Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/HeO-8rxiKreicaI6zowCzI4ggU0.roa
File: HeO-8rxiKreicaI6zowCzI4ggU0.roa (raw, json)
Hash identifier: 1/T9gbcwPtnzlIspljUBXnZbgOagxhz9G2GzHcBVrDU=
Subject key identifier: 1D:E3:BE:F2:BC:62:2A:B7:A2:71:A2:3A:CE:8C:02:CC:8E:20:81:4D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HeO-8rxiKreicaI6zowCzI4ggU0.roa
Signing time: Thu 15 Sep 2022 02:48:10 +0000
ROA not before: Thu 15 Sep 2022 02:48:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 61.220.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:10 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1DE3BEF2BC622AB7A271A23ACE8C02CC8E20814D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:27:25:76:41:12:37:9a:b6:ce:a2:39:3c:c7:
43:ef:3b:08:71:e4:04:6c:6a:a1:1f:82:9f:26:cf:
46:79:47:0a:d7:89:cc:9b:2a:b7:64:20:31:1e:33:
ec:02:69:14:e4:e8:cd:d8:5b:e6:0e:3a:bc:4a:8c:
61:86:fc:29:51:43:c9:69:b6:a9:ba:e3:94:67:b4:
fc:a9:bb:c1:0f:ec:46:00:5c:0b:f5:2b:68:a1:d8:
98:54:fc:50:d5:2b:0e:6c:84:66:2e:b9:8e:3f:a2:
86:0f:fd:ff:dd:5e:d1:b4:c8:bb:5e:ec:de:ad:af:
c6:6d:03:8c:97:e4:22:67:7c:05:d2:9e:17:8e:b4:
23:86:95:83:f7:26:53:29:33:c1:20:68:b2:7e:2f:
da:c3:07:d2:2e:c2:e2:44:cd:7f:08:24:59:ae:d3:
a2:ef:36:97:7f:79:5b:41:66:3b:12:62:85:f1:d0:
ce:73:e4:0d:f0:ce:03:97:e1:8f:91:ab:6c:c8:1b:
9d:c1:0e:28:e0:7e:50:dc:ff:df:15:d1:2f:ea:29:
5b:a1:b0:3a:d0:d8:fc:f6:0c:d4:85:a7:d6:65:1f:
ea:45:8a:bf:28:89:a7:02:83:87:d6:7c:66:4c:f9:
92:aa:de:d8:79:a5:b8:21:28:e1:e5:7c:ac:d4:e1:
ab:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E3:BE:F2:BC:62:2A:B7:A2:71:A2:3A:CE:8C:02:CC:8E:20:81:4D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HeO-8rxiKreicaI6zowCzI4ggU0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.220.0.0/14
Signature Algorithm: sha256WithRSAEncryption
9d:02:7b:88:a9:1e:f4:70:b4:0d:d7:73:91:6f:0c:97:17:ab:
9c:d0:f8:89:79:1c:23:a3:2a:02:7c:36:2d:24:4c:2d:73:da:
26:6c:06:fd:df:f2:de:bd:42:64:b4:5f:79:58:a1:77:41:86:
04:a0:6b:13:a0:1b:62:53:62:ba:d0:1b:22:9e:1e:0a:c2:5c:
dc:cd:77:0b:e4:10:ac:b9:83:97:69:83:c9:27:c0:54:6c:f7:
52:b9:ea:3a:b3:45:8f:5c:1c:f9:9a:d0:d1:e8:8e:e6:45:b2:
b3:ce:55:51:ee:3a:19:ed:7b:f2:e8:95:0e:48:d6:b7:45:5f:
5d:0c:82:a0:2d:46:0e:d1:f7:1f:f0:fc:b1:e5:d5:d7:68:ab:
b8:9d:31:c2:6f:f2:da:7a:0c:2a:3b:7d:31:53:a8:fb:4f:4b:
f4:2e:3a:4d:50:bf:8e:f2:30:4f:21:d8:3d:18:c6:b5:c0:25:
a7:18:2f:3b:dc:fc:eb:09:71:a6:e4:d3:f3:c3:22:85:0f:f2:
e0:c4:a4:ea:8a:25:dd:34:e9:25:4b:79:a5:39:e8:73:ff:3c:
53:bc:54:f9:3e:72:4b:4f:59:18:6f:65:19:83:2f:6d:f5:25:
63:3b:b8:96:59:20:10:f1:c1:bd:81:47:f7:d1:a9:ae:fa:81:
ff:79:21:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org