Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/FaKWt8Eci5Q-WHXyOIJbe6fCR2w.roa
File: FaKWt8Eci5Q-WHXyOIJbe6fCR2w.roa (raw, json)
Hash identifier: 1CxSkCOStnd8QnI3UEYUTSXnxdl60hOjOfZ8qEBzbUU=
Subject key identifier: 15:A2:96:B7:C1:1C:8B:94:3E:58:75:F2:38:82:5B:7B:A7:C2:47:6C
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0817
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/FaKWt8Eci5Q-WHXyOIJbe6fCR2w.roa
Signing time: Tue 29 Sep 2020 09:58:20 +0000
ROA not before: Tue 29 Sep 2020 09:58:20 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 220.132.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2071 (0x817)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:20 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=15A296B7C11C8B943E5875F238825B7BA7C2476C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4f:24:19:fc:6c:f9:53:be:82:5a:38:d0:e2:
85:99:ae:6b:33:a6:5c:1f:8d:bc:49:a8:24:f3:1e:
72:4c:5a:41:f0:cf:94:72:17:ef:f3:4e:1b:38:86:
62:c5:d9:1e:b3:15:08:22:df:94:6b:eb:35:a1:6a:
cd:34:35:b2:a4:96:c4:f9:53:38:c4:db:50:4d:70:
d4:05:14:c6:3e:a8:37:43:3b:a5:f1:fc:48:ca:38:
85:4f:77:a7:b8:a3:6f:27:e2:27:03:64:d1:4f:a6:
46:aa:16:72:30:ab:b1:c8:a8:d4:df:16:88:20:3a:
b7:93:f5:a2:fe:d1:1b:ae:96:6b:92:8b:8b:24:0e:
1a:d7:65:56:63:41:36:f6:d5:76:c7:7c:41:66:55:
23:e0:9a:90:1f:85:b9:3a:2d:91:ca:d1:4e:eb:e9:
dd:a3:eb:a4:0d:9f:d1:05:15:a7:73:a5:b1:2b:95:
91:b8:6d:95:d4:e5:33:4a:9f:df:e5:95:a8:af:72:
d4:a3:1f:a2:43:bf:6c:25:80:09:c2:d6:5b:0b:2a:
9a:5a:4f:20:31:c9:c5:10:f6:59:b9:e8:1d:9a:28:
43:e5:d9:c9:4b:17:4a:29:15:29:d2:e7:32:f5:29:
27:b1:69:3d:6f:f9:4c:4c:ee:37:78:de:83:fd:dd:
8d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:A2:96:B7:C1:1C:8B:94:3E:58:75:F2:38:82:5B:7B:A7:C2:47:6C
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/FaKWt8Eci5Q-WHXyOIJbe6fCR2w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.132.0.0/14
Signature Algorithm: sha256WithRSAEncryption
86:c8:06:dd:ce:0c:2b:94:e1:f1:90:19:36:e8:3c:97:09:e0:
65:a1:e7:22:12:80:e8:90:b9:79:42:95:45:16:d5:99:03:ff:
8c:81:f8:98:0b:e0:32:b5:36:e7:ab:16:d8:80:18:ec:6b:4a:
79:dc:5d:04:bf:d8:91:4a:03:97:1e:de:c8:09:02:0d:7a:09:
61:18:bd:26:5d:86:aa:c4:27:de:91:f1:1f:e6:9b:75:c0:87:
d4:ed:6b:0c:4d:68:9c:ab:8a:83:ec:1c:e8:f9:b1:94:48:86:
3c:b9:f2:d9:b8:47:e9:b5:11:ad:f5:43:5d:e3:1c:8a:19:2e:
bf:14:ce:64:15:cd:9a:73:8b:61:82:96:61:e0:c0:1b:68:f1:
55:ca:85:d4:37:1d:4e:89:9e:00:e5:5d:0b:26:ad:02:b1:b9:
4c:f6:45:5f:58:8c:32:99:8f:5c:cf:df:ac:f0:ee:58:dc:d2:
ab:0b:0b:9a:7a:67:70:c4:82:a4:2f:85:97:12:32:47:2b:4b:
e4:3e:cb:c8:00:70:b7:92:8a:11:1b:7e:2a:31:e6:13:d0:d8:
01:ac:26:98:e3:ba:2c:6f:1c:2c:6f:23:b2:f1:e8:f1:a8:17:
de:70:04:6a:73:93:34:0b:ac:a5:d3:3b:d5:22:e2:2d:c4:7d:
da:d8:6f:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org