Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/SVq6cJs9cOTyPd9cogQenFCRmfs.roa
File: SVq6cJs9cOTyPd9cogQenFCRmfs.roa (raw, json)
Hash identifier: JPQp6/LtuVa2ssb7eVs8MuYz/iXRSZTWsLT8XVJ9CS0=
Subject key identifier: 49:5A:BA:70:9B:3D:70:E4:F2:3D:DF:5C:A2:04:1E:9C:50:91:99:FB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0869
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SVq6cJs9cOTyPd9cogQenFCRmfs.roa
Signing time: Tue 29 Sep 2020 09:58:43 +0000
ROA not before: Tue 29 Sep 2020 09:58:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 60.249.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2153 (0x869)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=495ABA709B3D70E4F23DDF5CA2041E9C509199FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e0:9f:f5:05:0e:27:a7:dd:71:10:c1:d0:dd:
e5:41:2c:9b:69:12:d2:c3:c6:54:d3:71:93:dd:49:
24:4c:73:cf:df:7a:f8:9d:c1:97:f3:e9:f4:9a:da:
cf:59:1b:fb:11:8d:ae:82:68:50:90:35:60:a1:b1:
e6:e0:b8:a9:da:f0:28:bc:1f:93:f1:93:65:be:42:
9b:05:fe:86:d7:c7:7e:04:22:28:00:5d:db:5f:70:
0f:50:db:30:5f:6f:62:9e:91:25:66:29:cb:da:58:
42:14:b9:b9:71:70:2c:f7:69:8a:bc:d3:43:c1:7c:
ba:ad:53:19:83:17:d9:ff:63:97:83:53:c0:69:bf:
05:b3:6b:60:0f:cf:94:25:37:9c:5f:20:34:8e:05:
07:89:56:a7:ab:9a:e1:28:05:89:45:5e:51:cb:95:
14:3d:0c:74:7f:bb:31:c2:69:51:6e:3d:42:b4:68:
b0:ed:ed:26:d6:0a:bb:bf:d3:4c:0d:05:e5:3c:64:
94:dd:26:21:67:92:3f:a1:25:fb:33:72:b2:1f:3a:
8e:48:de:71:13:06:3e:5c:37:9a:aa:b2:3a:0b:ca:
44:bd:9b:c7:98:4c:9b:52:41:bc:99:33:e1:3a:72:
9a:29:51:d7:76:06:b4:02:99:74:5f:0e:38:24:85:
41:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:5A:BA:70:9B:3D:70:E4:F2:3D:DF:5C:A2:04:1E:9C:50:91:99:FB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SVq6cJs9cOTyPd9cogQenFCRmfs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.249.0.0/16
Signature Algorithm: sha256WithRSAEncryption
81:44:3e:60:e3:2f:5b:de:7e:ba:ce:7a:04:b2:96:e1:be:e9:
aa:d0:b1:ed:38:02:9f:c7:4c:4b:9d:28:5a:5e:e9:75:94:05:
f9:54:3b:31:e2:46:2c:0a:9d:89:94:52:da:d0:bf:1c:f3:a9:
78:5c:1f:70:f1:20:a8:5f:f9:35:fc:63:84:49:66:7f:2c:fc:
53:d8:05:da:bf:0b:19:68:33:35:31:66:3b:86:64:d5:0e:b1:
62:95:10:d1:ff:e0:21:1c:82:da:d3:fe:9c:08:a5:48:dc:0c:
b1:f6:77:dd:9d:7b:d4:ed:f6:45:fe:6a:23:63:30:63:c4:5a:
6f:87:30:50:73:63:02:8e:3f:4b:9c:3f:c1:4b:59:6c:87:9b:
74:f5:81:00:ba:b6:7b:39:fa:72:79:de:5e:70:12:f6:a7:55:
63:34:eb:9b:3c:64:be:10:8d:ce:4b:ac:0d:bd:aa:df:20:d7:
ba:ea:f0:af:00:4f:55:5f:26:98:65:a2:25:8c:b1:6a:46:d1:
2f:57:98:d2:0d:b8:d4:07:5e:37:67:b2:e4:8a:75:79:1f:f0:
9c:b4:3a:5f:b6:f2:20:38:eb:a7:c3:b4:06:a9:0a:42:a7:3f:
6d:cf:05:a9:33:3a:3c:dc:56:28:d1:e6:81:bb:b6:b4:90:c0:
e7:96:32:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org