Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/9CDzFw-10Qk9yg_DZ71JJWmpN-g.roa
File: 9CDzFw-10Qk9yg_DZ71JJWmpN-g.roa (raw, json)
Hash identifier: UHk7iFcFJnSevxzEoHzMUM17y0X+5tNFJYGrqKtxpUM=
Subject key identifier: F4:20:F3:17:0F:B5:D1:09:3D:CA:0F:C3:67:BD:49:25:69:A9:37:E8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9CDzFw-10Qk9yg_DZ71JJWmpN-g.roa
Signing time: Thu 15 Sep 2022 02:48:28 +0000
ROA not before: Thu 15 Sep 2022 02:48:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 220.129.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F420F3170FB5D1093DCA0FC367BD492569A937E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1a:9a:ae:c3:e5:85:8e:5d:1f:a1:36:07:cc:
f5:95:96:67:57:11:79:89:d0:96:2c:e3:4b:e8:cb:
a4:cf:4b:a3:03:7f:31:bd:ff:c1:17:33:13:c4:d7:
95:71:08:f7:e8:4c:a3:86:0a:6b:55:33:b0:64:ad:
ea:34:7c:b4:5b:77:d0:32:69:d6:bb:50:d2:a1:94:
9d:7f:96:77:ec:08:6a:e8:09:67:e7:72:af:76:32:
99:27:a7:be:f4:dc:19:27:e8:7f:57:53:83:f9:3d:
c2:b3:75:e3:e8:af:a2:28:e1:82:87:d8:45:b8:16:
9e:0f:a4:12:3b:90:2e:7d:bf:58:64:e2:ff:70:f1:
5f:3b:3e:9b:fc:57:43:31:66:d9:1f:f5:cc:e8:a9:
7d:90:c1:5b:7a:96:3f:b6:2c:d4:a1:46:74:d1:bf:
b2:e4:34:f8:57:b1:96:d8:04:61:6b:52:ed:25:24:
fb:54:01:e1:16:eb:99:32:eb:f2:7b:d0:7f:a3:08:
0d:13:70:b1:36:7f:f3:5b:bb:9e:9a:e3:9e:1a:a9:
ad:a3:3d:bf:85:a6:e8:5d:47:4b:74:75:d6:e6:d1:
93:bb:ad:90:1d:4b:51:45:f4:0e:94:99:ad:5f:f8:
c4:ed:68:f2:84:6f:00:9b:73:8b:34:df:f1:e8:54:
bc:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:20:F3:17:0F:B5:D1:09:3D:CA:0F:C3:67:BD:49:25:69:A9:37:E8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9CDzFw-10Qk9yg_DZ71JJWmpN-g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.129.0.0/16
Signature Algorithm: sha256WithRSAEncryption
29:29:94:81:b6:19:25:14:93:4a:7e:c4:f6:77:91:e2:22:94:
24:2d:e1:88:26:57:19:3e:fd:84:69:fd:77:ab:2a:1a:ab:df:
cd:06:2f:d9:7b:bf:ec:b7:3d:6d:11:73:63:d5:ce:8f:38:9a:
7d:99:53:4c:f6:36:1e:d4:07:83:53:96:77:fd:04:d3:f2:56:
7e:cb:10:59:a0:1c:62:97:e5:22:49:98:eb:a8:a1:dd:38:1b:
c8:36:ef:34:5e:64:b8:9b:01:af:34:40:a4:fc:d5:de:d0:cb:
90:e6:e9:8b:3b:c3:b3:0a:d8:c5:7a:29:fd:92:7d:71:66:a0:
01:e7:a1:11:44:af:5a:42:1f:59:cf:2c:cc:18:9a:d7:75:7a:
ce:16:86:0c:95:32:b0:2d:5e:05:23:ea:47:34:f9:37:50:44:
fd:a5:7a:4d:1c:5a:7d:a3:01:f7:0a:f0:bc:7f:f1:0e:41:90:
8d:a1:21:bd:57:ad:57:8e:d5:f8:65:ac:a3:40:d8:8d:1c:32:
ec:dc:48:e2:16:7e:d3:32:f9:71:94:b1:36:35:e9:74:a8:35:
bc:6d:77:af:fc:d5:e6:21:ba:6c:45:04:1f:19:94:40:72:43:
e7:f9:e2:07:c9:af:e7:11:e3:d4:24:76:b5:3f:4e:1f:6a:be:
75:5e:c5:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org