Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/0DlO2QwWGkU0nM58-hKdZdtHKvo.roa
File: 0DlO2QwWGkU0nM58-hKdZdtHKvo.roa (raw, json)
Hash identifier: abM7Xo/lWttSwPsumd/CoRzSbVekfPjb5Wa96wqfkjw=
Subject key identifier: D0:39:4E:D9:0C:16:1A:45:34:9C:CE:7C:FA:12:9D:65:DB:47:2A:FA
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0B11
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0DlO2QwWGkU0nM58-hKdZdtHKvo.roa
Signing time: Sun 07 Feb 2021 11:47:19 +0000
ROA not before: Sun 07 Feb 2021 11:47:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17421
IP address blocks: 221.120.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2833 (0xb11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:47:19 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=D0394ED90C161A45349CCE7CFA129D65DB472AFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:40:19:bb:ae:68:88:c1:a6:e0:54:73:c7:d4:
35:30:84:b6:26:f8:28:a2:07:b8:84:24:03:11:ca:
d9:9b:fc:bc:32:3b:b1:7a:d4:8d:7b:dd:00:d0:d4:
69:58:bb:c4:21:e0:77:cf:00:56:65:98:37:b5:f1:
a5:3e:8e:21:f5:45:c3:a2:7f:e4:52:a4:62:5c:f0:
22:9c:ce:dc:e4:f5:67:f1:f0:a8:10:e2:01:56:70:
97:1b:aa:18:28:fd:28:8e:32:85:2f:e9:b9:7d:57:
cd:d9:fe:da:da:d8:e6:23:d8:2e:c0:27:7d:5a:bb:
18:db:79:30:6c:73:2b:d2:9d:97:40:c8:75:ec:ac:
48:2e:84:05:57:e9:cf:b7:72:20:98:ac:91:e3:18:
78:d2:92:03:ea:23:d9:e8:ef:70:50:e5:a7:14:29:
3a:82:35:d5:eb:a0:6c:d3:06:4c:3c:5e:67:21:e5:
51:c7:74:f1:68:f4:d9:81:f4:fe:c4:cc:97:d6:7d:
3f:c9:e6:03:e5:70:78:69:73:87:13:8e:ff:02:b3:
93:7b:d0:86:dc:c8:3e:b9:6a:20:b0:a5:c8:84:f5:
42:7d:b0:cf:b4:30:d7:b2:f5:bf:22:74:89:64:b7:
92:b3:fe:d1:11:0b:a1:6f:d0:4e:ec:f8:ce:5b:7e:
1a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:39:4E:D9:0C:16:1A:45:34:9C:CE:7C:FA:12:9D:65:DB:47:2A:FA
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0DlO2QwWGkU0nM58-hKdZdtHKvo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
221.120.64.0/19
Signature Algorithm: sha256WithRSAEncryption
56:da:a9:f7:3c:0b:2d:0e:d1:78:8a:6b:74:9c:f5:7e:8e:bd:
69:5f:cc:43:6e:72:05:5b:11:3f:9b:ce:6b:aa:56:f0:dc:8e:
50:fd:2e:c2:85:06:06:d3:bf:ab:4f:db:50:03:c7:74:63:e2:
08:bd:d5:8a:67:e6:74:47:3f:9b:4f:6c:10:38:c4:b1:28:67:
59:04:ee:d8:56:aa:ec:f0:b7:d9:5f:9f:5d:c6:ca:c1:2a:33:
db:22:cf:c8:18:34:5b:bd:a4:f1:8c:85:23:bf:60:e1:36:60:
f7:68:89:2f:e8:ee:ba:69:33:78:27:83:8a:c7:d1:8c:8e:49:
f7:1a:4b:50:9c:b7:e8:24:3c:3e:ac:84:f5:93:aa:65:a0:65:
83:17:51:93:2a:9e:73:39:a7:54:69:f2:f9:00:45:61:c9:e7:
c7:e8:04:dc:24:96:b8:0c:5a:55:bc:60:77:63:76:7a:ec:72:
fd:92:73:e2:3c:70:b7:34:8f:29:df:fb:10:9b:de:02:8b:67:
cd:73:a4:8b:8d:d5:8d:67:fa:65:bd:06:ab:d8:d8:08:2d:84:
c6:e2:36:c9:14:2c:33:ea:30:c1:a6:45:40:cb:d7:de:14:2d:
2d:bc:6a:5c:00:cb:53:c2:b5:c0:e4:fb:86:96:1c:26:24:70:
90:6d:4b:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:54 2023 by rpki-client on console-ams.rpki-client.org