Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/cyC4UuzRZLd9eKkfsLH0iKC1S8s.roa
File: cyC4UuzRZLd9eKkfsLH0iKC1S8s.roa (raw, json)
Hash identifier: kDOtTHKP7/xesUmzaug8TolwN+HZ/afn6Zhvc58VSrE=
Subject key identifier: 73:20:B8:52:EC:D1:64:B7:7D:78:A9:1F:B0:B1:F4:88:A0:B5:4B:CB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0ABD
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cyC4UuzRZLd9eKkfsLH0iKC1S8s.roa
Signing time: Sun 07 Feb 2021 11:38:56 +0000
ROA not before: Sun 07 Feb 2021 11:38:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 220.130.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2749 (0xabd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:56 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7320B852ECD164B77D78A91FB0B1F488A0B54BCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:41:a6:77:c1:e5:9f:a3:56:53:74:91:a0:a9:
79:64:9c:11:6c:aa:1a:67:45:b4:dc:36:46:51:73:
ba:5d:c3:0b:c2:bd:8c:07:3c:c5:8f:78:20:33:a7:
0b:0d:d3:af:7f:b3:a7:1e:8c:0b:15:30:26:1a:73:
88:14:7a:8f:e4:0c:b6:d6:66:02:40:fe:80:89:c3:
63:45:04:d2:c1:e0:d6:72:9d:93:93:df:bc:01:af:
91:9b:77:21:f4:0c:10:b4:00:f8:1e:da:d7:98:76:
d0:0f:3e:18:0a:71:e5:02:e4:88:b1:ca:f8:fb:cb:
11:8a:41:44:8b:73:ca:eb:ff:c3:4a:b6:0d:61:ca:
e2:23:eb:00:c0:a4:c2:29:06:08:a4:34:51:78:64:
ef:ae:e1:7a:7a:e9:6d:d5:c5:61:f9:d7:79:10:d0:
d6:34:37:bd:98:9b:b7:bc:75:c9:17:ab:a8:91:65:
65:7a:c5:fd:d6:f7:00:b9:d6:2d:b6:41:fb:d0:b0:
96:ab:bd:c7:35:76:90:12:53:f2:7c:62:13:97:d6:
b8:fa:cf:b5:69:09:3d:fa:1d:2d:7f:8d:be:47:c9:
42:bb:38:27:9e:88:25:85:b8:a0:6f:54:14:fe:f2:
8b:0f:d5:b2:19:04:78:3b:9f:44:34:0c:48:56:07:
e2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:20:B8:52:EC:D1:64:B7:7D:78:A9:1F:B0:B1:F4:88:A0:B5:4B:CB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cyC4UuzRZLd9eKkfsLH0iKC1S8s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.130.0.0/15
Signature Algorithm: sha256WithRSAEncryption
c9:05:16:15:81:2c:53:1d:e3:2b:68:44:b1:f7:a0:66:dc:3f:
32:ee:67:88:a3:1c:59:2f:09:f1:73:84:31:2e:44:ad:54:82:
9b:e1:12:e0:60:a5:3e:81:9c:db:3f:2f:2a:7e:2a:c4:fd:10:
20:98:f0:f5:36:ce:1b:f5:02:af:ad:9f:35:95:6c:eb:4d:58:
0b:86:b5:0b:f2:25:e2:e6:fd:0c:ef:7e:e9:7d:2c:99:97:64:
0b:ea:c0:49:d7:d6:57:03:f5:71:31:df:17:b9:2c:06:0d:f0:
38:a4:de:03:5c:cf:e3:ef:44:28:27:ab:29:f1:5b:b3:e3:68:
4e:b4:e5:c0:d6:3e:b2:58:e2:58:62:8c:56:98:73:94:7c:15:
bf:43:43:4c:79:fd:b3:79:db:6f:74:90:e6:f8:73:05:42:cc:
a0:d9:5a:d2:61:71:e3:30:d6:70:df:b7:3b:04:2c:d4:70:00:
f5:f7:da:1a:4f:7a:84:cf:b3:37:3e:23:48:f9:26:c2:39:fe:
81:10:6f:a1:e3:df:ef:a5:d6:cc:66:ba:9f:bb:f3:56:81:85:
b4:24:93:b4:e9:fc:5c:40:fc:4b:6a:7f:95:54:71:bb:28:20:
8d:56:3c:5b:4f:55:b3:05:25:8d:b1:77:e4:59:c3:53:ca:b1:
95:65:15:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org