Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/VrtVUA7QTlO0wX-Co16FQ1LV1JM.roa
File: VrtVUA7QTlO0wX-Co16FQ1LV1JM.roa (raw, json)
Hash identifier: izxWwuLkWYTQ9g/e/uBxOJdVtgysTGKvvLEbXTr20xw=
Subject key identifier: 56:BB:55:50:0E:D0:4E:53:B4:C1:7F:82:A3:5E:85:43:52:D5:D4:93
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/VrtVUA7QTlO0wX-Co16FQ1LV1JM.roa
Signing time: Thu 15 Sep 2022 02:48:29 +0000
ROA not before: Thu 15 Sep 2022 02:48:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 221.120.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:29 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=56BB55500ED04E53B4C17F82A35E854352D5D493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:98:d6:c9:cd:32:be:1b:f6:d6:16:f8:4f:4d:
19:fd:54:e8:88:9c:9b:82:5f:fc:a3:2f:8e:e9:36:
de:a3:b9:6f:75:a8:01:08:a5:69:a9:fe:b5:59:c0:
c1:0f:41:04:b3:6c:cd:c3:17:58:33:39:8d:b9:6e:
de:64:1a:1d:e6:ae:0c:f4:1f:eb:f0:77:0d:9a:b6:
aa:70:f4:a0:d9:e9:7d:af:16:dd:6b:47:56:da:30:
a0:3b:03:3b:28:81:82:d0:1b:58:dc:f0:ab:96:96:
e8:0e:a9:d8:bf:4a:47:d1:8f:00:4f:c6:15:ba:5b:
14:0d:6c:ae:1f:45:ac:48:c4:da:3a:e7:8f:0a:b9:
11:d2:85:3c:da:a1:6c:6a:0d:e3:e3:88:09:4d:e4:
86:5c:ea:6b:a2:b2:60:51:a6:83:6d:71:33:f0:9e:
49:82:c1:05:62:31:af:2e:d4:b8:06:00:81:29:cf:
64:22:89:30:7d:12:02:2b:c8:a2:82:a8:4a:c8:a8:
c8:84:58:7a:17:12:34:73:ee:c6:10:9b:6e:b4:31:
24:01:0a:38:13:bf:5f:0d:d9:b1:bc:15:7d:7b:5d:
71:74:90:f1:80:d3:ea:aa:f5:e5:f4:43:cd:83:0c:
2c:bf:9b:11:2e:f5:7a:d5:f4:83:8d:ab:ab:89:ca:
70:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:BB:55:50:0E:D0:4E:53:B4:C1:7F:82:A3:5E:85:43:52:D5:D4:93
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/VrtVUA7QTlO0wX-Co16FQ1LV1JM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
221.120.25.0/24
Signature Algorithm: sha256WithRSAEncryption
49:25:cb:35:1a:3c:50:74:6a:4a:bb:e4:fe:d3:82:3d:6e:57:
cf:bd:4f:d3:16:fc:f1:49:83:3c:2e:07:bf:7d:db:b9:3b:ca:
73:97:49:f9:c5:51:2f:6f:d7:b5:31:0f:f6:0f:b3:a7:fa:8b:
c8:af:76:35:0b:f5:0d:64:fd:fc:b2:08:8e:68:c6:da:c8:34:
db:87:85:17:b0:39:14:91:fd:2e:4a:37:f2:ec:b8:f8:25:4a:
87:69:29:7d:da:6e:81:b5:10:7f:2e:aa:ba:d5:e0:0c:7d:33:
59:3b:ff:f8:a7:c6:65:43:6e:df:64:50:1a:70:bd:96:d1:1a:
e7:d7:a2:80:f0:a6:68:f6:79:8c:65:d1:29:b8:d7:4b:81:bd:
51:ab:a9:62:78:24:f2:d0:4f:31:51:ae:4d:ca:ab:f7:fd:65:
cf:14:4c:41:92:53:a0:33:0b:a5:1d:5b:0f:d0:94:ed:db:68:
21:a2:50:29:b6:97:bd:b0:98:5c:99:06:88:43:e2:69:d1:01:
8e:06:fc:6d:00:63:6f:96:56:ee:d2:23:c3:5a:39:9b:cc:bb:
9f:0f:f0:a5:23:ab:e9:1c:6c:65:dc:62:8d:c2:6d:05:03:5e:
56:65:69:a7:2f:7b:89:a2:4c:cd:3d:0d:ea:24:d3:aa:b4:f4:
c1:1c:26:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org