Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/VyI5wNGme0XLV1pRJyauhH8p-2Q.roa
File: VyI5wNGme0XLV1pRJyauhH8p-2Q.roa (raw, json)
Hash identifier: YptfGx7nmGnDFgDnc5ElwLl32XRK2gB0LCvxiJzaaoM=
Subject key identifier: 57:22:39:C0:D1:A6:7B:45:CB:57:5A:51:27:26:AE:84:7F:29:FB:64
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0BEE
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/VyI5wNGme0XLV1pRJyauhH8p-2Q.roa
Signing time: Wed 29 Sep 2021 02:50:40 +0000
ROA not before: Wed 29 Sep 2021 02:50:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17421
IP address blocks: 2001:b401::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3054 (0xbee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:40 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=572239C0D1A67B45CB575A512726AE847F29FB64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:59:7e:a3:5c:02:30:3c:48:65:e4:99:2e:4c:
05:e2:a3:90:41:f4:20:84:85:7b:20:7d:c3:54:cb:
5f:37:a2:a2:cd:af:84:53:ec:14:92:c4:8b:65:59:
ad:86:d1:7f:df:66:28:d1:80:8b:29:1d:05:6d:d8:
d6:d4:1b:b4:8a:f7:7b:83:2e:89:9f:a4:71:93:aa:
36:0f:c9:ae:50:e2:30:c3:ee:05:a0:5e:ad:28:6f:
1c:10:ab:ee:ad:09:80:ba:70:91:99:7b:01:5c:a9:
07:86:61:f2:d3:65:01:f7:f8:50:ae:ba:5e:53:8b:
83:e0:0a:e4:7b:eb:3c:0e:a2:ca:63:39:0d:f3:db:
d4:5e:04:f5:24:06:97:c8:c5:0d:9d:2c:ed:18:31:
b0:32:76:36:3b:79:f3:a6:b0:eb:63:74:a5:22:5a:
15:1c:03:d1:2f:4d:18:67:25:8e:2b:0c:74:a1:a2:
7c:32:11:25:79:f9:4a:f4:8c:80:83:4a:5f:f7:66:
7d:2d:a8:de:55:08:54:6b:f5:27:53:c8:5a:35:ed:
da:2c:59:8f:2b:e3:25:1a:9b:74:c4:7f:53:5b:8c:
9f:31:d4:e1:96:7b:28:d1:9e:c8:fc:1d:31:de:df:
28:84:a1:5c:fd:8c:7b:b4:6d:ef:2e:69:97:94:b3:
6e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:22:39:C0:D1:A6:7B:45:CB:57:5A:51:27:26:AE:84:7F:29:FB:64
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/VyI5wNGme0XLV1pRJyauhH8p-2Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b401::/32
Signature Algorithm: sha256WithRSAEncryption
71:3e:b8:ef:5d:e7:bb:26:bb:c2:8b:0f:d9:11:99:cd:a4:7c:
34:a3:47:70:53:7c:e9:ff:3c:99:20:2e:6d:76:e5:72:dd:98:
57:86:cc:d3:1a:1f:c5:c1:1b:21:4b:6d:f9:0d:c8:8b:a7:17:
ca:e7:e5:12:b4:b9:bd:71:8b:d4:1c:ef:b5:af:33:59:95:98:
61:df:04:1e:b6:7e:29:7c:c9:ed:88:87:8c:88:d1:80:5e:ab:
05:76:41:ae:9c:f7:46:92:db:d4:6f:06:f4:99:3c:b9:e8:3f:
92:84:4e:24:3f:51:8d:8c:c6:0b:ea:6c:26:b7:0e:4d:cb:7d:
cd:69:7a:29:91:cc:ca:f6:5b:88:1e:9b:df:9e:27:6b:d2:98:
20:0e:62:be:e4:df:f3:ae:7e:32:07:75:50:0c:15:7d:51:5d:
e9:49:95:24:0d:52:1c:c9:ec:b2:76:98:7d:a8:b2:9a:1b:2b:
35:81:c5:cd:c2:89:59:d7:5f:c3:9c:bf:17:4b:5e:08:b7:ac:
1f:2d:10:61:e7:16:b4:9d:22:56:f4:29:1a:66:e8:54:a2:69:
7b:5a:21:35:c5:0a:97:72:4f:b5:cb:e4:68:c1:12:44:eb:f2:
cf:40:8d:ce:51:9d:2b:e3:1d:85:a6:31:b6:f9:2a:d6:5d:b9:
b4:60:53:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org