Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/52hSb651V0wugWwBi2dCd1IXZBc.roa
File: 52hSb651V0wugWwBi2dCd1IXZBc.roa (raw, json)
Hash identifier: b+n2cLMWfDcYCRh9ntsrug8v9jcNRv5Yx1sTfwzEv7c=
Subject key identifier: E7:68:52:6F:AE:75:57:4C:2E:81:6C:01:8B:67:42:77:52:17:64:17
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0CF2
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/52hSb651V0wugWwBi2dCd1IXZBc.roa
Signing time: Fri 11 Mar 2022 05:50:29 +0000
ROA not before: Fri 11 Mar 2022 05:50:29 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 220.128.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3314 (0xcf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Mar 11 05:50:29 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E768526FAE75574C2E816C018B67427752176417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:dd:10:64:c9:47:f2:ab:8d:82:fe:0e:e2:07:
24:ae:60:b5:c6:8d:f7:fc:3b:cd:48:e4:d6:ae:8a:
20:f2:e3:90:3e:fb:ee:f0:78:3b:0a:e5:d4:c1:e1:
02:dd:55:31:31:ca:de:ae:74:c1:28:bd:d5:4b:4b:
72:17:5f:f2:7f:a7:4c:2c:0d:a3:df:8f:08:c4:63:
30:d4:eb:8e:6d:46:75:98:ee:1d:77:e0:c0:0f:04:
a9:4f:17:28:3e:13:2d:a4:ff:9f:ec:46:a0:ad:7c:
62:85:46:3c:83:02:9f:05:8a:5e:06:c3:af:be:ed:
25:72:55:89:ab:fa:b8:3a:58:85:89:7c:65:80:bd:
77:7f:14:97:3e:a6:0e:38:c6:eb:a9:69:a4:20:9e:
17:ad:09:fe:51:cd:12:23:1d:a8:c8:8e:4f:92:20:
c0:d4:49:73:9e:76:2c:4f:98:e4:7b:fd:75:66:34:
00:81:7e:49:99:83:11:7f:82:79:a0:74:13:38:c6:
4b:05:55:98:a6:4c:96:7f:02:2b:06:1d:fa:94:64:
b1:8b:1d:a0:40:54:11:bd:28:fe:b8:ad:b5:ba:d4:
2a:5e:88:b8:e9:34:5a:c6:b1:d2:d3:7c:db:01:9b:
07:5b:63:c6:64:4a:2a:12:2e:02:8b:3a:f1:b2:42:
72:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:68:52:6F:AE:75:57:4C:2E:81:6C:01:8B:67:42:77:52:17:64:17
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/52hSb651V0wugWwBi2dCd1IXZBc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.61.0/24
Signature Algorithm: sha256WithRSAEncryption
af:d3:7e:35:8d:7c:77:b1:7b:fc:1a:bf:32:60:62:0d:c9:d3:
1e:23:b8:b0:b2:f3:fe:87:02:fd:fa:a6:36:ae:10:2f:52:af:
ff:76:84:27:d6:b1:72:ab:22:a4:0f:c6:5e:53:6f:0b:9e:54:
5f:1b:a0:aa:02:81:d1:7c:25:77:8f:d1:59:bc:bf:0c:8d:77:
9e:1b:b8:2b:cb:e3:58:4f:d8:a4:a2:24:d3:db:be:a1:0d:c3:
3f:2a:9d:46:b8:79:71:2c:07:b1:44:c9:99:0b:7f:40:58:dd:
75:b7:44:26:ae:52:8b:7f:1d:b9:8a:73:41:c7:47:8c:70:6d:
7e:a1:dd:5f:1e:5a:78:a6:ba:19:b7:f4:3d:70:b3:bd:d7:92:
d1:75:a9:bb:f4:3b:6f:8b:51:44:29:8b:21:b8:87:53:16:82:
52:e4:9c:72:10:fc:da:cc:37:f6:17:ec:0e:73:58:f7:aa:c2:
a5:96:72:37:eb:6d:a4:c2:69:fa:4e:e8:74:7d:09:ae:10:ca:
60:e1:54:72:e4:82:18:ec:af:46:58:71:15:ea:39:d7:6a:ea:
6f:0f:e9:c3:c2:15:18:e9:5e:47:05:1c:c1:fb:95:4e:96:2a:
48:db:3e:cc:25:48:40:36:3f:bd:32:a1:eb:de:c8:e8:cb:94:
2a:32:41:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org