Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/HUVDFVvNtGPV1JMRVwRswVBKTgs.roa
File: HUVDFVvNtGPV1JMRVwRswVBKTgs.roa (raw, json)
Hash identifier: u+WDqpWErIatGDLyr59ZLjfRIp50keYnCHvGwvL1P+E=
Subject key identifier: 1D:45:43:15:5B:CD:B4:63:D5:D4:93:11:57:04:6C:C1:50:4A:4E:0B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 080A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HUVDFVvNtGPV1JMRVwRswVBKTgs.roa
Signing time: Tue 29 Sep 2020 09:58:15 +0000
ROA not before: Tue 29 Sep 2020 09:58:15 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20940
IP address blocks: 210.61.248.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2058 (0x80a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:15 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1D4543155BCDB463D5D4931157046CC1504A4E0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fc:c1:26:a2:a0:9e:94:27:63:41:8e:84:f6:
fd:4c:bb:9e:75:33:86:ac:3e:f4:de:1a:46:40:19:
a8:e0:70:9a:98:c5:6f:84:1d:c2:42:cb:35:dd:5f:
aa:28:81:28:93:4d:9e:eb:c7:10:05:02:c6:7d:fa:
35:fe:b6:3a:a9:1b:b4:3c:53:83:6d:4b:45:aa:dc:
31:b4:80:0a:30:a6:ec:2f:d5:0c:a0:60:41:4e:53:
ba:5a:4c:34:15:79:52:55:78:0a:53:8e:5a:4f:8b:
da:49:fe:40:d3:c9:83:4b:19:bc:86:48:12:66:42:
f6:7b:3c:f2:66:02:fd:d1:ea:fc:2e:7b:2c:eb:45:
1a:ac:78:b7:fb:cc:20:fe:e9:5d:f7:c6:35:cc:22:
b1:d1:ae:fc:9b:d5:4e:b3:c1:75:58:3d:34:0d:fc:
ce:ac:55:28:0b:b8:cc:5a:c4:f3:d7:fd:b3:b2:66:
40:0f:a0:bf:d7:97:b7:69:45:1e:98:00:12:10:2a:
3f:14:c5:68:db:d2:7a:65:a9:d2:4a:84:bd:c7:5b:
76:7f:3e:57:ff:fa:da:6b:da:eb:fb:11:7f:8d:5a:
67:84:8c:ca:43:46:63:ff:4d:f7:9b:ac:86:ef:de:
66:81:09:80:64:e5:e6:d9:a7:fc:83:bc:f0:d4:c6:
a9:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:45:43:15:5B:CD:B4:63:D5:D4:93:11:57:04:6C:C1:50:4A:4E:0B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HUVDFVvNtGPV1JMRVwRswVBKTgs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.248.0/23
Signature Algorithm: sha256WithRSAEncryption
74:72:a5:b1:2e:ff:22:9c:37:fe:97:c1:60:75:9d:d4:64:a3:
f8:3a:53:34:e6:d5:25:3c:c2:9f:f6:92:c5:62:59:bd:e6:9b:
79:f2:6d:cf:99:9b:fa:dc:7c:77:f6:ac:b5:56:ed:50:99:2d:
d4:75:b9:5c:61:a1:c1:61:39:47:c3:fd:b2:de:2c:a3:12:ea:
fb:ef:62:75:61:14:f5:07:40:e5:b3:a8:5b:19:5a:a2:19:dc:
26:7f:60:5a:6a:68:64:fa:bd:05:77:14:c2:9c:21:e9:09:60:
d3:9b:cf:f0:f0:7d:12:71:45:3b:3a:8e:1d:88:6f:36:f2:5e:
29:f5:5a:7c:89:61:20:f6:f7:b8:91:fd:86:71:a6:2a:a2:bb:
cc:71:75:48:7a:73:5f:48:aa:d5:3e:8f:26:28:d9:bb:9b:1d:
e2:87:45:8a:6e:a8:ab:6a:5d:d5:10:e8:f5:c5:48:14:3f:40:
79:46:f4:2b:2e:46:b7:b6:5d:5b:16:df:58:b8:3a:7e:53:4b:
28:d9:3c:dd:dc:e1:69:58:8e:5a:54:24:63:aa:c2:03:32:73:
26:b6:0f:78:7c:a9:30:b9:cc:3c:59:ba:43:51:99:b0:c1:c3:
9c:00:e2:5c:a6:37:d6:57:37:a9:e1:3f:20:45:ce:9d:cb:bc:
75:1e:47:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:03 2023 by rpki-client on console-fra.rpki-client.org