Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/5kRC6i1s_QOeICu2cG-Mq3ms7Lo.roa
File: 5kRC6i1s_QOeICu2cG-Mq3ms7Lo.roa (raw, json)
Hash identifier: VfGi6U0W214h5rGCs2jsxNnGStRNH+rDBPSfUyqNz4I=
Subject key identifier: E6:44:42:EA:2D:6C:FD:03:9E:20:2B:B6:70:6F:8C:AB:79:AC:EC:BA
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 086F
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5kRC6i1s_QOeICu2cG-Mq3ms7Lo.roa
Signing time: Tue 29 Sep 2020 09:58:44 +0000
ROA not before: Tue 29 Sep 2020 09:58:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 33717
IP address blocks: 220.128.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2159 (0x86f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E64442EA2D6CFD039E202BB6706F8CAB79ACECBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5e:68:9c:6f:0b:64:7c:0e:bf:9e:4b:b0:9f:
ae:96:7d:c7:be:61:b9:09:b8:60:8d:db:79:a8:44:
fd:a8:2b:1b:55:e6:6e:84:cc:42:fd:dd:ff:3b:f3:
c5:f9:ec:2f:9b:60:8c:bc:27:74:67:8e:1a:4e:22:
99:8a:51:af:65:2d:6c:0b:6a:a2:1a:39:dc:79:3d:
08:15:5c:21:63:33:a2:f7:0a:65:9e:b8:12:dd:53:
90:d2:a9:f6:73:3e:0c:5b:b5:f8:52:53:11:bc:b1:
a3:7c:36:ea:e3:0b:e0:82:91:b4:24:de:cd:2f:21:
bf:d5:34:1b:7d:a2:0f:2b:47:b0:00:0a:b5:96:dd:
12:98:69:ce:e8:cb:b6:35:76:52:94:9f:4b:1d:ed:
be:cb:ff:da:fc:c4:a5:11:0c:08:56:9e:f0:d5:40:
f4:d1:7e:cc:4a:76:8a:9a:8c:60:ff:a3:7c:e3:31:
19:ce:a8:63:2f:95:18:a0:26:06:37:17:bb:5f:88:
6b:80:2b:fd:04:f5:d4:05:e7:b5:de:da:71:0b:ca:
d9:30:f7:f6:f9:d8:58:0d:8a:a6:e8:fd:d7:38:bb:
ae:a0:78:5f:4e:1c:d0:1e:3d:79:d5:e6:aa:ca:a9:
e6:77:67:64:26:ee:01:29:f8:6d:d8:35:a7:c2:9c:
76:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:44:42:EA:2D:6C:FD:03:9E:20:2B:B6:70:6F:8C:AB:79:AC:EC:BA
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5kRC6i1s_QOeICu2cG-Mq3ms7Lo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.51.0/24
Signature Algorithm: sha256WithRSAEncryption
00:bc:50:15:0a:6d:0f:65:fd:06:be:1f:6e:d5:b8:2d:67:dc:
98:a2:cb:ab:36:9f:52:28:de:da:7c:c6:13:8a:e2:71:dc:bd:
2d:fe:a1:19:d7:a4:b4:53:5c:42:6c:fd:7c:72:91:cf:f5:58:
32:8d:bb:ea:c4:7e:18:fc:dd:15:23:36:65:4a:14:00:81:71:
19:af:59:d2:cb:62:cb:95:5f:8f:26:30:2e:1f:dd:61:26:48:
01:dd:26:ff:5e:8f:e2:00:73:09:a3:19:29:82:42:a5:8a:c8:
21:36:c0:db:1c:59:88:77:2d:83:1a:88:56:41:5a:bd:fe:2a:
9d:b4:d4:20:e3:b7:87:c5:67:a9:52:8c:f3:cc:5a:e5:fa:0a:
73:22:ea:d4:85:a0:26:dd:6a:00:26:f8:f3:7b:1d:0f:3b:17:
b6:2d:47:c6:65:44:de:5c:3a:7b:1a:c3:9a:80:35:98:7c:5e:
da:54:2c:57:b9:14:b5:2b:ca:cf:d9:e6:94:fd:0a:4e:82:8d:
f1:2f:b9:d9:14:73:8b:2e:1d:94:da:01:df:d0:f2:7c:08:93:
42:46:6c:bb:51:3c:42:d0:e9:d6:aa:42:e7:f2:07:f2:c8:27:
21:21:9a:39:ba:19:d8:9b:09:65:0a:b9:5b:90:47:76:67:5f:
d4:d4:97:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org