Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/f3m-2aZwa9YCg_Qb-RrT6yfRQxs.roa
File: f3m-2aZwa9YCg_Qb-RrT6yfRQxs.roa (raw, json)
Hash identifier: srWlTqJhpUm4TQq5FilapDGJyF7B3p+RDmg4lWIa9h0=
Subject key identifier: 7F:79:BE:D9:A6:70:6B:D6:02:83:F4:1B:F9:1A:D3:EB:27:D1:43:1B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AD3
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/f3m-2aZwa9YCg_Qb-RrT6yfRQxs.roa
Signing time: Sun 07 Feb 2021 11:39:16 +0000
ROA not before: Sun 07 Feb 2021 11:39:16 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 61.216.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2771 (0xad3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:39:16 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7F79BED9A6706BD60283F41BF91AD3EB27D1431B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c2:ab:ce:af:20:2c:59:c5:1a:05:69:00:1b:
54:d7:e2:60:18:39:f0:60:a4:d3:4e:cc:9d:4f:aa:
b7:15:af:3c:48:6e:54:8f:82:91:92:e3:54:1d:cf:
c3:f8:93:51:1d:2f:f9:a2:87:5f:2a:2f:54:3b:eb:
de:e6:90:79:8f:30:df:fc:6a:0a:ef:8c:25:84:7a:
85:16:61:de:e2:2d:1f:23:e9:7b:f2:a2:9d:a5:d5:
99:93:3e:9a:2b:16:61:bc:7f:6c:65:4d:3e:24:af:
94:c7:99:87:b0:2a:72:1c:f7:ae:1e:89:09:cf:fc:
72:99:33:e8:2d:cc:cd:a7:b6:20:aa:be:34:18:6a:
73:5e:dd:5c:99:89:4d:9b:4d:0d:b1:66:77:45:22:
9c:df:c3:86:5c:61:d3:e4:23:52:8c:59:92:0d:e1:
b1:5c:86:a2:32:36:6e:60:b1:ae:90:40:5e:bd:f9:
74:7a:9e:8d:56:fa:65:28:2b:dc:ca:8a:8f:14:76:
73:2f:b4:7d:b4:55:5f:1c:e0:45:a9:ba:01:14:c2:
85:ac:fc:e9:25:83:1a:55:fc:d6:98:d6:0a:f5:81:
77:8e:7d:27:db:d6:1a:30:02:e1:21:28:fd:dd:58:
b3:e1:4f:ea:fe:49:ff:43:fe:fd:33:76:d2:5b:2e:
d0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:79:BE:D9:A6:70:6B:D6:02:83:F4:1B:F9:1A:D3:EB:27:D1:43:1B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/f3m-2aZwa9YCg_Qb-RrT6yfRQxs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.216.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5b:53:79:61:14:ff:6f:4e:73:a3:28:34:be:7d:a1:fe:4f:d7:
8c:ca:84:0a:70:de:c8:f2:2e:e0:d8:02:32:ab:98:85:ac:66:
35:3f:53:a5:82:87:17:5b:df:b8:2a:85:a6:a9:95:22:19:c7:
c8:9d:f2:1e:0f:95:38:c8:8d:07:1b:dd:05:18:4c:41:3c:7c:
d4:56:32:a6:da:40:9e:92:ee:cd:34:37:0d:2d:4c:46:9d:29:
d0:98:d3:1a:e1:4c:5f:38:53:9a:96:e6:29:56:0b:6b:db:0f:
1d:a1:6b:62:37:8f:8c:52:6a:c0:af:0b:14:d6:aa:d0:82:f6:
c9:00:1e:ce:25:6d:b9:77:86:97:fe:ce:f9:f0:81:25:b5:c8:
ea:4b:c6:dc:70:b9:da:6f:48:08:c7:e2:63:fd:ec:d1:9d:6a:
83:a8:2c:1f:83:45:e6:46:9f:de:60:be:51:9e:ab:85:86:ba:
5c:ca:97:8d:0b:5d:39:f5:15:ef:8c:7c:c7:8a:aa:bf:29:c6:
5f:e9:9f:d2:30:99:f7:74:ea:d2:aa:ca:37:ac:a3:d1:8e:37:
fe:15:05:fb:f6:49:71:70:fd:f4:ba:27:37:d0:80:d6:13:e9:
af:de:3f:a2:4a:0d:31:42:61:1c:e6:01:4b:b7:d8:a7:3f:dc:
ce:b7:be:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:37 2025 by rpki-client