Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/3SycC8OPScF4baynWQ4sg27GSy4.roa
File: 3SycC8OPScF4baynWQ4sg27GSy4.roa (raw, json)
Hash identifier: ViOrIDlaTBUL4g+HbYvnGXYWtqO1lfYcMDxrQqEEMxI=
Subject key identifier: DD:2C:9C:0B:C3:8F:49:C1:78:6D:AC:A7:59:0E:2C:83:6E:C6:4B:2E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A4C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/3SycC8OPScF4baynWQ4sg27GSy4.roa
Signing time: Sun 07 Feb 2021 11:37:21 +0000
ROA not before: Sun 07 Feb 2021 11:37:21 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 54994
IP address blocks: 61.221.181.0/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2636 (0xa4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:37:21 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DD2C9C0BC38F49C1786DACA7590E2C836EC64B2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:13:94:4f:0b:06:a1:32:5d:aa:9d:9a:aa:1b:
d7:a8:20:93:48:e2:54:06:17:0a:e4:7c:55:c8:f5:
55:06:5b:70:b1:71:ee:ea:ce:03:46:79:67:0b:d5:
d7:85:68:76:3f:1a:04:fa:96:6a:21:aa:4a:63:9c:
28:a9:fa:8d:c5:69:91:3f:3f:77:a7:dd:a3:62:d6:
2a:bd:ec:ef:99:be:42:37:88:94:35:7c:93:f8:69:
cc:6d:93:20:be:b2:c4:30:e5:a8:0f:d7:f2:7f:5b:
e3:d4:83:ee:4e:4b:5d:46:9b:15:cc:8d:f6:3e:a2:
1a:a2:aa:40:7e:c4:b2:47:2a:52:ed:83:17:c5:63:
85:52:3c:ae:57:ab:33:93:b3:48:49:e6:8e:93:e1:
f6:53:9b:b8:ef:ec:52:b7:85:dc:f3:64:69:d6:9b:
08:da:73:55:c7:bb:51:38:8b:c7:bf:fa:66:6a:02:
4b:9c:38:1d:7b:c5:69:62:0b:bd:73:9d:ab:f0:a1:
9c:88:2d:76:5c:a9:d3:67:70:4a:21:41:53:37:9d:
0a:39:31:99:1d:05:61:45:c4:45:02:e9:31:39:70:
2e:23:9c:6c:5e:7e:96:df:87:cb:55:14:4e:28:fa:
44:d0:eb:79:ea:b7:15:e4:7a:2a:dc:f4:42:a6:49:
c3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:2C:9C:0B:C3:8F:49:C1:78:6D:AC:A7:59:0E:2C:83:6E:C6:4B:2E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/3SycC8OPScF4baynWQ4sg27GSy4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.221.181.0/26
Signature Algorithm: sha256WithRSAEncryption
74:f4:49:de:5f:24:c3:2e:5f:98:04:d3:24:07:79:39:cf:0d:
bc:59:22:8d:9e:4d:81:77:1b:c4:51:a4:b0:a7:bf:02:81:21:
07:8b:5f:f0:b6:12:8b:4f:9b:f8:ff:17:af:0b:3c:5e:78:40:
b8:2c:71:9c:ef:48:8e:9b:54:33:e7:8b:41:a8:a5:52:96:d0:
58:a2:47:60:2a:89:d2:63:48:64:e1:0a:bf:7d:b7:e8:94:02:
49:8b:dd:02:fe:08:7c:22:d9:72:7e:e5:36:f1:f3:eb:c1:9b:
d5:35:07:b8:0c:2f:ed:ae:9b:45:19:ba:78:ef:44:80:c0:35:
a8:86:d0:3f:cc:1d:c9:57:2a:4f:47:c5:e3:c9:54:f6:2f:a7:
75:3a:c5:98:f3:03:6f:0f:15:48:c8:a1:48:ec:5d:f5:aa:3d:
b6:a3:3f:6d:e1:b5:d0:b4:3b:97:09:37:e5:82:14:42:ca:26:
44:a5:41:cc:f6:0b:79:41:b5:cb:11:58:55:e4:ac:cb:7d:1b:
f0:70:06:67:4b:c7:5e:c9:e6:d8:5d:57:5e:c1:27:43:cf:2b:
23:4a:f0:61:c8:37:c8:58:7e:d7:42:10:e6:34:7d:ee:2b:57:
2e:fc:b9:3a:f9:f2:85:9f:b9:8f:18:1f:fb:ab:4c:92:33:09:
c0:6d:ae:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org