb:81:0e:8f:68:
78:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:E6:54:F2:DC:27:0D:83:58:39:FB:81:B6:A3:8B:90:15:D4:03:F8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/vuZU8twnDYNYOfuBtqOLkBXUA_g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.124.0.0/14
Signature Algorithm: sha256WithRSAEncryption
24:10:ae:8d:d0:93:65:28:ea:b7:a3:3e:6c:2c:45:6f:a8:16:
75:5c:c5:8f:40:4a:db:0c:55:c6:a5:89:95:db:74:ca:ee:8f:
87:6d:e1:e2:d5:c2:c0:06:8d:1a:77:32:9f:13:7c:b8:ba:37:
d7:9f:53:2c:d9:93:ad:10:50:ae:75:15:59:db:f2:25:81:0d:
1b:01:d6:12:99:92:9d:7f:18:6f:07:ec:67:cc:51:d2:4b:75:
89:db:83:ea:7d:ac:98:ce:3a:4d:41:58:f9:b8:59:1e:d3:ba:
34:a8:ce:7d:89:b4:d5:76:c8:1f:c8:ff:c9:5d:42:ad:7a:79:
35:67:78:ac:33:31:9e:18:42:11:c0:3d:d7:41:c3:c8:76:01:
c1:5b:2d:dc:24:51:c8:4b:d4:6b:43:15:55:b6:2a:a5:5d:2f:
61:fe:e9:40:b0:85:71:2c:d7:b5:7c:8e:e0:de:2f:5d:11:f7:
b5:89:3e:ff:11:34:78:f7:50:94:73:80:c2:c1:da:6a:73:27:
ad:80:19:7d:4f:88:81:c7:c3:76:cd:0b:f2:0c:85:7a:12:bd:
68:a9:90:c0:e2:b2:1a:8c:cb:6d:4a:bb:d3:31:34:2e:f5:d2:
74:73:fd:95:c1:e4:a8:cc:84:82:c3:fb:1e:55:76:04:33:db:
ec:5d:65:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org