Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/L6MSJSuDNHAH-qoxMi4MuAn61vg.roa
File: L6MSJSuDNHAH-qoxMi4MuAn61vg.roa (raw, json)
Hash identifier: IzmvjKkBAkOK4dqYfDEwOxsvgcSAO8XSwcIo/QMTQJ4=
Subject key identifier: 2F:A3:12:25:2B:83:34:70:07:FA:AA:31:32:2E:0C:B8:09:FA:D6:F8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C7D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/L6MSJSuDNHAH-qoxMi4MuAn61vg.roa
Signing time: Wed 29 Sep 2021 02:51:20 +0000
ROA not before: Wed 29 Sep 2021 02:51:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131660
IP address blocks: 2001:b000:590::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3197 (0xc7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:20 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=2FA312252B83347007FAAA31322E0CB809FAD6F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:20:ba:f4:60:4d:26:d1:6f:15:cb:d2:85:c1:
1e:36:2d:7e:67:44:88:a4:01:a9:5a:19:14:87:01:
c7:47:c4:37:6f:56:a7:10:4c:96:09:83:a3:4b:fc:
62:09:87:61:3d:17:64:63:25:88:5e:a5:0d:8c:b4:
8f:db:3d:65:a8:f5:15:04:1f:76:0e:2f:af:1c:38:
73:e2:c2:42:b2:1b:1d:de:31:c0:17:fe:49:27:8e:
ba:03:92:6a:10:35:d3:d4:67:3a:88:de:2f:bd:ae:
d0:50:7e:f7:09:68:1a:a5:0d:d3:6e:94:2b:00:85:
0d:0d:c3:e7:3d:78:98:3c:95:98:46:89:47:e1:d6:
32:d1:53:1d:09:bd:c8:35:69:fa:68:64:34:06:b4:
95:49:be:f8:00:90:4d:82:35:7d:8c:ff:ba:7e:d7:
11:85:84:2f:18:4a:0e:1f:ac:fb:f3:96:44:f7:a2:
5d:0a:0e:44:4f:79:f1:7a:97:4c:b0:a9:18:9d:cc:
6d:87:2c:f5:b1:81:2b:be:5b:a7:a3:f6:6c:c7:65:
7f:cd:11:d8:33:42:8a:ef:f5:1b:3a:23:31:31:41:
59:42:bb:16:13:82:f3:bf:c8:1d:b7:29:ad:e4:85:
f2:85:0d:e9:75:f5:82:3e:27:c1:2a:6e:16:a8:28:
61:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:A3:12:25:2B:83:34:70:07:FA:AA:31:32:2E:0C:B8:09:FA:D6:F8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/L6MSJSuDNHAH-qoxMi4MuAn61vg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:590::/48
Signature Algorithm: sha256WithRSAEncryption
44:29:cd:b4:e9:f2:fb:80:0c:81:80:79:38:a9:6b:ed:a5:74:
47:47:36:c4:e2:b7:b2:45:64:8b:a9:ec:43:89:b8:1b:73:13:
25:e5:84:be:0d:70:33:a7:78:6d:75:46:5d:32:a5:ad:58:a4:
f8:a2:63:0f:81:de:b4:6b:cb:bc:84:66:ec:ac:cf:90:e4:57:
13:62:b3:17:a0:e4:a2:06:c7:01:36:ff:b0:47:9e:13:42:9d:
a2:b7:9c:59:dc:eb:8c:66:72:a8:d3:ed:5b:63:2c:52:57:06:
81:03:21:95:c3:c0:d9:2f:27:09:28:14:91:42:69:08:a2:ef:
2f:15:30:a0:d6:7d:65:18:8b:b8:08:38:b1:f9:20:54:45:f1:
72:3e:5a:f0:d8:21:dc:d4:b4:a5:b1:59:ca:14:91:fb:7c:97:
88:5c:c5:69:20:6e:1a:6f:0c:27:fb:99:9d:f6:86:06:41:3b:
3a:0e:fe:36:6f:f5:69:bd:2f:4d:3d:73:5e:0e:75:73:9c:4a:
68:70:bb:ac:04:cf:02:4c:06:13:21:39:eb:f2:2b:ee:53:c1:
2b:59:aa:2b:1b:3e:e8:5c:c2:5f:2c:91:c3:f0:06:1a:74:b1:
d1:cc:eb:96:dc:c7:32:bf:ab:43:1f:92:0e:06:a3:82:e2:ce:
89:6a:1a:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:55 2023 by rpki-client on console-ams.rpki-client.org