Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/wdIlUYUf8HDPHGoWajhoBzZg2Z4.roa
File: wdIlUYUf8HDPHGoWajhoBzZg2Z4.roa (raw, json)
Hash identifier: LsMrFe0F3mz4Ob6zF/OJpiUJ4tiC39pblyW0CYNw6u4=
Subject key identifier: C1:D2:25:51:85:1F:F0:70:CF:1C:6A:16:6A:38:68:07:36:60:D9:9E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C92
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/wdIlUYUf8HDPHGoWajhoBzZg2Z4.roa
Signing time: Mon 25 Oct 2021 04:01:07 +0000
ROA not before: Mon 25 Oct 2021 04:01:07 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 220.128.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3218 (0xc92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Oct 25 04:01:07 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=C1D22551851FF070CF1C6A166A3868073660D99E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f9:9b:a6:0d:7d:87:5d:92:71:45:17:e4:d0:
5d:2f:18:24:59:1c:22:02:53:ae:52:48:7a:4c:90:
86:f5:dd:e9:da:2a:28:3d:b4:48:67:ee:22:54:3e:
bc:a8:e5:fd:bd:f0:13:2f:f0:a2:38:c2:8b:ac:be:
1c:d6:cf:76:49:7b:46:98:30:3a:1e:a0:36:c7:2d:
68:cb:1e:b1:c7:e4:e4:f3:f7:07:c9:59:d4:a1:3c:
9b:c8:55:07:ba:a9:2a:7d:a8:19:4c:6d:65:95:b6:
8b:ae:47:8b:6a:c4:f0:68:f7:d7:b6:21:7b:cc:20:
4a:ed:22:ec:4f:03:66:ba:d9:d0:60:9b:d4:f4:2c:
87:ee:6b:cd:06:5c:9f:f2:3d:fe:ae:e3:10:4f:fd:
78:09:42:f1:51:7d:ed:d9:80:94:43:17:06:f0:bc:
76:67:a2:5c:e6:52:48:a7:28:39:de:6c:3f:b7:b8:
32:c8:ee:01:52:e8:07:f6:49:28:f7:1d:61:0c:f3:
3f:c7:e8:7c:86:6b:d0:f0:42:1a:0d:94:4a:f7:68:
64:a7:c8:67:e2:5a:ba:9e:c5:86:25:c4:43:cd:b7:
88:20:e2:ce:5d:63:2b:a0:b4:cc:b5:0a:91:11:1c:
92:59:e9:5c:8b:93:53:8f:4e:69:46:d8:a8:e8:7b:
0e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:D2:25:51:85:1F:F0:70:CF:1C:6A:16:6A:38:68:07:36:60:D9:9E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/wdIlUYUf8HDPHGoWajhoBzZg2Z4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.79.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:83:d5:93:28:ff:81:4c:16:08:c0:49:1e:a7:4a:88:c8:ea:
10:2c:83:76:1a:1c:d0:4a:f8:71:d9:06:b7:fb:f5:60:ec:18:
2b:fb:f1:7c:b8:95:7a:11:06:d7:fe:9a:2e:62:c8:e9:fd:40:
4e:c1:7f:cf:70:64:4c:2d:ef:0a:7b:74:3f:4b:46:f7:94:43:
b1:45:c2:8c:dd:f4:d2:e1:66:dd:28:d3:0b:16:9f:1d:fb:65:
e3:60:57:9a:a9:a4:af:5d:6f:ab:74:2d:a2:cd:73:cb:c8:d6:
46:32:d1:25:34:4d:2c:74:3e:a8:9d:34:fd:0e:d9:e6:b5:f1:
58:87:75:9e:ec:8e:38:b6:9c:d9:6a:68:60:56:16:a0:60:7c:
61:be:62:79:4a:30:cd:76:26:69:6f:aa:eb:24:85:21:ef:96:
fb:93:e0:63:64:4c:77:46:5e:4d:86:31:58:05:6c:60:a6:04:
56:ac:7e:a9:87:81:c2:f4:94:f1:1b:27:b0:7c:83:14:6c:b9:
59:34:d1:16:67:8f:6b:ec:56:c6:cb:ce:96:9f:f4:cd:d9:3f:
87:74:32:32:ef:52:ac:f8:d9:f6:c3:6a:4e:bb:2f:29:89:1a:
68:03:91:b5:e1:1d:f8:ed:92:e5:b1:bc:18:25:9f:7f:f2:fa:
24:90:fe:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org