Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/9s2jayPp0YOdkdscLnfl2tng0xk.roa
File: 9s2jayPp0YOdkdscLnfl2tng0xk.roa (raw, json)
Hash identifier: JYbOog1vFWootfH4RRkNMSNLwirfeKszlvhQG+90QpA=
Subject key identifier: F6:CD:A3:6B:23:E9:D1:83:9D:91:DB:1C:2E:77:E5:DA:D9:E0:D3:19
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0823
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9s2jayPp0YOdkdscLnfl2tng0xk.roa
Signing time: Tue 29 Sep 2020 09:58:24 +0000
ROA not before: Tue 29 Sep 2020 09:58:24 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17714
IP address blocks: 220.128.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2083 (0x823)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:24 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=F6CDA36B23E9D1839D91DB1C2E77E5DAD9E0D319
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:58:6d:d7:33:9e:55:51:30:73:5c:93:5c:02:
74:48:2d:db:6a:c8:c7:01:d4:4d:02:df:17:2e:ac:
45:6f:c0:f3:43:d7:89:97:ff:82:3a:40:ac:89:cd:
de:41:18:9c:3b:76:b4:5a:9d:c5:50:9c:51:26:40:
4b:2e:89:24:65:38:d6:de:b8:6c:43:d5:21:74:5a:
13:ae:35:8e:a7:8a:08:0b:ed:86:62:3b:50:56:f4:
95:34:13:6f:5d:0a:7d:6c:72:1d:2d:c2:83:64:86:
bc:ed:68:c8:47:27:0d:48:6e:0f:12:de:06:f6:66:
21:43:5e:18:7c:ce:5d:26:d7:1c:31:66:c8:03:b6:
ff:9b:8a:53:54:48:68:21:3e:0b:06:9b:ae:8a:6c:
eb:76:63:13:01:db:93:e7:80:42:2e:b2:db:75:9a:
a7:a5:37:b4:87:e9:2d:61:32:18:99:93:77:b2:c8:
6e:3b:93:7f:70:c3:da:a2:ac:56:39:17:d7:34:41:
f6:47:54:9d:df:2b:97:84:1e:17:bb:21:be:36:de:
c0:58:05:17:24:b0:f7:2f:6b:4c:f5:0f:8f:6e:cf:
15:d0:05:31:54:ca:3e:c0:95:fd:3c:18:29:30:e1:
cb:b5:43:c9:81:77:c2:3b:e7:eb:bf:43:fc:8a:0d:
6e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:CD:A3:6B:23:E9:D1:83:9D:91:DB:1C:2E:77:E5:DA:D9:E0:D3:19
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9s2jayPp0YOdkdscLnfl2tng0xk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.48.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:ff:3f:92:a4:8e:d4:63:84:5b:eb:69:e0:1f:c8:70:ed:57:
97:5c:63:e0:d2:c6:8b:74:f8:e5:6f:00:53:65:08:70:89:f1:
60:33:af:7c:35:ab:e0:e0:a7:95:2d:db:8c:7f:72:c9:d7:6c:
f1:0c:ef:0d:79:11:e5:d4:f7:96:d5:38:2f:a0:93:62:64:1e:
92:33:23:4f:34:59:f5:db:39:00:98:35:66:94:f7:6e:86:30:
cb:14:85:55:74:c9:83:10:64:c0:62:83:71:73:06:a4:ec:1b:
da:ad:2d:fd:b4:f4:b6:c2:f7:20:6d:9d:dc:52:f3:2b:fa:49:
db:06:f8:4e:12:3f:90:db:29:31:5d:1e:ff:1f:00:91:ee:1c:
43:5c:94:6f:db:4e:19:df:1e:14:98:f1:1a:6f:19:35:f6:48:
15:cd:72:38:a8:0c:c0:75:43:cd:8c:25:25:4d:0d:5f:52:ea:
64:36:46:84:ab:22:c4:37:ec:99:66:ed:1d:df:d9:7f:00:f2:
3e:af:01:78:e3:c9:7f:b1:15:98:94:4f:d1:f3:4c:84:e0:18:
02:2e:9c:4c:ca:d6:38:64:48:ab:13:c1:9c:b4:13:16:90:06:
99:37:43:df:65:fc:1a:16:ae:21:b1:4e:5e:50:3e:19:6f:69:
71:46:f9:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org