Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/pZNIQ0w61s536J8Nyqa_OoSJsHE.roa
File: pZNIQ0w61s536J8Nyqa_OoSJsHE.roa (raw, json)
Hash identifier: eovAlYe0wOckG3x6Ro/lzbNb9OD9I+IUoxsxDfV55Ws=
Subject key identifier: A5:93:48:43:4C:3A:D6:CE:77:E8:9F:0D:CA:A6:BF:3A:84:89:B0:71
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C30
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pZNIQ0w61s536J8Nyqa_OoSJsHE.roa
Signing time: Wed 29 Sep 2021 02:50:59 +0000
ROA not before: Wed 29 Sep 2021 02:50:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 220.130.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3120 (0xc30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A59348434C3AD6CE77E89F0DCAA6BF3A8489B071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f1:93:7a:04:34:42:93:97:47:11:d0:80:73:
f6:15:a0:9b:1c:04:18:79:ec:ec:a1:30:6f:9b:86:
4f:71:b1:76:d8:a5:48:44:40:41:2c:04:b9:e1:7a:
d7:12:94:08:63:d7:16:75:f9:0d:fa:39:43:a7:99:
53:96:78:d5:41:34:aa:f3:a7:9e:0f:ec:38:00:4d:
d4:8d:fb:95:74:5c:9a:27:bb:68:64:be:e4:c7:6b:
ed:5d:3d:73:cd:ab:62:5d:90:3d:51:e7:34:61:a0:
19:70:8b:88:b0:c9:4c:2b:3e:69:eb:f4:3d:06:dd:
3e:0e:06:b2:40:e9:59:17:d0:38:90:58:96:67:d2:
8d:b8:f8:75:48:32:37:07:1b:47:8c:6e:cc:2c:19:
ec:59:d5:90:79:b4:6e:90:98:68:b2:7b:21:eb:8c:
f3:45:9e:91:e2:23:53:8a:e2:0e:b3:c3:4e:90:40:
02:29:2e:d8:21:d5:64:4f:70:b4:c6:2f:be:db:d5:
49:8b:03:ab:e6:c2:0c:58:2d:22:ce:46:6d:2a:58:
fd:0f:32:f9:2f:fb:b1:24:e5:5a:46:62:bf:3a:41:
dd:9c:5d:c4:c2:e4:77:25:95:a3:d5:1b:ce:39:62:
47:57:89:4a:9f:f0:f8:33:af:c7:d9:0d:2a:c2:72:
9b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:93:48:43:4C:3A:D6:CE:77:E8:9F:0D:CA:A6:BF:3A:84:89:B0:71
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pZNIQ0w61s536J8Nyqa_OoSJsHE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.130.0.0/15
Signature Algorithm: sha256WithRSAEncryption
26:2c:d5:34:80:80:d7:03:35:8c:b7:f2:72:fc:d4:e5:38:72:
58:5a:23:e0:04:57:03:48:dd:60:12:f7:8b:df:9c:f0:4a:94:
f6:4d:f4:17:66:5e:c6:84:72:8a:d3:79:d3:f8:72:a2:e6:6a:
98:48:31:a7:b6:c9:eb:6a:1f:a7:3f:e9:f7:7a:e3:f6:ea:93:
bc:c7:8e:9c:3e:f1:a4:dc:d0:16:4c:9b:94:4a:ae:4c:8b:7a:
f9:fe:5c:0d:8f:08:c6:da:09:7e:3c:b3:1d:23:58:f6:c9:30:
56:9f:ef:e9:1f:cd:09:18:45:31:84:d0:dd:b8:8b:1e:c2:72:
d5:df:ff:eb:66:9a:6b:d3:f1:d4:27:52:b4:53:1e:b4:18:a6:
7e:6b:b9:49:8c:5d:9f:d9:06:8f:1b:33:7f:84:3d:02:9a:03:
28:ba:62:92:15:69:4d:aa:75:4e:32:f9:3a:7d:e0:42:0f:08:
b9:4b:e0:31:ba:df:b6:f5:99:57:47:ee:f9:af:a0:11:c2:bc:
18:f6:64:a9:96:46:dd:fd:8f:f8:1b:cb:3a:e7:b7:ec:1b:89:
e0:bb:16:d8:07:24:70:10:12:a8:1d:27:cd:11:7e:0b:1e:7f:
5f:2b:40:ad:61:64:91:06:6a:5f:75:21:d1:e3:63:de:21:f9:
41:da:cb:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org