Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/NsEsx7T1gYAMWAIRY1Y25kDI398.roa
File: NsEsx7T1gYAMWAIRY1Y25kDI398.roa (raw, json)
Hash identifier: Y9F314eyztCM5g45nlHQhYkxKve7H7wryKJmfDg0NHk=
Subject key identifier: 36:C1:2C:C7:B4:F5:81:80:0C:58:02:11:63:56:36:E6:40:C8:DF:DF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C68
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NsEsx7T1gYAMWAIRY1Y25kDI398.roa
Signing time: Wed 29 Sep 2021 02:51:14 +0000
ROA not before: Wed 29 Sep 2021 02:51:14 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 221.120.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3176 (0xc68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:14 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=36C12CC7B4F581800C580211635636E640C8DFDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0a:43:06:40:f8:e6:a4:7f:b9:19:14:e0:c1:
a1:e5:e4:d8:1f:a2:72:65:90:c5:b3:04:45:ea:9c:
f3:7e:a4:d6:3d:88:49:f6:bc:de:10:60:7e:f6:93:
d2:69:7f:e7:ca:6a:68:ce:e4:02:7b:ba:1e:61:df:
17:2a:da:45:85:78:00:d9:43:80:5f:35:12:88:18:
70:8d:ee:1a:d0:af:ab:01:89:5b:5c:1f:2d:ff:9a:
c3:8c:30:0c:de:b3:c8:23:b4:47:f4:49:c1:ee:e9:
18:c6:02:d0:e2:e5:22:4b:93:0d:a4:7d:33:d2:c7:
ab:6a:52:9f:09:dc:bf:c8:15:e8:2e:9c:2c:2b:75:
ca:66:cf:09:ba:a3:49:d9:74:08:76:fa:5c:68:14:
0e:85:07:10:65:0a:ec:0e:61:89:8d:50:3c:77:e1:
43:77:52:be:aa:61:3b:73:80:c3:89:fe:c9:4b:67:
8b:b2:cf:be:1e:4d:7a:00:14:bf:94:a6:a4:db:f8:
ad:b4:ff:73:86:37:f4:e1:98:f8:5f:cb:be:33:d4:
f4:b3:e0:54:9a:bf:0d:81:c5:5e:38:f9:d8:83:f1:
3c:51:11:88:44:08:b9:f7:35:f0:20:ed:56:2b:36:
23:f5:5a:c3:7e:38:ad:6d:8e:27:30:28:0b:ff:4f:
ef:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C1:2C:C7:B4:F5:81:80:0C:58:02:11:63:56:36:E6:40:C8:DF:DF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NsEsx7T1gYAMWAIRY1Y25kDI398.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
221.120.25.0/24
Signature Algorithm: sha256WithRSAEncryption
97:c2:a3:74:e9:5c:cc:fb:e1:92:f6:ee:2d:ea:5f:44:f2:9f:
99:af:27:ca:7e:11:08:ec:7f:4f:1d:b8:5f:b2:c5:0f:d6:a3:
bd:23:3f:12:cf:38:94:34:ab:47:1b:18:67:70:68:4a:5e:27:
56:e0:f0:ff:53:48:68:ca:60:2d:f7:2d:aa:bd:9b:3e:f3:f3:
c0:38:0b:8d:80:8a:02:57:83:86:51:0a:97:e8:d8:4c:e1:d5:
9e:be:1e:4f:33:c5:09:e9:6e:8d:4c:49:3c:25:bd:87:bf:7d:
25:70:df:dc:ce:45:08:82:90:fa:dd:e1:45:0e:b7:8e:eb:7c:
85:b8:50:33:07:44:67:c3:54:da:24:9c:96:d8:22:6e:e2:c0:
08:81:6a:ee:31:7a:b2:7a:8a:31:32:e7:88:1f:c9:78:02:25:
e5:0a:c3:c5:fd:7b:9e:e5:15:1b:49:ee:1d:3f:20:51:09:e4:
be:b3:27:84:bc:28:52:9d:34:15:fa:f1:43:4e:93:d2:2b:50:
de:6b:72:70:01:97:1e:b4:92:4d:4e:0f:49:5c:af:63:e9:62:
23:4b:9b:0b:22:10:cd:94:17:b6:57:91:46:2f:01:e9:3b:99:
dc:b4:a9:e2:46:4a:db:15:68:f4:53:ff:77:6e:2e:62:24:a4:
67:02:8b:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org