Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/U0fKnx2F4Gtg3Sja9EE9lBk4ZVA.roa
File: U0fKnx2F4Gtg3Sja9EE9lBk4ZVA.roa (raw, json)
Hash identifier: A0Y2kLfPkgQZLxJ6OBqrm9KtkJtv3gzDvwKtaLwNQVw=
Subject key identifier: 53:47:CA:9F:1D:85:E0:6B:60:DD:28:DA:F4:41:3D:94:19:38:65:50
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0825
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0fKnx2F4Gtg3Sja9EE9lBk4ZVA.roa
Signing time: Tue 29 Sep 2020 09:58:24 +0000
ROA not before: Tue 29 Sep 2020 09:58:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 61.218.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2085 (0x825)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:24 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5347CA9F1D85E06B60DD28DAF4413D9419386550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:2f:ae:e7:db:3a:b0:a3:84:e2:98:89:99:3b:
59:9c:d6:dd:3c:2f:51:10:38:f4:ce:b7:5c:dd:89:
f6:ff:5b:9e:ea:a8:9f:2c:d6:c2:29:45:9a:97:02:
fc:7b:6a:e2:af:ad:6f:c8:5c:3a:b7:d8:fd:52:f8:
49:42:71:ce:8c:b4:11:7d:9c:80:d9:a3:43:37:fb:
1e:1a:61:17:b8:4f:60:dd:02:f1:e3:b5:c8:c6:47:
d1:88:41:33:9d:11:6a:53:3b:91:fe:e1:93:41:6d:
84:fa:70:0b:0f:3c:ce:a2:34:e9:2e:d2:87:d1:28:
ae:6d:b5:90:3a:27:03:f6:8e:2c:59:76:09:83:4d:
91:32:54:f3:78:4c:89:ea:4e:6d:95:1b:1e:1c:f2:
3d:2f:55:dd:47:a5:16:91:bc:cf:ea:07:25:80:d4:
b4:53:8b:3a:94:bb:a1:5e:2d:c9:dd:9f:be:c8:a0:
de:7e:5a:54:f2:06:09:33:14:22:c3:80:54:98:b1:
00:6a:4d:01:f5:e4:4e:ec:bf:17:b2:aa:be:0a:0a:
2e:03:24:10:56:2d:c8:19:c0:c1:c4:94:dc:3a:24:
1a:a1:1e:8c:7e:25:0c:34:78:61:1f:f6:c9:3c:37:
cf:68:9e:04:4a:27:0a:48:ae:1b:e7:ef:17:eb:d9:
9a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:47:CA:9F:1D:85:E0:6B:60:DD:28:DA:F4:41:3D:94:19:38:65:50
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0fKnx2F4Gtg3Sja9EE9lBk4ZVA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.218.0.0/15
Signature Algorithm: sha256WithRSAEncryption
56:77:18:c1:9d:73:ee:69:30:26:61:08:31:99:d7:a8:68:52:
ee:8c:dc:d5:72:10:ea:a7:97:f4:43:c8:0a:31:f0:a0:96:f0:
fe:7e:50:b9:df:1d:1a:48:56:8f:c6:da:0b:78:d2:6e:69:d0:
f4:25:1f:b9:e4:c8:42:c9:31:85:06:c0:3f:1b:17:fb:de:a3:
81:1a:17:ce:0d:81:01:f4:91:b1:02:35:12:6a:7f:44:f3:d7:
a6:5d:dd:0a:7b:28:08:af:79:45:86:6d:82:93:83:0b:b9:07:
22:da:14:86:a7:7b:cf:31:b1:3d:83:48:fc:2a:a9:d5:7c:eb:
06:71:1a:b7:f4:3d:3c:8e:e5:f7:44:94:a3:ef:c3:70:96:df:
d6:04:5e:fa:17:ce:c2:ad:c5:bb:d9:18:09:96:66:d3:81:a2:
2d:c3:c9:6a:87:64:45:09:3b:d2:94:7a:ff:b7:3e:93:4d:73:
87:7d:be:91:34:07:9d:bf:3e:7c:dd:f4:63:cd:7a:fb:3b:ef:
99:f9:ac:f3:fc:de:10:57:af:16:3a:bc:48:7b:7f:8d:de:a1:
5b:c7:5c:c8:98:1c:df:d8:35:f2:95:e8:7a:7c:df:6c:c4:14:
54:55:78:e1:cd:20:1e:4e:d3:fa:00:c9:c7:02:ec:3d:5e:87:
4e:0a:53:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org