Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/9BY0w4itWul7ZfYNjXsfnM0PuzA.roa
File: 9BY0w4itWul7ZfYNjXsfnM0PuzA.roa (raw, json)
Hash identifier: HVhdQSCrdj+ZNGAaNTWGlKWL8UJ4X0wNDETu//gmyOw=
Subject key identifier: F4:16:34:C3:88:AD:5A:E9:7B:65:F6:0D:8D:7B:1F:9C:CD:0F:BB:30
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C2E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9BY0w4itWul7ZfYNjXsfnM0PuzA.roa
Signing time: Wed 29 Sep 2021 02:50:58 +0000
ROA not before: Wed 29 Sep 2021 02:50:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 220.128.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3118 (0xc2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=F41634C388AD5AE97B65F60D8D7B1F9CCD0FBB30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:17:1e:6d:f2:9a:78:86:65:e8:ad:5a:32:44:
b6:4d:99:a3:30:c1:57:39:a3:25:38:13:4d:e2:cf:
1a:31:eb:1f:cc:b6:09:73:f5:67:23:cf:97:d9:cc:
a8:27:ee:38:4c:d5:23:ff:da:e7:2a:b0:2e:f5:95:
c8:5c:95:c6:eb:43:78:2c:25:d5:2d:2a:e6:eb:66:
49:67:13:1f:f1:52:12:02:0d:16:7b:a0:80:27:d9:
74:ea:c1:1d:dc:d6:0b:40:3f:08:38:be:a3:e3:8c:
b1:46:f7:0d:82:a1:f4:d5:e5:07:13:68:03:4d:f1:
ac:45:18:dc:d8:73:e7:28:65:73:4c:93:0e:9b:fa:
14:f8:e6:bd:95:b4:de:92:53:15:20:ec:f4:5e:c1:
bb:de:6d:1b:c4:45:fa:d1:c9:73:40:38:46:31:60:
e6:74:63:fd:31:f2:21:06:1f:8f:f0:b5:e8:81:8a:
1e:05:75:fc:57:a4:64:64:e6:c8:ec:59:e0:ca:13:
60:13:08:2a:9a:2c:86:c9:75:32:d7:65:61:a9:c7:
7c:d7:83:ea:02:9d:20:6d:53:c2:af:16:6a:60:31:
f5:f2:6e:08:ff:ff:4c:65:28:43:54:3c:93:9d:29:
80:a7:14:ec:75:af:6d:a4:c5:af:21:b0:8a:16:3f:
2f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:16:34:C3:88:AD:5A:E9:7B:65:F6:0D:8D:7B:1F:9C:CD:0F:BB:30
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9BY0w4itWul7ZfYNjXsfnM0PuzA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.64.0/18
Signature Algorithm: sha256WithRSAEncryption
85:63:a8:cc:0a:26:6f:0d:7d:5a:18:a7:71:80:33:4f:e7:23:
5a:f3:2b:7f:34:4d:e5:74:9f:c8:e5:84:9f:70:60:d1:89:a5:
5e:46:ad:9f:91:a9:be:80:f9:fd:dc:9a:87:28:a1:42:73:21:
14:8f:49:b2:fa:d4:f0:65:d7:63:74:9b:3e:a3:ad:47:10:77:
84:a8:a6:69:d0:95:c5:de:94:9d:dc:5b:d8:7e:a3:b6:93:e0:
52:a7:8b:61:92:95:39:26:71:82:34:b9:71:91:99:c0:1c:08:
ad:42:18:1e:76:fd:7e:66:4d:fe:9f:46:1a:1b:bc:f1:b6:32:
f5:2c:89:22:1a:22:b6:08:09:f2:da:a3:1b:81:01:c5:bc:10:
29:dd:cc:2c:e0:08:f0:fc:4b:97:46:a9:96:4e:b6:4e:dc:af:
cb:58:c4:78:67:11:e8:0b:45:31:89:aa:28:a1:d7:33:f4:dc:
46:4b:83:fc:26:83:01:3f:95:e9:55:01:24:3a:3d:aa:6c:31:
b5:35:7a:c7:a9:d6:9e:28:80:66:5f:cb:5e:a6:aa:1e:ef:a3:
25:77:0b:52:f7:bc:70:45:2f:75:36:4b:b4:c9:09:1c:06:56:
06:ac:cc:bd:0e:75:46:ca:25:d6:35:80:0c:45:89:35:5c:55:
f9:9c:f5:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org