Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/IUkWzkS99eL8QdoJF4mxcuYMmvg.roa
File: IUkWzkS99eL8QdoJF4mxcuYMmvg.roa (raw, json)
Hash identifier: VM+UfqPHax3Sx3uiBD04r1KERHKbJLIRojbjyVMVOHs=
Subject key identifier: 21:49:16:CE:44:BD:F5:E2:FC:41:DA:09:17:89:B1:72:E6:0C:9A:F8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/IUkWzkS99eL8QdoJF4mxcuYMmvg.roa
Signing time: Thu 15 Sep 2022 02:48:30 +0000
ROA not before: Thu 15 Sep 2022 02:48:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 220.128.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=214916CE44BDF5E2FC41DA091789B172E60C9AF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4f:38:b0:a1:fa:f5:02:a7:04:39:a1:43:44:
7e:d2:0a:03:a6:b2:b5:fd:d5:63:4e:eb:10:a8:30:
be:33:c9:cf:e0:18:f2:2b:ef:24:71:7f:75:9c:52:
39:91:b4:10:cc:b3:03:0b:33:1c:33:c6:e1:93:69:
f8:f5:36:b9:ec:d0:d1:03:9a:42:a9:f4:01:0e:3a:
dc:6d:de:85:97:30:9d:7a:34:c2:d5:00:20:5f:57:
6f:f9:5e:e9:a2:8f:63:8e:42:e4:47:ea:c4:5e:82:
a9:79:29:18:05:5a:ac:93:ea:4a:54:41:a3:05:97:
6a:01:0e:1e:9c:03:4f:c3:37:3c:11:27:98:08:74:
de:5d:ee:81:fe:c5:89:20:fd:07:9c:d2:87:1a:88:
bd:e2:b8:ab:ab:60:27:6e:e1:f0:9c:be:f5:3b:1b:
4a:5c:47:28:5d:44:d1:8f:21:39:01:32:54:ad:8c:
8d:aa:98:ef:e8:1e:6d:53:e8:27:47:66:ac:71:bc:
41:b8:bb:a4:27:69:ff:72:8b:61:74:22:ac:eb:07:
5b:10:64:87:47:77:60:4a:68:9c:1b:22:8f:0e:a3:
b3:6d:a0:10:de:8f:51:6e:de:58:da:fa:c6:3d:5e:
ce:f3:aa:86:15:82:53:36:44:b9:88:9b:58:32:96:
ef:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:49:16:CE:44:BD:F5:E2:FC:41:DA:09:17:89:B1:72:E6:0C:9A:F8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/IUkWzkS99eL8QdoJF4mxcuYMmvg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.80.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:8e:4d:42:3f:a4:fd:cd:1a:1a:9b:86:7f:be:9e:4f:fe:51:
57:e5:8c:e2:d3:07:a1:cd:1f:18:bd:9d:55:3c:42:46:3d:57:
52:57:2e:d5:c4:6e:8f:fe:7d:5e:99:fb:f2:f2:df:22:73:fd:
48:38:de:20:a4:08:7d:d5:be:2f:7e:7f:2e:e7:d0:13:05:a0:
14:01:29:ab:3b:4e:0c:a2:bb:23:a3:a4:94:71:0b:41:de:6e:
ad:e0:19:fa:e6:59:9d:46:eb:6a:58:0b:e9:67:47:ca:a2:e8:
78:6e:07:1a:68:39:7f:8e:2e:ef:c7:cd:4a:5e:ea:2b:81:32:
9c:77:7a:72:73:d7:e2:f8:eb:92:85:9b:2b:ca:ac:89:8a:8e:
16:66:ee:a6:85:4f:aa:d8:f3:f7:12:f9:12:4f:fa:d7:ad:36:
5e:52:46:74:da:31:8b:c8:3f:c6:3e:b5:a0:aa:8b:23:6b:d9:
43:61:ae:19:d4:69:8d:b7:58:18:73:87:02:51:ad:6c:09:84:
35:42:8d:23:bb:e1:a8:7a:6b:94:9f:4f:36:2d:b4:dd:27:30:
25:b9:f6:f3:63:c1:ad:26:a3:09:0d:cf:ad:8d:a6:8e:7a:3f:
86:9f:69:8d:e3:05:0b:b8:85:35:60:89:b9:88:c3:bf:e8:a7:
77:0b:79:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org