Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/E9VH0tUD2y0hWDjHAUYp0ExXAVw.roa
File: E9VH0tUD2y0hWDjHAUYp0ExXAVw.roa (raw, json)
Hash identifier: 1stsC3CgozTUz1GnpdFeY3XoWMXcLwV0cYG0Umw3V0U=
Subject key identifier: 13:D5:47:D2:D5:03:DB:2D:21:58:38:C7:01:46:29:D0:4C:57:01:5C
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0819
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/E9VH0tUD2y0hWDjHAUYp0ExXAVw.roa
Signing time: Tue 29 Sep 2020 09:58:20 +0000
ROA not before: Tue 29 Sep 2020 09:58:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 220.129.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2073 (0x819)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:20 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=13D547D2D503DB2D215838C7014629D04C57015C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d5:3d:df:15:58:c7:23:aa:75:14:a9:fd:11:
19:cc:2b:a6:a2:98:70:f6:25:ae:a4:9f:f5:19:f6:
f8:41:e1:28:af:4a:dc:4c:5e:b9:91:97:e3:de:a4:
67:d1:be:8c:f1:ab:85:ee:1c:a1:dd:47:fa:7e:43:
2b:05:c3:78:f2:31:a9:5b:6b:2e:d9:1c:0d:1c:f3:
9f:8a:9a:18:3c:1f:af:86:7b:94:53:46:24:a0:50:
2a:8b:de:41:ca:a7:35:49:b6:ce:a2:87:08:6c:4f:
15:dd:73:27:e8:54:17:04:a3:1f:7b:df:95:89:65:
0b:f6:e2:49:db:30:d7:bc:8d:61:ec:14:cf:2a:5a:
67:9d:ed:9c:c6:87:62:65:6e:54:9a:b5:3f:0b:27:
27:ea:fa:a9:8c:94:30:3d:aa:1d:72:d3:b6:fd:d7:
e1:2b:34:74:e2:a4:67:39:be:9c:df:33:03:0b:b1:
15:cd:1c:40:db:39:c8:b2:f4:fb:26:ce:f9:29:d4:
1b:98:36:81:c5:e0:fc:c1:79:a1:db:f9:36:8f:52:
15:ff:d1:1e:b9:d9:1f:b2:33:22:58:86:d3:57:29:
8b:77:f4:b7:b1:d9:48:8f:dd:7a:be:98:dd:ab:35:
67:7e:65:ba:46:b3:8f:c6:1b:a1:b8:35:2b:07:76:
1d:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:D5:47:D2:D5:03:DB:2D:21:58:38:C7:01:46:29:D0:4C:57:01:5C
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/E9VH0tUD2y0hWDjHAUYp0ExXAVw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.129.0.0/16
Signature Algorithm: sha256WithRSAEncryption
29:cc:9b:73:a3:98:c4:0f:13:ba:81:87:7b:cf:d8:d4:eb:65:
4b:77:64:3c:e9:1c:f0:5f:8a:de:a6:65:df:7f:c2:db:9a:57:
af:1b:83:af:d3:fa:90:95:74:a8:4f:22:25:e5:91:17:66:11:
a7:c0:e7:2a:f6:a8:a0:58:e4:a4:d7:50:50:e8:0f:d9:45:89:
7d:f0:b2:bd:10:11:95:e3:f8:35:04:3f:b9:a5:e1:7f:43:9c:
ae:9f:f1:7e:04:69:5f:2a:2f:70:e8:55:5d:cd:4c:f0:93:ab:
c3:cf:e9:9c:e9:59:1f:50:07:7e:e8:b3:44:7d:39:51:0a:b3:
3e:4d:85:17:d9:fe:0e:e3:b0:c5:f0:53:03:a6:f4:fa:81:3b:
d6:1c:7c:ad:3e:22:81:e5:a2:5e:b7:eb:21:2d:b8:02:97:03:
0a:40:a5:8d:bc:cd:09:dd:3f:af:95:68:4f:ed:70:97:8c:df:
c0:8d:c4:e2:f1:a5:80:37:da:68:64:d7:0a:ff:35:e4:60:c9:
6e:20:34:a6:5e:2f:1b:5a:96:8e:64:68:d1:5a:17:fc:90:fc:
2f:7f:d8:ba:6c:99:d1:66:93:40:e8:36:75:ad:82:d5:0f:c7:
f4:59:74:98:f1:e7:48:b6:ee:18:23:2f:e3:36:1a:0c:0c:bc:
c2:7d:ab:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org