Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/abq_MUZyO8l7vqsSXjh-0WLt4_8.roa
File: abq_MUZyO8l7vqsSXjh-0WLt4_8.roa (raw, json)
Hash identifier: K5pVPqvOUgZ+gg43z03k1nbKbybpgV06/Mtg3/jxras=
Subject key identifier: 69:BA:BF:31:46:72:3B:C9:7B:BE:AB:12:5E:38:7E:D1:62:ED:E3:FF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/abq_MUZyO8l7vqsSXjh-0WLt4_8.roa
Signing time: Thu 15 Sep 2022 02:48:15 +0000
ROA not before: Thu 15 Sep 2022 02:48:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 220.128.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=69BABF3146723BC97BBEAB125E387ED162EDE3FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fc:b2:9b:a6:ad:18:a6:7b:bb:88:e8:b6:18:
6b:fb:2b:82:6f:43:95:71:ec:ab:c7:ae:a7:f5:85:
d4:b4:89:e0:1a:8c:92:8b:d6:73:c9:93:4e:43:e1:
7a:01:2a:87:a0:19:c7:f9:81:24:4a:4f:7a:3b:a7:
ca:c8:13:f4:ad:15:78:38:ac:36:9d:e7:8c:30:b7:
34:44:f3:e6:4d:7e:bc:6b:70:d8:35:b0:14:bd:25:
33:f7:ae:19:41:ff:28:b9:bd:87:fb:e9:6d:cb:91:
3d:89:34:b2:dc:41:1c:36:5b:9c:8f:71:12:89:57:
58:85:9f:3e:20:ff:19:22:39:8c:72:d3:c0:2b:20:
0d:2d:f2:70:12:31:16:9e:09:46:8c:37:48:2e:d0:
45:ba:d7:12:e2:ac:3d:19:34:dc:39:81:1f:37:8d:
c0:8f:1c:72:0d:0c:98:2e:a3:8d:36:15:c3:c8:60:
27:45:c3:98:1d:33:23:75:41:af:47:46:f8:85:5d:
df:42:ef:dd:47:96:9b:38:03:14:d6:cd:f5:7a:3a:
cd:a3:fd:41:dc:8a:19:c5:08:3a:83:32:75:e2:59:
0e:52:f6:fe:32:42:9c:e4:d9:db:2b:ea:d8:45:69:
10:26:3c:96:15:52:55:fc:cf:29:4b:b2:07:c2:10:
ab:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:BA:BF:31:46:72:3B:C9:7B:BE:AB:12:5E:38:7E:D1:62:ED:E3:FF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/abq_MUZyO8l7vqsSXjh-0WLt4_8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.61.0/24
Signature Algorithm: sha256WithRSAEncryption
19:b7:fb:28:c4:59:1c:c1:2d:54:a3:ac:c1:69:c1:61:0a:f4:
36:fa:3f:69:da:98:c4:4b:6b:6f:38:34:fa:b2:76:85:b3:ab:
9f:6e:7a:7c:25:8c:23:ed:0f:34:b3:06:42:26:fb:7a:83:0f:
55:e5:fe:74:a4:b3:4f:96:69:89:7f:51:3b:d8:70:62:a0:5d:
33:e8:a0:af:a6:70:ac:23:c9:45:d8:0f:52:25:53:70:99:63:
de:00:e4:33:de:0c:6c:2d:a6:8d:76:09:bf:f2:ef:87:06:25:
d0:1b:92:ee:a3:24:c5:c8:4a:c8:15:e6:e0:74:01:df:70:c4:
95:29:60:da:e7:09:db:65:80:c2:1f:d7:af:43:78:cc:2a:6a:
fe:ff:fe:0d:b5:3e:12:34:8d:a4:67:10:3b:fd:ce:19:ab:74:
4a:95:79:14:3d:3e:87:29:79:9f:e6:b9:be:df:14:0a:6f:e8:
a5:bf:42:75:bc:9d:0c:b9:ee:7c:cc:1a:90:b2:01:70:1c:17:
c7:71:2b:45:1c:5e:f8:0e:95:21:de:92:89:74:1d:2d:7e:79:
26:cf:f0:0d:f3:78:33:23:d3:86:f6:ee:73:98:b4:84:e0:09:
39:cb:a3:fd:de:2e:86:04:c1:63:4a:1f:25:5f:c6:c1:29:45:
55:d2:78:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org