Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/SUqhJ5rHOo-KQ_I5Ua70IOuDvSU.roa
File: SUqhJ5rHOo-KQ_I5Ua70IOuDvSU.roa (raw, json)
Hash identifier: Jqq53hBMcCsEpg9bwH5pvWnWY1ET4XeR6RNx7Iu0BZk=
Subject key identifier: 49:4A:A1:27:9A:C7:3A:8F:8A:43:F2:39:51:AE:F4:20:EB:83:BD:25
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0ACD
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SUqhJ5rHOo-KQ_I5Ua70IOuDvSU.roa
Signing time: Sun 07 Feb 2021 11:39:10 +0000
ROA not before: Sun 07 Feb 2021 11:39:10 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 60.248.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2765 (0xacd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:39:10 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=494AA1279AC73A8F8A43F23951AEF420EB83BD25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c7:f8:34:28:eb:75:81:8c:eb:72:db:63:9d:
cd:28:96:b1:eb:e8:c5:14:ad:2e:c2:cb:fe:67:da:
0e:de:a5:d8:a9:55:f0:d8:8a:df:30:fe:06:b7:c3:
93:50:29:9c:37:78:7c:35:c1:71:4b:e8:f8:1c:5a:
c0:bd:83:57:cd:0f:7f:89:8c:2f:c2:0f:6a:a0:c9:
0b:9e:99:69:df:21:ab:cb:59:86:4e:fd:59:ce:9f:
71:98:4e:b0:06:63:b0:7b:56:da:6f:fa:96:b1:63:
6b:a9:b4:ea:2e:63:8d:44:cf:2e:62:e5:6e:3b:cc:
f3:44:9f:6d:2c:77:1f:58:04:24:5f:c3:52:05:c5:
e6:49:c0:e3:71:29:da:16:d3:06:16:bc:37:f9:3d:
ba:bf:e8:91:05:b6:f5:27:4a:0c:6a:f0:47:bd:aa:
a5:8a:aa:a7:31:7c:c1:5c:7e:8d:80:bf:c7:1a:b4:
ef:fd:ed:8f:7a:19:02:09:5c:77:3b:82:b2:81:eb:
75:d2:c9:70:38:9b:42:cc:79:c5:37:df:21:9a:c5:
7b:f8:73:8f:1e:7c:ff:90:64:29:0b:ac:01:e0:f1:
52:81:b0:d1:0e:c7:5a:14:82:de:ce:a0:fc:b0:e0:
6e:28:ba:64:4d:85:a3:24:c5:d0:fc:b8:f6:50:9a:
42:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:4A:A1:27:9A:C7:3A:8F:8A:43:F2:39:51:AE:F4:20:EB:83:BD:25
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SUqhJ5rHOo-KQ_I5Ua70IOuDvSU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.248.0.0/16
Signature Algorithm: sha256WithRSAEncryption
56:82:1b:a0:7b:6c:a4:0a:cc:1b:6f:c9:b5:cb:2d:c7:a3:9c:
4f:93:02:2d:9f:30:0e:94:0e:8e:08:8d:81:f7:bc:2f:70:ff:
81:66:80:29:84:28:13:d5:c4:e3:dd:71:af:20:c8:f9:0b:32:
1d:6d:00:14:eb:ef:24:27:a3:0c:7d:6b:84:a3:05:78:49:d5:
4c:76:38:3e:2f:7e:be:18:07:82:c2:16:17:46:69:f5:63:62:
4a:af:8f:f8:61:9b:97:82:bb:e6:26:4d:ba:6f:65:da:6a:f0:
95:5f:dc:53:10:f4:64:a6:1a:90:60:86:9c:1e:d2:ab:01:d6:
a4:d5:3d:0a:3c:e1:0d:ef:8c:47:46:a3:7d:1a:45:56:3b:63:
50:89:94:a6:0a:22:78:6e:ce:ef:96:fc:d9:2f:c2:0a:b3:25:
57:87:f3:5e:b3:60:fb:ea:1d:54:bf:cf:4a:6e:11:0d:a2:3d:
18:3c:d1:96:73:d8:94:40:b1:51:77:dd:c8:b4:41:d4:d5:6b:
33:4f:a7:45:c2:41:08:2d:b0:95:b5:b7:94:02:66:52:6a:71:
06:2a:4a:29:49:ee:a4:a2:32:28:1b:0e:0f:fd:16:2f:e2:d4:
99:dd:32:ab:f1:e5:d6:df:bd:b1:70:89:2a:64:37:c1:87:90:
19:45:5f:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org