Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/XsvccNW3myj1PqmyLEclFYZDIDM.roa
File: XsvccNW3myj1PqmyLEclFYZDIDM.roa (raw, json)
Hash identifier: 7nXopm3wkliT0KPgB5NViYpxY+KuzGad9zi/gbaCuFA=
Subject key identifier: 5E:CB:DC:70:D5:B7:9B:28:F5:3E:A9:B2:2C:47:25:15:86:43:20:33
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0ADB
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XsvccNW3myj1PqmyLEclFYZDIDM.roa
Signing time: Sun 07 Feb 2021 11:39:24 +0000
ROA not before: Sun 07 Feb 2021 11:39:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 61.224.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2779 (0xadb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:39:24 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5ECBDC70D5B79B28F53EA9B22C47251586432033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1f:6d:3d:88:b5:a0:8c:73:c8:48:7f:a0:0e:
57:03:42:3f:d0:bc:cd:ab:25:31:ca:2f:25:6f:f3:
37:a9:96:1f:f2:9f:27:3e:0e:8c:96:4e:58:a0:a8:
2b:b4:a9:2c:eb:4c:2f:19:78:75:7f:85:1e:23:8e:
e3:4b:cf:65:a2:85:cf:b2:3d:6e:7c:e6:c8:1d:1b:
54:c4:3d:be:34:70:d0:ad:07:58:92:65:82:a8:bc:
8a:91:b2:7c:94:94:2f:00:5b:21:f2:31:7c:b0:10:
f0:bc:ef:b4:47:64:2f:3b:61:25:49:26:35:07:82:
63:05:e5:de:72:5d:08:6b:15:16:8e:7c:5e:fe:68:
36:ff:3a:09:7e:9d:dc:a9:32:34:e3:d8:fb:ad:54:
7d:af:b0:f6:fd:fc:9b:0f:4d:10:f3:07:1f:bd:4b:
ce:63:c5:c6:9e:50:08:d0:4e:e3:57:e6:28:93:9f:
01:9c:d8:9f:04:d0:91:48:6e:3a:49:5a:a4:4f:a1:
ea:68:e4:29:24:f2:2c:a3:0d:12:8f:b2:fb:1a:6f:
44:cb:4e:75:84:58:55:a1:9b:1d:e4:48:52:f1:b9:
96:56:50:0a:42:88:1e:a6:e4:6b:16:3b:fb:c9:8c:
38:d6:b0:24:bd:83:40:81:5d:a3:a2:74:a5:2b:4a:
34:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:CB:DC:70:D5:B7:9B:28:F5:3E:A9:B2:2C:47:25:15:86:43:20:33
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XsvccNW3myj1PqmyLEclFYZDIDM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.224.0.0/14
Signature Algorithm: sha256WithRSAEncryption
4e:13:c9:b4:62:f0:4b:d4:9b:90:ff:0f:e3:41:44:73:52:af:
17:a9:e9:a3:24:56:5c:ae:01:09:36:9c:a4:ad:f4:72:2b:a4:
6b:91:38:6f:84:dd:c1:84:a1:96:04:40:0b:1c:4c:e4:2b:12:
ab:ef:78:0a:b0:8d:a2:bf:d5:e5:c4:f2:c8:f6:3a:37:88:da:
59:41:ba:48:d7:5b:65:69:db:7e:fb:ec:0b:07:30:68:b7:6e:
5b:28:e0:4d:1d:a5:8b:92:0c:1b:d0:5b:8c:d6:11:13:60:b5:
74:4d:de:82:2d:5d:7e:f9:15:c0:b0:49:b6:1c:a3:be:2f:84:
98:9d:75:35:83:81:11:f1:86:80:ce:a7:dd:db:c0:da:9f:58:
6a:b0:a6:42:6e:5e:42:50:1c:60:d4:a7:8c:ee:a4:45:c2:69:
98:c8:b5:a5:87:eb:b8:53:f0:3f:e7:e3:1f:30:40:ff:fc:57:
a0:0b:38:33:56:cd:b4:5a:54:f7:ed:a7:1e:e1:a0:2c:c9:e0:
9f:69:a9:ae:69:f2:7c:c8:93:e6:08:f4:aa:1a:b9:d3:1d:31:
1f:78:e2:d8:0e:92:b3:5c:18:88:36:e1:a7:a0:54:9b:7d:2b:
f7:38:8e:dc:c9:34:c8:22:cc:8d:5e:74:59:0a:98:50:7a:b1:
9b:5c:90:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org