Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/y5PaXJuuyxPAUUHgdjTuwRF0s1A.roa
File: y5PaXJuuyxPAUUHgdjTuwRF0s1A.roa (raw, json)
Hash identifier: AF3PTnTwgvk9G0SCm5pIZoKcyek1jAunWhGpdqpMP0I=
Subject key identifier: CB:93:DA:5C:9B:AE:CB:13:C0:51:41:E0:76:34:EE:C1:11:74:B3:50
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C27
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/y5PaXJuuyxPAUUHgdjTuwRF0s1A.roa
Signing time: Wed 29 Sep 2021 02:50:56 +0000
ROA not before: Wed 29 Sep 2021 02:50:56 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 211.75.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3111 (0xc27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:56 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=CB93DA5C9BAECB13C05141E07634EEC11174B350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:45:24:85:79:63:8f:d1:c4:35:6f:f4:be:75:
dd:22:7c:62:7a:2e:ea:b3:f3:b2:05:e4:97:79:91:
17:98:85:67:d4:ef:f5:5c:64:4b:f5:ee:b0:56:34:
bc:92:30:9c:6c:eb:c4:ec:87:1c:d3:0c:bc:ce:61:
db:9d:d5:70:68:f0:cf:62:52:21:5f:b3:6c:c3:1a:
52:c0:4d:62:81:73:7d:ef:74:77:1e:5b:db:87:e8:
ed:0d:25:18:ff:e8:ef:d8:72:c4:10:04:d0:f6:5b:
f6:2b:51:ea:44:11:74:80:e7:e7:74:d7:4c:6d:22:
93:5a:04:1c:ec:e8:06:60:aa:83:9c:2b:08:f5:53:
2d:bd:8d:cb:c1:37:50:c8:de:e7:ad:7d:02:be:8a:
93:60:95:73:11:1c:d2:48:fe:e9:f3:14:27:79:4a:
cf:b4:a2:17:89:a8:cf:70:11:9f:9c:da:70:bb:51:
23:e1:5f:89:67:ec:1b:ec:24:31:4c:c2:83:0f:a8:
41:d9:76:86:2c:e5:42:7f:a2:d0:83:df:06:ba:6f:
74:c4:99:b5:df:29:d8:2c:d9:23:56:9e:76:ab:0e:
e5:5a:d7:0b:2f:65:12:aa:99:1c:97:3d:a4:84:e9:
4d:b3:20:a2:65:d8:2b:c8:52:03:ad:6c:8d:a4:11:
a3:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:93:DA:5C:9B:AE:CB:13:C0:51:41:E0:76:34:EE:C1:11:74:B3:50
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/y5PaXJuuyxPAUUHgdjTuwRF0s1A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
60:fa:31:7f:7b:90:74:51:08:8a:3d:b7:97:69:2e:0b:66:a0:
2c:0a:eb:4a:c2:9f:25:70:7b:27:9a:9c:1f:a7:1d:22:27:03:
5f:25:4d:85:ce:c9:c3:be:3c:4a:05:ae:4b:5c:a4:69:a2:52:
0e:33:6e:58:d3:a1:a5:83:7f:40:9a:87:61:9b:76:4c:81:a8:
36:4b:dc:63:10:36:e4:60:da:af:09:6d:36:d3:53:dc:d7:e7:
c8:4b:ab:6c:37:b0:74:db:ca:dc:1c:61:4d:c3:d6:22:0d:d7:
2e:5d:c0:40:d2:d1:3d:2e:b6:92:f8:44:82:80:3d:6e:a2:b1:
72:da:3d:81:21:ee:b8:4a:b6:58:51:61:a3:b9:f2:e1:d2:06:
57:a8:38:dc:da:7a:66:d2:00:2e:cf:6e:59:aa:95:00:11:1e:
ce:b3:d1:c6:6c:7e:ea:8b:d5:a3:4c:db:5f:3c:91:0b:02:5f:
18:c8:13:74:ec:ba:13:92:cf:15:59:22:62:3d:5f:59:1b:72:
24:b9:41:83:0d:55:0b:3e:67:a6:3f:4d:85:11:a3:3b:7b:15:
16:b2:2b:3c:83:0c:b8:f3:d0:cb:64:91:74:f2:e9:8e:06:19:
de:ab:7d:5c:20:b5:87:d6:40:6a:34:26:62:b1:51:e9:de:05:
c1:5c:52:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org