Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/-eR34aiuLeRrLdV5iISdX5B7wkw.roa
File: -eR34aiuLeRrLdV5iISdX5B7wkw.roa (raw, json)
Hash identifier: cyw0WC2Twgip/jxE6XMuaYlTy0AQhvy9wtYWAMkItUg=
Subject key identifier: F9:E4:77:E1:A8:AE:2D:E4:6B:2D:D5:79:88:84:9D:5F:90:7B:C2:4C
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AD5
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-eR34aiuLeRrLdV5iISdX5B7wkw.roa
Signing time: Sun 07 Feb 2021 11:39:18 +0000
ROA not before: Sun 07 Feb 2021 11:39:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 61.217.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2773 (0xad5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:39:18 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F9E477E1A8AE2DE46B2DD57988849D5F907BC24C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:65:e8:6b:7c:ab:3a:ce:07:d3:e0:d2:c6:21:
ac:b4:85:5a:50:f0:31:7e:88:a6:81:ba:21:6f:3b:
04:6a:a7:dd:04:44:7a:09:26:ae:32:cd:40:13:b2:
21:13:e5:c1:c7:47:56:db:0e:a2:91:3a:05:e4:86:
6b:d0:3c:86:19:1d:ea:eb:57:2f:83:4e:b2:b3:43:
0f:71:fe:f1:f3:cd:91:d8:8b:87:3c:f4:7f:84:32:
4a:c8:83:6d:4a:dc:e3:19:eb:27:36:56:fc:2e:12:
90:a5:64:e5:2f:1e:e0:d1:3f:7a:ff:09:37:ee:75:
39:75:a2:2d:3c:ea:e1:8d:ce:66:a4:3b:ca:2c:73:
98:68:c8:e4:c6:4f:2e:08:c9:ca:c0:e3:e5:09:8e:
f7:56:7c:87:23:c9:ad:3c:89:13:89:ea:4e:dd:a9:
3a:e3:dc:71:1f:67:19:6a:bb:4e:d6:e1:aa:e3:f9:
bf:bd:53:0c:9f:44:15:af:94:46:c9:8c:00:93:7e:
d7:72:8c:49:94:bf:fe:ff:f3:f6:26:4e:ff:e8:32:
aa:68:d8:85:bb:fa:b3:a0:9c:a2:1e:55:08:dd:b0:
64:35:31:97:84:a5:24:01:ec:a7:12:fd:33:31:f2:
e2:82:6a:65:6d:8e:6d:02:f7:c3:f3:f3:6d:77:6a:
3d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:E4:77:E1:A8:AE:2D:E4:6B:2D:D5:79:88:84:9D:5F:90:7B:C2:4C
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-eR34aiuLeRrLdV5iISdX5B7wkw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.217.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6c:1c:44:ea:e6:07:01:40:c6:55:4b:a6:41:22:fa:25:ac:a9:
f5:6e:a4:d1:b5:27:bf:4d:de:dc:ce:eb:e2:b7:16:74:e2:81:
74:e3:14:04:4e:47:db:21:c2:b8:51:3f:e2:03:66:2a:97:3e:
36:76:5d:bb:cb:af:65:a4:78:a2:3b:3c:4c:5a:7c:9e:d7:25:
4f:02:e4:ca:72:17:29:6e:c1:9b:70:21:06:17:95:5c:a4:75:
c5:eb:61:77:c3:b2:ff:b0:bd:5a:23:a2:5f:40:81:26:65:5b:
8f:83:54:86:23:a3:79:1b:62:80:94:94:32:c4:1b:05:de:88:
83:cd:2f:d8:cb:15:7d:c8:87:43:cd:e1:47:fc:87:a0:d7:d3:
96:31:4c:cc:9a:64:73:45:2d:c6:6b:2d:35:8a:1a:9a:46:1b:
94:bf:19:6f:51:18:5f:a1:27:0b:06:b4:55:1c:b5:f1:c7:ec:
ca:fc:db:f9:70:8f:21:02:4d:05:b0:dd:b7:32:8c:2d:09:dc:
f9:74:6f:d5:65:70:89:b0:97:42:06:13:95:6e:37:c0:e5:19:
2f:0b:01:8d:c2:c0:58:15:7e:9b:0f:e4:3f:bf:37:e5:bd:56:
d1:1e:5d:62:43:ef:b6:8e:91:94:a2:54:1c:f3:91:e4:26:22:
28:80:69:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org