Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/quGDKVH5OxSmCyoTyOVFzkpOCoA.roa
File: quGDKVH5OxSmCyoTyOVFzkpOCoA.roa (raw, json)
Hash identifier: n1HNmA5ipeJvZ7h3VV2GGvI2q7V1Udovf2V81uENq3A=
Subject key identifier: AA:E1:83:29:51:F9:3B:14:A6:0B:2A:13:C8:E5:45:CE:4A:4E:0A:80
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0ABB
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/quGDKVH5OxSmCyoTyOVFzkpOCoA.roa
Signing time: Sun 07 Feb 2021 11:38:54 +0000
ROA not before: Sun 07 Feb 2021 11:38:54 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 220.129.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2747 (0xabb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:54 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=AAE1832951F93B14A60B2A13C8E545CE4A4E0A80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:5b:51:ba:04:a3:f7:e2:a5:72:f9:a6:c6:d9:
09:1b:16:3a:d8:6b:e3:be:2d:b0:b4:c2:29:a1:a7:
8b:fa:7c:e5:8a:ed:b7:54:61:f7:36:88:be:2f:c8:
c9:73:4f:19:1e:81:9c:bd:9d:7a:b9:9b:c5:ac:b4:
02:72:a9:08:a1:c0:73:a4:39:d3:08:32:f4:58:4c:
53:3f:af:5d:ca:43:5f:b0:a3:0e:91:c7:59:34:9a:
d7:f8:df:b5:b8:bb:95:e1:5f:69:56:bf:a9:90:f1:
2a:28:1c:59:2f:c1:c0:32:a7:2c:66:9d:69:16:8c:
e8:69:5c:65:ef:24:a2:68:dd:c1:2a:fe:a9:09:27:
18:5e:79:7d:73:20:a7:fb:2c:8b:7d:fa:21:98:c0:
42:cb:0e:fe:70:b1:d0:0b:7d:b0:c9:74:b3:1d:1b:
59:d5:d1:ea:a2:93:8e:82:35:53:52:23:8e:9d:d3:
63:8d:a5:74:1c:c1:7b:18:5b:43:19:3f:2d:5e:75:
d8:c1:bb:b8:bf:37:e1:7a:1f:55:bc:40:1a:4d:62:
1a:40:06:58:e5:41:ab:47:68:ed:98:0a:6a:3f:67:
6e:d6:25:7e:23:2c:8c:b2:40:82:09:c5:ba:85:59:
98:6b:2a:12:db:9b:16:1d:75:a3:63:c7:8b:ed:5b:
b9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E1:83:29:51:F9:3B:14:A6:0B:2A:13:C8:E5:45:CE:4A:4E:0A:80
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/quGDKVH5OxSmCyoTyOVFzkpOCoA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.129.0.0/16
Signature Algorithm: sha256WithRSAEncryption
12:55:7f:4b:39:67:a5:19:cf:d2:4e:10:c8:06:cf:5d:fb:be:
91:67:28:f6:4d:74:64:10:27:03:e8:92:3b:ea:83:36:bd:e0:
1d:ab:35:00:22:8b:74:5d:98:64:d6:58:c8:9b:27:b3:e0:80:
c6:2a:f9:23:c6:d3:36:62:30:62:af:bc:59:78:6b:c5:7d:fd:
5f:ec:2b:11:24:66:6c:7b:05:39:37:70:68:de:24:f1:12:6f:
55:09:1e:a0:20:50:62:b0:6f:4f:89:66:61:f0:6c:ab:ca:dc:
d4:1e:1e:1d:b3:30:f4:67:db:2b:34:90:20:15:78:8a:5c:b6:
28:fe:94:74:b1:15:49:cf:ac:a1:af:4f:e4:4e:39:9f:89:5a:
40:d9:e8:79:b9:24:b3:36:09:82:91:01:b1:2b:c8:37:22:be:
19:ee:4c:4a:58:9a:82:f3:57:4b:8a:e5:91:3b:83:ab:f8:ca:
c5:a2:46:ac:c8:ec:eb:2e:27:40:13:04:a8:f1:c2:67:4b:ef:
54:d8:1c:98:5f:24:ef:86:2d:76:16:9d:6d:63:1a:29:b7:10:
80:91:14:6c:f5:03:00:bd:9d:f6:eb:84:a7:f7:b8:84:4a:dc:
19:48:d3:65:0d:d5:3c:76:47:c8:50:3a:ee:18:2a:bb:7d:d2:
39:56:97:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org