Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/QvZ_ROZChiKdIgPZwxqLv8p6TQI.roa
File: QvZ_ROZChiKdIgPZwxqLv8p6TQI.roa (raw, json)
Hash identifier: XizrAbEig7u1L5DITYXVlApFXDxvRvyAx3cdqoxRv/o=
Subject key identifier: 42:F6:7F:44:E6:42:86:22:9D:22:03:D9:C3:1A:8B:BF:CA:7A:4D:02
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/QvZ_ROZChiKdIgPZwxqLv8p6TQI.roa
Signing time: Thu 15 Sep 2022 02:48:44 +0000
ROA not before: Thu 15 Sep 2022 02:48:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 220.132.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=42F67F44E64286229D2203D9C31A8BBFCA7A4D02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3f:7b:4c:3d:d3:f4:f4:c5:04:d6:d8:7f:dd:
81:41:94:e9:2d:84:5c:03:57:6b:b2:ff:11:ba:ce:
4b:c4:83:88:79:2b:33:be:fe:22:10:7d:e0:4e:df:
0c:cf:58:ab:ce:1e:7f:3b:f7:82:cb:5f:04:00:be:
cb:17:8f:a6:9d:5a:53:4c:f9:5c:c3:60:a5:ee:e8:
75:ce:26:0e:11:ad:18:4f:d2:50:1d:50:ef:c2:fc:
08:4d:df:d7:37:a3:aa:ac:00:28:9b:35:30:b7:1f:
aa:39:92:99:7b:37:cf:28:62:69:68:b3:9d:12:3d:
0e:fc:d7:e8:d6:d5:3a:70:22:82:00:88:b1:5b:c1:
85:48:9c:35:23:7f:1a:7f:08:11:48:43:cf:65:b7:
82:f3:91:72:a1:de:91:24:8a:ec:1c:19:3e:e7:f0:
f0:56:29:4e:8b:ed:66:81:da:8e:cc:5b:cb:41:65:
a3:85:a3:60:41:24:a7:6b:a1:ef:c6:bd:ad:03:04:
0a:ec:1e:98:f2:04:31:41:82:6f:a2:ac:dd:fe:d5:
7a:fc:58:1c:4b:17:4b:03:28:82:e4:dd:96:89:82:
5e:51:b6:01:2a:1c:6d:e2:6a:4a:56:32:3d:44:5c:
fe:91:e6:f6:f1:79:3a:0a:4a:c9:b3:1c:3a:8f:ee:
34:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F6:7F:44:E6:42:86:22:9D:22:03:D9:C3:1A:8B:BF:CA:7A:4D:02
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/QvZ_ROZChiKdIgPZwxqLv8p6TQI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.132.0.0/14
Signature Algorithm: sha256WithRSAEncryption
07:d7:b6:32:04:ee:72:d5:1b:33:7f:57:5b:42:39:2c:86:c6:
55:02:7e:b0:92:8a:1e:7d:c7:45:68:07:cb:00:10:b9:28:43:
06:bb:01:f7:c7:3e:7a:87:8b:11:d1:d5:3c:8b:3b:3f:3e:3d:
ae:ad:30:38:21:83:75:d1:f0:db:1f:75:0f:7f:ba:39:c1:bc:
50:6c:14:b6:4e:1b:47:76:4c:1e:88:50:1e:c8:b9:72:62:21:
9a:0e:d6:30:44:c8:60:dd:97:ff:fe:50:ed:67:95:44:11:0a:
93:c5:ce:97:75:99:c5:78:d0:e9:88:a1:e5:d1:53:e9:b7:3a:
a8:c4:a0:18:04:12:21:2a:0f:5f:02:96:af:0e:55:ac:2e:bd:
3a:2c:24:1e:85:88:af:0d:8d:5f:42:c7:c8:08:67:95:46:1b:
b4:5a:09:17:a8:60:bd:ba:70:28:b4:e2:db:4f:87:3e:59:ec:
df:cb:33:48:65:fe:d1:da:9b:18:b6:89:6e:f6:b5:48:cc:84:
e3:99:f0:d0:e4:d9:6e:e8:9e:ba:1b:86:f0:f3:5e:55:5c:2b:
1d:34:63:43:06:5e:b0:f8:90:d2:74:4e:25:f7:fa:9b:8b:7c:
75:b3:6f:18:ac:54:05:7d:bc:c5:fd:3e:2b:72:17:80:04:4d:
c2:c6:8b:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org