Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/5jPtURlx5lCr2r0QR-czohOv2g8.roa
File: 5jPtURlx5lCr2r0QR-czohOv2g8.roa (raw, json)
Hash identifier: ZcCwFOh3Qsh9AiOBySR9VO+4ze9AGzH+sk5UevqTdzo=
Subject key identifier: E6:33:ED:51:19:71:E6:50:AB:DA:BD:10:47:E7:33:A2:13:AF:DA:0F
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AE5
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5jPtURlx5lCr2r0QR-czohOv2g8.roa
Signing time: Sun 07 Feb 2021 11:40:54 +0000
ROA not before: Sun 07 Feb 2021 11:40:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17714
IP address blocks: 220.128.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2789 (0xae5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:40:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E633ED511971E650ABDABD1047E733A213AFDA0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:79:ab:9d:cc:93:70:b1:b1:3f:d9:c0:99:6a:
94:aa:71:78:d9:31:29:fc:3b:f6:69:b8:cd:9b:cf:
31:d4:0b:07:1d:7a:d8:5d:e9:39:39:7a:86:bb:2c:
f4:bf:df:1e:9b:0a:b5:e4:b3:f1:7c:e5:11:15:17:
dd:fb:61:0c:94:29:9f:ed:7f:2a:96:32:fa:e2:a9:
2f:86:e6:44:e0:23:69:1c:23:f0:ea:83:2d:df:e5:
65:78:b6:c1:c3:d5:64:8d:95:4f:fb:84:fa:be:bf:
c3:f5:ba:11:88:f7:e6:07:e0:ed:bf:01:40:62:39:
1d:bf:74:3c:c9:3c:7f:2c:e9:30:41:2d:1d:54:33:
83:6f:2b:7f:a1:be:30:3d:93:8d:62:5c:1d:4a:50:
dd:08:6e:de:96:ce:42:d4:3a:27:5a:95:8d:16:90:
b0:22:05:00:f4:78:e4:dc:91:d9:29:32:10:13:c0:
6f:1e:bf:72:2a:ac:3c:0b:83:4c:5f:9d:f0:c8:6b:
67:2b:cb:a0:da:92:cf:ee:8c:87:b1:f2:a8:cd:67:
6b:2e:b8:b0:a9:6e:bc:ce:cf:1d:d5:32:d1:8b:10:
b3:f1:dc:af:c7:8f:54:13:82:4f:cc:21:07:ff:17:
66:9d:23:f5:aa:50:cc:37:66:15:ef:d3:36:a0:15:
4c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:33:ED:51:19:71:E6:50:AB:DA:BD:10:47:E7:33:A2:13:AF:DA:0F
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5jPtURlx5lCr2r0QR-czohOv2g8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.48.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:3d:5e:ab:33:ae:9f:19:e6:0b:ae:a4:c9:4c:67:14:3c:7a:
67:d1:5b:fb:9d:12:16:45:1d:00:ff:73:37:1d:de:56:30:ce:
82:ec:fd:22:b9:db:cd:b6:e2:7e:69:8c:85:57:22:2b:90:30:
7a:8c:6d:f8:75:b0:dc:1e:5a:7e:1d:c9:59:c9:cb:c0:be:08:
d4:ca:f8:4d:c3:27:75:31:df:f9:db:01:2f:9b:2b:17:28:69:
05:4b:28:66:2e:9d:7d:5d:06:55:ee:01:a6:3c:d3:6e:6a:dc:
3e:6d:bd:eb:00:57:44:a2:8f:eb:a3:e9:d8:17:64:87:fa:be:
73:51:a8:d9:2e:e3:b8:f4:b2:36:04:16:ec:39:03:93:45:ee:
53:02:b2:03:99:d9:18:58:2c:28:1d:45:35:a6:4a:91:b2:b6:
a3:41:0f:45:f3:7b:bc:71:f6:a1:60:7b:7a:a9:de:22:4e:67:
db:1d:61:c5:13:f6:b3:8b:83:e6:2c:8f:40:da:e7:4e:81:86:
3f:89:2a:14:b4:07:8f:99:97:85:42:57:4c:c3:15:72:4f:12:
d0:10:a5:ad:b6:72:d0:15:74:12:6c:4d:d0:6a:6e:c9:a5:59:
d8:c0:f5:99:16:66:b7:15:ba:9f:fa:2b:d5:b9:23:c7:d6:de:
03:82:df:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org