Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/8E2yCb8Sfuzo-8QgzbCKbw-G-RM.roa
File: 8E2yCb8Sfuzo-8QgzbCKbw-G-RM.roa (raw, json)
Hash identifier: DbhA4yeIsm2WNt50r6VE70p7iPA0Q+UnWSXLq5r4d7I=
Subject key identifier: F0:4D:B2:09:BF:12:7E:EC:E8:FB:C4:20:CD:B0:8A:6F:0F:86:F9:13
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A9D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8E2yCb8Sfuzo-8QgzbCKbw-G-RM.roa
Signing time: Sun 07 Feb 2021 11:38:28 +0000
ROA not before: Sun 07 Feb 2021 11:38:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 210.65.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2717 (0xa9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:28 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F04DB209BF127EECE8FBC420CDB08A6F0F86F913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:94:b4:2a:1d:89:f2:09:9f:a8:bb:c7:ad:25:
a6:db:07:86:5e:eb:47:a1:83:d9:80:ba:4a:9e:0d:
9c:b5:41:e1:69:bc:b9:9d:0e:48:3e:58:9f:87:4a:
e5:74:17:d5:38:43:ca:c5:b7:8f:56:4e:33:c7:72:
ed:a5:e7:30:6e:7e:55:b8:b6:3d:1a:e4:eb:3e:e7:
b9:77:ad:6c:85:9b:10:52:7a:14:f8:b2:59:a8:42:
37:d9:06:bf:00:5f:c8:03:55:ff:8c:35:fd:85:c9:
2e:cf:55:2d:32:72:eb:e7:6d:d9:03:5e:e7:e9:20:
e8:eb:86:d7:07:e5:84:aa:0e:c6:3f:3d:79:06:ec:
e8:6a:f0:3b:83:14:f7:ff:5c:87:4e:0b:f3:37:91:
b9:ba:5a:7d:c2:6b:08:b7:d6:b3:01:4d:66:c3:ef:
08:46:e6:cc:b8:6e:9c:8c:92:7a:fc:35:36:91:63:
7e:b2:18:00:97:5c:fa:77:eb:ad:ac:e2:cf:ab:bb:
21:43:05:bb:8c:e0:93:9f:0a:4f:61:76:6b:03:8f:
a7:98:b8:fd:f3:bb:33:76:ed:e3:c6:16:23:2b:01:
b4:34:3c:2d:18:6e:e8:5e:c0:80:8e:d7:07:b7:18:
b2:0c:1c:06:8f:74:85:04:ef:60:80:96:3b:5e:34:
3b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:4D:B2:09:BF:12:7E:EC:E8:FB:C4:20:CD:B0:8A:6F:0F:86:F9:13
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8E2yCb8Sfuzo-8QgzbCKbw-G-RM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.65.0.0/16
Signature Algorithm: sha256WithRSAEncryption
82:14:81:b7:af:00:52:15:fc:4a:ed:40:ff:41:33:3b:83:3a:
7a:0d:57:83:8a:f8:34:b8:4f:89:7d:b9:f8:73:7c:a4:2f:9c:
f4:9b:0c:3b:60:f0:d7:0b:0e:52:f5:fc:75:2f:1d:4c:93:7e:
3b:c7:48:9a:39:a9:c3:9d:c4:dd:37:f7:bd:82:f3:9c:8c:be:
10:2c:b0:c0:9f:4c:25:94:91:cf:e1:e9:db:e0:aa:98:9f:3b:
64:9a:16:92:b7:48:fe:09:bc:ac:ca:f3:79:c0:5e:83:65:33:
4f:8d:30:e0:39:8c:26:13:4a:88:64:b7:1e:8d:ff:41:20:8e:
d2:11:63:b5:af:7b:08:b8:99:ac:e9:0a:55:f2:76:bb:97:7d:
e8:68:c3:32:bf:84:45:05:06:18:8b:0f:68:89:81:72:f1:47:
a5:53:54:52:77:8e:b6:f1:b8:9d:23:e0:c5:b9:64:6a:7d:8f:
e5:07:a2:0c:8a:aa:72:bf:10:7e:e7:01:e6:fd:a2:09:ac:1a:
d3:d9:6f:11:4a:b2:d4:dc:d9:80:41:ec:69:15:87:ea:d3:c8:
25:c9:60:29:74:2e:5c:22:88:74:d9:79:51:56:66:42:c2:c2:
fa:17:2c:f5:46:f2:9c:59:88:90:2b:24:e0:a6:98:55:3b:44:
ad:09:11:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org