Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/yJBZCNt4HW6UcsCQGfFq5Hp8Plw.roa
File: yJBZCNt4HW6UcsCQGfFq5Hp8Plw.roa (raw, json)
Hash identifier: AXLonanhXDktgV6BZxJMkzsGLRL48l0r4d75b6I2qjY=
Subject key identifier: C8:90:59:08:DB:78:1D:6E:94:72:C0:90:19:F1:6A:E4:7A:7C:3E:5C
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0842
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/yJBZCNt4HW6UcsCQGfFq5Hp8Plw.roa
Signing time: Tue 29 Sep 2020 09:58:31 +0000
ROA not before: Tue 29 Sep 2020 09:58:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 220.128.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2114 (0x842)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:31 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C8905908DB781D6E9472C09019F16AE47A7C3E5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e0:02:21:cd:58:55:8f:0e:67:14:c3:f9:60:
08:33:4b:76:04:2e:f2:4c:6f:f3:50:8b:27:5a:25:
1a:d2:0b:4d:aa:3e:af:34:74:8f:1e:26:2e:21:62:
d8:1a:1d:02:7f:e9:bf:63:6e:f4:95:19:85:95:6a:
7b:b7:a3:d5:e0:e9:cc:05:a0:af:db:d2:2a:ac:27:
88:4c:92:db:b5:b9:6e:b5:a3:a0:00:d4:cd:8a:07:
57:c2:c2:63:12:9a:25:28:18:4d:9b:e4:2c:1e:f5:
15:0e:46:33:13:e3:49:67:36:83:3d:1f:6c:bc:11:
50:d9:f7:9c:80:be:cc:86:66:77:f2:2c:12:b1:16:
16:c7:27:d8:7f:89:03:f9:ff:1f:bd:85:e4:5b:fa:
e9:22:a6:46:71:85:73:5b:fc:03:f9:af:03:48:d9:
ed:43:25:9d:ba:d1:99:2b:ea:b8:70:a9:44:62:2f:
4f:5b:ea:41:d5:11:3a:ca:6f:91:0b:58:2c:48:c0:
3d:cb:3c:03:12:7c:16:42:5e:fd:82:58:43:99:dc:
f6:a4:c1:f4:28:54:b3:9a:c7:cf:f9:48:2d:c3:06:
ec:6b:b4:75:d8:d6:15:e0:25:6f:69:ed:16:29:fe:
bc:d6:b9:78:7c:62:61:d4:95:56:41:a9:cb:84:2e:
d4:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:90:59:08:DB:78:1D:6E:94:72:C0:90:19:F1:6A:E4:7A:7C:3E:5C
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/yJBZCNt4HW6UcsCQGfFq5Hp8Plw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.64.0/18
Signature Algorithm: sha256WithRSAEncryption
aa:7d:e7:1e:84:88:5b:40:52:aa:1d:5d:89:2a:63:4b:21:89:
9e:74:35:da:4b:70:1b:69:3b:00:a5:45:16:bd:90:6f:d4:88:
da:c1:32:f7:24:67:c2:d0:e6:a4:2e:f6:a1:cb:5d:af:b0:7b:
cb:d9:d7:f5:bf:6c:11:5f:8f:93:ea:02:e5:69:31:49:9f:8e:
bd:0f:b0:06:fe:4a:84:57:66:14:9e:42:92:3c:51:af:15:15:
bc:33:5e:ae:06:6a:b6:9a:43:6a:d4:b5:21:c5:2c:39:29:8d:
0b:a7:0a:00:bc:79:54:43:49:71:15:66:c9:c5:dd:04:8d:62:
84:00:40:bd:22:4c:9b:54:37:97:31:73:b4:4c:fe:99:5c:45:
66:07:19:b0:ec:22:e1:03:c8:35:7c:49:a1:6b:e0:44:07:5b:
22:09:f1:da:39:90:2b:a8:1e:be:a3:3f:2b:ac:82:f7:f3:c6:
67:38:b0:da:9f:a9:01:0d:b2:ba:29:80:03:a1:ca:9a:00:0f:
9b:2f:0e:c8:e6:3e:14:5f:3b:8f:4e:f4:09:ef:98:21:08:f5:
66:50:96:8d:17:55:17:8c:1b:89:9a:3c:0f:ac:89:26:03:bb:
b5:f8:3f:04:aa:9c:77:a8:b0:31:06:a9:f0:b5:bf:93:05:55:
38:54:5f:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org