Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/_B2BD611kDPrRp8oxLuiIzr0VHI.roa
File: _B2BD611kDPrRp8oxLuiIzr0VHI.roa (raw, json)
Hash identifier: Jr/Pc0FSQl1D7x7sdUF+il0wzk7aJ14WlW1swJPWpwI=
Subject key identifier: FC:1D:81:0F:AD:75:90:33:EB:46:9F:28:C4:BB:A2:23:3A:F4:54:72
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_B2BD611kDPrRp8oxLuiIzr0VHI.roa
Signing time: Thu 15 Sep 2022 02:48:22 +0000
ROA not before: Thu 15 Sep 2022 02:48:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 61.217.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:22 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FC1D810FAD759033EB469F28C4BBA2233AF45472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e2:51:07:31:90:fb:cf:75:b1:9a:1d:c6:3b:
61:4b:9d:63:56:ca:68:e0:c6:bf:0c:b9:b6:c5:a1:
1d:f6:56:ac:e3:76:43:62:c6:fb:d8:44:bc:89:56:
84:62:a2:5c:79:9b:d9:90:8a:06:7e:4e:77:bb:cc:
e0:80:ca:a0:9b:c0:25:d4:81:01:ef:d4:25:08:92:
57:07:0b:25:ac:fa:62:ff:57:6d:8d:3a:b9:87:6e:
2e:5b:3d:78:f1:7a:5b:05:2c:bc:cc:fd:54:c7:fb:
0d:53:82:b0:92:90:98:40:07:26:31:91:32:5a:78:
a4:3c:57:f7:21:91:b6:e5:43:19:93:fc:e4:71:5f:
bc:94:89:91:ee:b1:f2:ae:4f:76:d9:43:ee:62:69:
ab:ed:a8:5d:87:4b:f3:01:63:25:be:99:03:37:eb:
9e:4b:2e:d0:f7:44:c6:26:3f:cb:ef:a9:a0:99:4d:
e4:90:8f:42:b8:c1:fb:2e:c8:c9:60:97:a0:26:7d:
bd:cb:95:42:4a:3b:a3:1f:e7:3d:b1:98:47:90:3b:
1e:4b:91:b2:69:72:db:c4:84:5d:45:53:d4:d8:2d:
71:79:f8:0c:d2:76:2a:1f:51:aa:f3:d8:fe:4e:8f:
b8:a9:6c:6a:9e:ab:0a:36:7b:30:b6:16:dc:a0:61:
90:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:1D:81:0F:AD:75:90:33:EB:46:9F:28:C4:BB:A2:23:3A:F4:54:72
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_B2BD611kDPrRp8oxLuiIzr0VHI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.217.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6c:cf:3b:c2:5f:07:61:3d:2a:a5:73:43:7f:88:dd:a9:e8:a8:
88:e4:5a:c6:c9:c4:05:7c:b4:80:85:9d:7b:65:94:6a:99:05:
f1:a6:ad:61:6e:8b:fa:28:00:7b:a7:1c:63:f1:0d:ec:77:e2:
ae:f6:24:4b:53:15:e3:e5:04:76:b1:0d:f5:9f:97:bc:8c:37:
9e:7b:13:d3:87:91:dc:16:3f:06:db:f1:ca:f8:cd:92:2f:f2:
22:7f:8d:d9:70:53:53:6a:2b:26:01:02:dd:c7:93:1b:1d:d8:
75:84:e1:85:78:cf:55:87:87:6a:7c:bc:73:b9:a9:70:16:f1:
61:cb:53:b0:62:3c:4a:47:3f:89:99:a6:b5:c8:e6:f0:6c:c3:
23:1f:73:51:e5:b2:0a:8f:32:f1:df:d6:d8:91:2a:f6:93:d1:
87:72:da:1d:b0:bb:ad:d2:07:de:39:60:c6:6c:ff:df:49:f4:
15:5a:5f:80:80:2c:95:52:50:15:16:da:bf:17:b9:1d:37:1b:
92:e1:38:f9:dc:f3:4f:96:42:5e:b0:67:f0:74:74:cb:76:f6:
1e:69:f8:0f:95:81:dc:c1:c7:b5:6e:10:2b:52:f2:9d:3f:2b:
c8:df:a8:00:21:a2:c3:a2:e5:64:ce:22:37:39:ff:b5:e0:5a:
0c:99:9c:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org