Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ClLK2s9yIiaZnIBR8pL--AXXFLQ.roa
File: ClLK2s9yIiaZnIBR8pL--AXXFLQ.roa (raw, json)
Hash identifier: mU82XCXnwhj/C4+rwwwauhAKX3VKyAWaA5WPrI7p1yk=
Subject key identifier: 0A:52:CA:DA:CF:72:22:26:99:9C:80:51:F2:92:FE:F8:05:D7:14:B4
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C46
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ClLK2s9yIiaZnIBR8pL--AXXFLQ.roa
Signing time: Wed 29 Sep 2021 02:51:05 +0000
ROA not before: Wed 29 Sep 2021 02:51:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 33717
IP address blocks: 220.128.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3142 (0xc46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:05 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=0A52CADACF722226999C8051F292FEF805D714B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:9b:24:27:be:81:1c:ce:aa:81:67:5c:91:1a:
c9:cd:cc:e0:e2:f7:8f:43:ba:28:d4:70:6f:94:b4:
e3:8e:ce:7b:ec:bb:f4:2f:77:af:73:bf:c2:c3:45:
81:de:f1:47:08:0f:21:ad:5e:9f:c8:9b:66:a2:73:
b9:c6:ef:85:0b:f7:d4:47:d4:bb:e3:1d:5b:64:55:
30:22:30:30:81:96:5e:14:08:cb:a2:cf:67:64:8d:
3f:ec:f9:d8:58:0e:37:19:75:bf:11:d3:ba:a2:73:
3d:94:8f:c2:57:f3:3a:12:53:35:4b:75:75:6c:35:
c8:58:ac:e2:11:b3:42:b0:c6:21:6d:1a:75:9f:0a:
5a:04:f1:40:04:33:ce:04:fb:79:d9:bd:c3:e5:2c:
4f:4f:9f:0d:9a:2a:da:0a:8f:14:37:aa:33:7e:d2:
f0:8d:ce:65:0d:7b:42:58:2d:69:04:3f:c6:ff:75:
1f:b4:c9:87:27:1e:5b:e5:a2:fd:06:2d:88:8d:70:
3a:36:aa:fb:70:eb:9c:07:cb:17:7e:b3:04:25:4f:
7e:eb:4a:62:e5:f5:41:6e:73:81:18:ce:85:11:7d:
d4:01:40:c4:61:e2:0c:40:15:5a:ee:a4:00:93:d4:
bf:6b:c5:d2:10:c0:f6:07:ef:fa:2f:bc:b0:2c:79:
cd:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:52:CA:DA:CF:72:22:26:99:9C:80:51:F2:92:FE:F8:05:D7:14:B4
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ClLK2s9yIiaZnIBR8pL--AXXFLQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.55.0/24
Signature Algorithm: sha256WithRSAEncryption
33:6e:ea:a8:b3:dd:fc:6c:ef:e5:21:aa:62:4c:95:fc:25:ec:
83:c1:0f:97:8e:d9:39:f5:d0:56:f5:e1:37:b9:9b:18:d3:34:
71:a5:63:cf:ed:b9:19:12:66:0a:d0:80:d8:ee:ac:ca:05:e3:
20:3e:08:d1:e3:4f:ef:ef:77:52:59:c9:6b:31:49:a1:18:86:
e7:60:ac:94:34:a9:1a:47:04:c9:71:94:b2:12:a5:2c:16:81:
53:1b:7c:56:59:d4:e1:6b:c3:c7:04:7e:96:26:87:bf:85:ad:
99:0c:29:91:3f:14:aa:7e:35:3b:db:23:ea:05:b2:7c:04:77:
fe:aa:e5:9c:bb:fc:46:84:f9:a7:9a:71:fe:5d:cd:4e:0c:51:
25:51:b3:bf:85:5f:d5:a3:50:0f:12:d1:40:18:37:7f:db:44:
b2:c4:58:87:56:80:24:1c:33:e4:a6:6d:38:e2:e2:eb:7c:0e:
e2:44:3d:3d:ec:f5:a3:d0:ac:21:0d:7f:eb:70:91:75:2e:43:
b5:d1:31:52:8e:c8:a3:a4:f9:d4:47:d2:a8:f4:bf:f9:31:62:
c0:70:16:26:82:15:a3:56:67:4b:a6:cf:51:dc:95:02:ae:ba:
90:d8:bb:5a:f2:d2:d6:3e:11:7d:2b:9a:14:83:b1:45:f5:e4:
6a:a8:06:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org