Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/9pUvlAlPa7dMhXcZL_GaHUUbX0E.roa
File: 9pUvlAlPa7dMhXcZL_GaHUUbX0E.roa (raw, json)
Hash identifier: FHiqZeRUhiuS9L5IhIzH1UgKI8ZXDdKP3XHCao9OXM4=
Subject key identifier: F6:95:2F:94:09:4F:6B:B7:4C:85:77:19:2F:F1:9A:1D:45:1B:5F:41
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 084B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9pUvlAlPa7dMhXcZL_GaHUUbX0E.roa
Signing time: Tue 29 Sep 2020 09:58:34 +0000
ROA not before: Tue 29 Sep 2020 09:58:34 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 220.128.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2123 (0x84b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:34 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F6952F94094F6BB74C8577192FF19A1D451B5F41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:45:72:ec:2f:e7:dc:cb:40:28:b7:a3:af:b5:
5f:7b:31:0f:50:53:5f:15:a5:81:5e:10:cf:ca:8d:
cc:6c:45:28:8a:75:3f:8c:9d:c5:4b:66:d6:73:20:
91:e2:b8:df:b5:74:53:cd:f0:bb:ae:de:d0:22:ad:
ef:58:38:6f:8d:a1:44:e5:b8:27:8d:5f:66:8d:83:
18:2c:8f:c3:af:cb:a0:ea:81:c1:2d:28:5b:0d:7a:
9e:03:e6:65:c2:15:1d:29:e9:5d:53:65:f3:71:18:
d6:ee:ea:b4:90:6e:a6:22:28:bc:61:af:30:33:21:
5f:13:41:48:08:0d:b7:ac:3a:f4:7d:f4:75:0d:df:
da:4a:57:0d:c1:99:2d:46:6c:30:26:14:f4:cb:4c:
f5:f3:48:00:f3:68:a5:c0:e1:ee:02:a6:33:0e:07:
51:98:b6:87:d3:94:1c:5d:01:73:9b:97:3e:94:60:
23:d1:73:f6:97:49:8f:36:a1:10:ec:08:c8:78:aa:
63:07:39:87:65:60:1c:75:5e:04:f1:ba:b0:1e:44:
2c:90:df:75:19:48:e0:e5:f5:92:70:e3:29:b5:6b:
20:9a:6f:3b:f3:f3:66:f8:3b:cd:a4:b3:66:84:7c:
e1:84:b6:e2:54:f5:a1:d6:e4:cf:ff:26:44:cf:5e:
24:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:95:2F:94:09:4F:6B:B7:4C:85:77:19:2F:F1:9A:1D:45:1B:5F:41
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9pUvlAlPa7dMhXcZL_GaHUUbX0E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.128.0/17
Signature Algorithm: sha256WithRSAEncryption
49:5b:6b:08:bc:b4:91:3b:f6:ae:9d:4a:cb:88:49:b2:62:31:
cc:d0:a7:96:a2:53:f6:ec:fd:9a:02:be:ce:b8:dc:86:db:96:
23:07:99:59:5a:21:73:47:f0:1a:a2:93:8c:cc:ab:6a:63:d9:
f9:84:7d:72:94:32:19:e4:ce:fd:8b:71:cb:86:df:5a:f0:6b:
de:e7:90:f6:01:6e:8b:8a:29:55:a6:c0:95:f3:a0:79:6e:99:
34:15:12:01:95:b0:ff:b6:25:8d:71:bd:02:9a:6b:48:3a:be:
ec:d8:ab:42:a3:e1:df:b4:1f:75:78:d6:ce:a7:51:65:25:e0:
e0:79:48:1d:29:68:07:a8:64:e1:7b:32:7a:2d:d3:49:de:53:
fa:64:01:91:42:d2:06:d9:82:12:24:16:71:71:3c:89:1e:46:
d6:4a:35:52:c0:20:5b:cf:35:d2:9c:78:f7:16:26:ed:88:d5:
7a:9c:2a:b0:ef:b2:24:63:41:bd:3c:71:e8:75:cc:66:dd:f1:
72:f5:d4:68:20:c2:09:00:ef:6f:b5:2b:b4:a4:51:48:eb:6f:
21:5b:ec:b3:77:e1:18:64:59:a1:1f:0c:6c:3c:e6:e4:5d:99:
5b:09:2e:8d:d2:19:f5:27:fb:75:ef:f5:b5:37:41:fd:6f:fd:
ea:2e:30:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org