Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/y4bffMa6I9lzYBEy0jPmus5Tppg.roa
File: y4bffMa6I9lzYBEy0jPmus5Tppg.roa (raw, json)
Hash identifier: tQGByhlhQHhpftv0trxDrdAIIytWOd7nh50+DWncnwM=
Subject key identifier: CB:86:DF:7C:C6:BA:23:D9:73:60:11:32:D2:33:E6:BA:CE:53:A6:98
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0ADD
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/y4bffMa6I9lzYBEy0jPmus5Tppg.roa
Signing time: Sun 07 Feb 2021 11:39:26 +0000
ROA not before: Sun 07 Feb 2021 11:39:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 61.228.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2781 (0xadd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:39:26 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CB86DF7CC6BA23D973601132D233E6BACE53A698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:ca:fe:80:fc:d4:cb:98:5b:21:6a:59:38:06:
0f:89:8a:9e:d2:e8:b1:c3:92:66:4c:64:2b:51:af:
ce:c6:a1:d8:bc:26:7d:1b:6f:3a:98:36:cd:14:80:
be:4a:f6:76:47:26:3b:16:43:eb:5d:25:6f:cc:7e:
a4:08:ff:7c:4c:fb:12:a9:94:c5:ed:83:30:a2:93:
be:be:d6:79:c6:29:c5:f4:ce:bc:51:7d:52:36:14:
fb:04:62:f2:2c:7d:2b:69:4f:0b:a6:db:53:58:89:
25:c4:97:12:7d:b3:c8:a6:43:0d:33:62:98:98:8a:
9f:44:a8:51:3a:00:d6:8e:da:17:93:1e:b0:88:ea:
ce:4e:54:9a:99:d5:a5:b2:a8:ab:5f:ce:7c:d6:16:
b7:e6:a7:1c:d0:92:2c:d1:42:e3:72:f3:44:fd:8f:
39:d3:5d:b6:0e:4a:46:87:2f:48:73:04:62:ca:ab:
37:8b:56:2e:b4:92:51:b4:9f:21:d2:1a:3c:44:3b:
97:6e:53:d4:81:4d:ff:35:f2:b5:f7:e5:50:e0:20:
2a:dd:fd:7e:76:23:19:5a:71:c3:16:e6:e9:dc:9d:
bd:bd:fa:5a:2b:07:50:c3:62:41:6b:51:b4:a6:87:
79:f1:1e:79:f9:4c:25:f0:68:95:e3:b1:be:7e:e2:
0b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:86:DF:7C:C6:BA:23:D9:73:60:11:32:D2:33:E6:BA:CE:53:A6:98
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/y4bffMa6I9lzYBEy0jPmus5Tppg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.228.0.0/14
Signature Algorithm: sha256WithRSAEncryption
80:1b:92:11:ef:92:c5:4e:c1:56:5a:7c:37:7e:37:8f:c7:ce:
8c:97:79:54:8d:75:f2:e0:34:8f:8c:e4:81:5a:df:d4:20:55:
28:7a:e4:05:30:50:c7:ef:a7:26:61:92:15:d2:7d:56:93:01:
48:b8:9b:a1:ed:fa:27:4f:a1:55:64:11:3f:5e:97:27:be:15:
65:8c:40:07:e7:24:6f:29:6a:88:f5:81:2a:a0:f9:08:d0:d4:
5a:23:c3:00:d0:72:59:2e:9d:6f:4b:2d:dd:f6:95:73:fd:12:
ce:4c:ca:3a:64:35:42:d3:9e:75:15:6a:17:00:63:51:ac:15:
f1:67:c9:49:44:f0:b6:6d:b0:50:fb:7f:10:a9:40:98:89:f3:
7a:41:19:76:6b:83:48:0f:51:cb:bf:cb:12:65:a2:50:53:eb:
8c:19:e2:a6:91:14:78:68:36:0d:44:98:32:a1:c2:a1:c2:72:
aa:48:74:82:1d:56:1e:c2:0d:83:4f:bf:d8:00:25:31:c3:a5:
0e:04:9c:ca:49:73:6b:ba:3e:37:3a:66:a5:35:f9:76:01:16:
f1:b8:65:c7:0c:56:c7:02:15:2b:24:13:f0:6b:55:6f:a0:d9:
a2:9d:b5:08:1c:12:03:fe:f7:28:a9:a0:b1:99:eb:98:fb:1d:
a2:7a:d5:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org