Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/K2IQQqi3AKVtBZwB27BSEh2iDUc.roa
File: K2IQQqi3AKVtBZwB27BSEh2iDUc.roa (raw, json)
Hash identifier: t4uc8+lR8wUq1BsSI03kPhH8S86QpLaxXsPxNfmamGg=
Subject key identifier: 2B:62:10:42:A8:B7:00:A5:6D:05:9C:01:DB:B0:52:12:1D:A2:0D:47
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C39
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/K2IQQqi3AKVtBZwB27BSEh2iDUc.roa
Signing time: Wed 29 Sep 2021 02:51:02 +0000
ROA not before: Wed 29 Sep 2021 02:51:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 60.249.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3129 (0xc39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2B621042A8B700A56D059C01DBB052121DA20D47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1f:eb:79:c4:2c:60:8d:c1:3b:59:cd:2c:79:
b7:f2:1d:72:53:53:c2:24:93:ea:57:56:2f:cf:07:
98:db:09:3f:8f:a0:24:fd:2b:b7:98:72:d4:20:93:
bf:ce:89:48:9a:8b:d8:d7:03:af:29:d3:e4:a5:7e:
55:ab:3d:93:58:96:e0:36:c8:01:ce:50:30:9b:82:
fa:5f:0d:23:97:b6:04:07:c1:be:08:0a:e4:00:e6:
f6:d3:eb:0a:23:15:b3:b5:61:89:bf:8b:9d:06:88:
79:0c:e4:22:27:dd:7d:f2:86:7b:ae:2e:6e:35:9d:
02:d3:85:3d:f5:0a:21:4f:1f:b8:0d:b2:e4:a9:5d:
54:51:7c:6e:f6:30:fe:da:45:43:85:c6:3e:41:b0:
3b:61:7a:f9:35:64:2f:aa:c5:d6:7f:2f:76:e4:34:
a9:3f:d7:39:0d:aa:6e:e8:11:f7:a2:30:0a:28:79:
bb:81:f0:b3:91:44:82:e6:4f:3f:40:51:5a:15:5d:
c7:66:f8:d8:2e:e5:1d:09:b3:28:b5:30:da:f8:56:
a1:1b:7f:e1:f2:4f:33:4f:4d:1e:a9:16:8e:db:63:
a5:11:b4:77:3a:ba:6b:25:f5:cc:f5:cb:29:0c:ea:
1b:97:3e:fb:e1:3e:c8:1d:70:92:3c:9c:f3:fc:43:
56:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:62:10:42:A8:B7:00:A5:6D:05:9C:01:DB:B0:52:12:1D:A2:0D:47
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/K2IQQqi3AKVtBZwB27BSEh2iDUc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.249.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c9:f5:17:75:ad:27:6a:f0:9e:9d:8f:74:36:3d:d5:89:91:a4:
e4:ec:de:10:58:3f:e3:d8:78:78:a9:d8:01:54:d9:50:14:5f:
97:2d:ef:9a:a8:bf:2f:41:3e:ec:39:8d:34:b4:15:6c:fa:44:
33:24:68:bc:84:e6:e6:79:b9:c9:af:e7:6a:f2:63:ce:fd:b3:
57:2d:05:98:91:3f:07:29:62:6c:42:ed:e8:54:72:22:ff:c1:
e2:81:60:dc:ec:d7:3e:aa:66:5f:e2:0f:f0:7b:1e:60:36:e3:
31:ec:f9:ae:07:5f:85:23:16:15:e4:52:d0:b0:b7:f7:62:d4:
88:cc:8b:8e:e0:b7:e6:71:2f:d1:ac:fe:d9:7d:9b:92:b2:18:
fc:9a:04:e3:48:74:f6:ce:1f:75:87:50:25:07:4f:db:83:5e:
7a:51:19:61:81:3a:e6:34:8f:5d:4d:c1:e7:fd:ab:8f:51:27:
ff:d6:75:7a:7a:c8:55:07:8b:6f:22:81:07:8c:fa:70:f8:eb:
4c:53:60:b2:68:ff:19:c6:c7:ae:0e:37:6e:9a:f3:44:6d:d9:
9f:04:4a:c7:f8:08:93:19:a8:6e:d7:be:a3:32:57:ab:01:87:
60:21:5a:c5:4d:9e:3a:7f:cd:75:f8:43:11:d0:1d:80:8c:42:
84:44:56:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org