Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/uaO214RNwHeu2afmoLbA6s6UbH0.roa
File: uaO214RNwHeu2afmoLbA6s6UbH0.roa (raw, json)
Hash identifier: Y5oYGpsdFI1XuMEmUDHWAMDx6259a+upU6VZOMmd6Jw=
Subject key identifier: B9:A3:B6:D7:84:4D:C0:77:AE:D9:A7:E6:A0:B6:C0:EA:CE:94:6C:7D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AC1
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/uaO214RNwHeu2afmoLbA6s6UbH0.roa
Signing time: Sun 07 Feb 2021 11:38:59 +0000
ROA not before: Sun 07 Feb 2021 11:38:59 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 220.136.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2753 (0xac1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:59 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B9A3B6D7844DC077AED9A7E6A0B6C0EACE946C7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:ed:37:a2:82:3c:6e:89:3f:8b:92:55:b0:d5:
e9:c3:3d:2f:70:7d:fb:9e:3d:23:6f:3c:22:e4:ed:
38:5a:24:27:19:27:9b:2d:6d:e6:b6:ce:41:19:97:
a6:60:de:ba:9e:e6:33:5f:ac:06:d6:fa:33:fb:9b:
2c:63:95:cf:3d:b6:e0:0d:04:ac:08:4e:7d:11:ec:
ba:37:78:04:ee:8c:7a:2c:4e:9e:80:85:51:ef:68:
32:5b:fd:b2:5f:7c:27:b1:e6:f3:e3:ab:6c:66:6d:
cd:67:7e:91:f6:d2:3e:1f:a4:64:26:ff:44:ac:66:
94:1e:bb:5f:f4:f6:32:e8:f8:af:01:f5:70:91:89:
e3:53:54:f5:70:ed:dd:69:04:5b:97:f0:07:59:a2:
ce:a2:ba:7a:5b:1c:90:c9:15:29:3e:8e:d9:12:4b:
a8:86:b5:f3:2e:d6:df:4a:5d:29:02:f9:5c:1a:e3:
13:56:4e:52:a7:9f:64:de:d3:3e:fe:64:30:44:87:
ea:96:be:8b:62:d2:1f:47:2d:7e:d4:0a:d1:c3:d2:
9c:bf:bd:73:7d:b0:bb:90:55:64:e0:0d:b6:45:cc:
86:26:c9:32:57:f4:2c:d6:88:ed:d9:25:20:c3:19:
51:f8:cf:b7:48:ec:b9:d4:f5:a8:a0:54:f2:a4:e4:
5c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A3:B6:D7:84:4D:C0:77:AE:D9:A7:E6:A0:B6:C0:EA:CE:94:6C:7D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/uaO214RNwHeu2afmoLbA6s6UbH0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.136.0.0/13
Signature Algorithm: sha256WithRSAEncryption
12:6a:18:f2:c5:04:e2:78:93:66:62:ce:6e:75:ad:fa:e7:43:
48:52:d2:6b:0a:27:14:33:6b:18:ab:a8:39:57:9f:31:b0:db:
ed:6a:ec:fc:e9:ce:7a:7a:29:87:cb:09:1a:e1:0f:ec:a2:27:
be:60:0c:2b:ac:44:05:e9:84:0a:dd:7f:df:2f:a3:af:9a:9d:
84:3f:e1:37:02:2a:4d:91:3d:05:1f:3d:7f:63:3c:5f:b1:b4:
ef:63:58:2c:d5:7e:a3:c8:fb:56:d6:79:6d:48:72:fe:4f:5e:
21:e7:0c:c1:d0:50:cc:55:d1:da:23:12:5e:cf:08:6f:ee:f3:
00:01:2a:9d:b6:83:78:94:ee:11:2a:ce:a0:c7:ab:e7:ce:73:
22:b6:1a:c5:f2:4f:e5:dc:d6:30:57:51:48:72:9a:3a:dd:b4:
d4:b9:9a:ed:b9:6d:20:9b:7b:15:7a:e5:e6:e5:89:60:6d:64:
71:44:1a:9b:96:b0:52:95:17:f6:06:fc:94:ee:b8:5c:42:44:
76:8a:05:d0:4d:6a:67:b1:fe:81:15:cc:37:82:33:17:eb:37:
6e:dd:d5:26:5b:e3:db:c7:50:fe:ba:57:70:c3:22:76:6c:83:
1c:c5:d7:2e:a7:87:ce:be:a5:c5:b3:a1:f9:7c:c1:97:8e:fa:
46:21:25:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org