Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/zo1yCWvMyXFSl9moangkXArj0cs.roa
File: zo1yCWvMyXFSl9moangkXArj0cs.roa (raw, json)
Hash identifier: 6AI7y+iDJG+cjijR+AOSR2oKFRTQJ2OkepbcYfMs2Gs=
Subject key identifier: CE:8D:72:09:6B:CC:C9:71:52:97:D9:A8:6A:78:24:5C:0A:E3:D1:CB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AB9
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zo1yCWvMyXFSl9moangkXArj0cs.roa
Signing time: Sun 07 Feb 2021 11:38:52 +0000
ROA not before: Sun 07 Feb 2021 11:38:52 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 220.128.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2745 (0xab9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:52 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CE8D72096BCCC9715297D9A86A78245C0AE3D1CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:47:be:43:c6:18:ab:d2:bf:a5:ce:58:07:29:
a9:86:9d:4e:8c:6e:37:91:12:fd:71:f3:58:01:81:
dc:0a:85:22:a7:88:d2:45:03:ca:42:c3:ab:b6:86:
e0:a6:9f:e3:a1:18:4a:2a:ec:7f:cd:41:a8:c6:8f:
1a:da:0d:08:25:c1:10:eb:c7:17:8b:78:c9:16:b2:
ba:30:53:f0:91:c2:90:45:e8:00:4b:bc:d0:99:4d:
9c:ae:a5:30:29:94:3c:58:a5:38:c8:cd:79:11:d7:
22:d1:95:05:d5:b8:9a:6f:7e:5d:81:eb:ae:44:c2:
35:3d:40:65:0c:3a:cb:00:4a:18:f4:b5:4e:a8:98:
25:67:48:ca:df:ff:6b:de:19:0c:03:64:70:9d:63:
08:cb:7a:f4:64:74:9f:9c:fc:4e:fc:a0:7d:01:53:
88:1b:04:e7:cb:fe:7e:b2:ea:03:ec:6f:19:7a:77:
5d:95:bc:60:89:01:24:ab:3e:70:a7:74:4f:5e:4d:
16:3e:55:a0:44:56:90:d9:18:02:72:a0:64:04:71:
9a:a6:cb:0f:cd:da:59:58:0b:fa:ae:0e:c4:18:b5:
1b:1d:98:f6:b9:9c:02:9d:88:96:b2:da:e0:81:1e:
bb:07:95:b9:43:74:ec:8f:ef:d9:67:cd:fe:09:cf:
de:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:8D:72:09:6B:CC:C9:71:52:97:D9:A8:6A:78:24:5C:0A:E3:D1:CB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zo1yCWvMyXFSl9moangkXArj0cs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.64.0/18
Signature Algorithm: sha256WithRSAEncryption
67:74:58:61:51:45:2b:37:52:94:b5:93:c0:1b:8e:98:7d:10:
c5:bd:61:5b:ad:85:d1:dc:b0:51:1b:9c:b6:f6:98:82:58:d7:
ad:2f:06:c8:bb:55:ff:e3:0e:45:19:41:7c:57:c3:4b:9b:d2:
14:31:6d:3a:95:68:15:9b:c2:dd:fa:de:9f:58:c8:64:ba:8d:
a4:31:dc:cd:87:2d:b1:59:ae:ce:30:29:67:23:b6:ef:63:96:
30:b7:f6:cb:3f:03:ae:12:d2:ba:2d:f9:b2:cb:f4:24:e4:99:
2d:2c:e3:3d:47:f9:5c:b0:fa:b4:2b:a3:7f:51:62:f8:0a:9d:
a5:37:63:bd:8b:78:5f:03:52:c4:16:82:3a:60:b6:4c:f9:48:
b6:33:59:60:99:88:ec:4a:d0:ae:be:46:3c:ae:e1:2b:ae:53:
66:a7:fb:8a:19:6a:23:8d:5d:d8:0d:a7:1c:48:81:fe:22:94:
bd:e4:dd:ef:3d:09:85:f2:cf:2f:47:8f:93:35:3c:b9:79:f2:
2d:26:1c:93:1d:bf:73:c2:33:7e:51:98:e6:89:05:1b:31:0a:
32:26:44:04:16:30:a0:fa:8d:9a:5c:bf:49:86:a9:85:51:be:
3f:79:31:e1:ab:e9:6c:6c:af:ce:9f:61:33:48:2b:05:54:51:
06:96:65:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org