Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/X_IXMNi_Z-CQqZDkk8g3KjVHkIU.roa
File: X_IXMNi_Z-CQqZDkk8g3KjVHkIU.roa (raw, json)
Hash identifier: 0xrdi8MUmGeluexZSRWVy/vZqKIei5SujLW84N8Aizg=
Subject key identifier: 5F:F2:17:30:D8:BF:67:E0:90:A9:90:E4:93:C8:37:2A:35:47:90:85
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0807
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/X_IXMNi_Z-CQqZDkk8g3KjVHkIU.roa
Signing time: Tue 29 Sep 2020 09:58:14 +0000
ROA not before: Tue 29 Sep 2020 09:58:14 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 220.128.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2055 (0x807)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:14 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5FF21730D8BF67E090A990E493C8372A35479085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f9:5b:d6:23:e2:5f:65:0d:80:eb:1f:83:12:
15:f5:86:cf:0b:e2:b4:ee:0d:ea:75:c3:cf:e9:d4:
78:a7:c8:b3:fa:cc:ab:8e:75:97:bb:c5:46:c6:6b:
50:9d:10:7c:c1:5e:dc:d0:8b:0f:8d:72:80:96:8a:
f2:a6:e2:0a:a3:60:0d:17:ff:aa:76:e3:67:58:ad:
95:a5:16:cf:4b:81:ba:61:08:e1:e4:16:ab:2a:d2:
00:1f:71:4a:f7:e7:ea:c3:3a:66:fa:4e:ed:72:44:
c0:dc:c1:e5:37:c0:9b:e0:b4:2c:ef:9e:40:5a:51:
6d:da:aa:ca:00:86:fc:26:27:dd:58:82:36:bb:3f:
1f:ef:2a:c7:7d:a0:13:6b:57:28:76:fe:4d:06:0c:
95:2c:c3:59:5e:43:32:c7:f3:e6:46:b3:8d:a3:2c:
13:a1:9c:68:43:1e:d1:55:61:0f:de:b8:86:50:13:
dc:0b:29:e5:a8:83:1d:d4:b1:72:a5:02:ff:99:9e:
c4:ab:77:5a:4a:15:79:af:e5:76:d2:08:68:71:e8:
3c:b1:9d:07:14:8b:21:a0:a3:6d:d9:a6:22:21:c0:
12:3c:f3:17:14:c9:84:0e:ac:59:55:b2:b2:74:a8:
88:d7:c2:e2:88:3c:17:43:0b:bf:d4:4b:c2:b1:ef:
f1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:F2:17:30:D8:BF:67:E0:90:A9:90:E4:93:C8:37:2A:35:47:90:85
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/X_IXMNi_Z-CQqZDkk8g3KjVHkIU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.0.0/18
Signature Algorithm: sha256WithRSAEncryption
88:75:92:15:37:32:ef:c1:02:db:3e:fb:4a:71:da:01:5d:ba:
f0:c8:20:59:66:87:b4:69:24:59:98:40:33:90:c1:b8:dd:f0:
e9:9a:f6:35:71:a7:d9:c5:a7:87:d3:f5:a5:b2:11:93:95:cd:
91:7e:4d:5b:89:a8:36:b9:8b:a7:a3:3a:d0:93:ef:61:8d:dd:
1a:8e:4a:3b:67:7c:38:fa:97:69:04:cc:98:bf:d2:b9:fd:04:
f5:9e:11:0d:32:34:d4:7c:c9:c2:08:c3:f9:77:07:b7:5b:76:
a3:91:69:b1:93:4f:a4:94:83:1e:07:32:d2:97:83:1c:9d:bc:
38:1b:18:4e:68:23:cd:cf:c2:ab:af:3b:83:40:cf:25:47:23:
dc:b7:98:5b:c3:26:3f:48:23:81:56:91:0a:f0:99:82:d2:56:
82:88:eb:c4:93:7c:d3:ec:8a:2a:0e:96:4d:9d:dc:b4:8e:16:
f7:bd:c0:d1:78:6d:30:6a:a4:52:28:d9:5f:14:eb:20:93:83:
58:5d:a8:07:70:fe:31:fe:ed:7c:07:24:b1:ae:f5:59:f4:00:
99:48:de:34:0c:61:c0:e9:e6:2d:c3:00:cd:db:8c:a8:78:14:
ce:90:22:a4:c1:bb:d4:2d:ff:02:90:81:ff:a9:65:52:f2:51:
26:6e:1f:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org