Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/S7zM8zd2FuUK17ZW4nThD_Dl_IE.roa
File: S7zM8zd2FuUK17ZW4nThD_Dl_IE.roa (raw, json)
Hash identifier: TzALd+fISRX9M0EXq5+GoTrSFRYxXxPAkfLhP5WliyY=
Subject key identifier: 4B:BC:CC:F3:37:76:16:E5:0A:D7:B6:56:E2:74:E1:0F:F0:E5:FC:81
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0847
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/S7zM8zd2FuUK17ZW4nThD_Dl_IE.roa
Signing time: Tue 29 Sep 2020 09:58:33 +0000
ROA not before: Tue 29 Sep 2020 09:58:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10126
IP address blocks: 220.128.64.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2119 (0x847)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:33 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4BBCCCF3377616E50AD7B656E274E10FF0E5FC81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7a:cd:90:5a:e0:19:f5:06:a3:4b:ee:8e:5d:
91:fd:05:cb:43:c6:3f:9c:de:3c:d8:72:58:1c:61:
6a:f3:0e:80:28:2e:ab:6a:f5:96:4d:40:8a:dc:49:
a4:0f:06:3b:25:9c:06:cd:1f:bc:54:98:0a:ad:e8:
4d:54:81:fb:bc:85:29:94:df:39:94:69:26:e6:7b:
24:40:d4:00:40:54:7d:d4:45:99:16:48:c2:63:cb:
37:27:27:2c:a8:9b:51:3a:ef:b3:c2:43:d1:76:88:
b1:76:5e:a4:54:95:90:75:75:d8:a6:c4:4b:fb:11:
86:f1:ae:91:b3:10:23:67:33:1c:a6:8e:2e:64:9f:
37:28:69:45:73:58:78:bd:59:ba:b5:ea:70:af:00:
e6:cf:e5:f7:17:d4:b7:8c:f2:6e:4d:74:b1:74:f0:
3f:cc:f2:9c:dc:a4:62:5f:7c:4c:68:6b:a4:b8:45:
cd:4b:f1:2e:01:33:ae:e4:15:ab:ca:e3:c8:16:eb:
94:d2:74:9b:9f:f8:c2:8e:49:bd:15:1a:9a:17:1b:
ad:58:73:f6:25:36:b8:4d:06:1f:0f:a4:d7:30:53:
e2:8e:ee:7b:d0:9a:e7:b5:98:6f:8a:53:b4:d1:29:
c9:47:fc:bd:0c:55:0d:3c:17:08:86:c2:8c:23:72:
16:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:BC:CC:F3:37:76:16:E5:0A:D7:B6:56:E2:74:E1:0F:F0:E5:FC:81
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/S7zM8zd2FuUK17ZW4nThD_Dl_IE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.64.0/20
Signature Algorithm: sha256WithRSAEncryption
73:7f:74:1e:86:67:97:48:d2:78:fd:28:a1:8b:04:4b:71:8f:
0b:4c:94:74:e7:7b:0f:e6:c5:ba:4a:a0:ca:a7:cd:3c:08:36:
80:a8:98:78:96:2d:0a:9e:a8:a4:73:0c:01:e9:11:ee:3c:d6:
9c:3a:0d:19:d3:96:ec:92:26:f3:b4:53:72:a4:67:f1:09:57:
52:4f:f9:40:f1:4e:cd:ea:f6:6e:84:aa:bc:30:55:f0:f9:3f:
12:6f:3a:cd:4c:9e:2c:07:9c:d2:f9:86:0a:63:77:16:ad:75:
c4:31:77:44:a5:77:04:1b:70:f6:f4:46:26:b8:fb:3c:e3:29:
61:67:73:a0:31:81:bc:d1:48:ae:2e:87:0e:a3:11:d5:b1:76:
80:74:0a:28:67:b9:5d:a9:11:b8:24:5e:be:9f:a4:b5:63:fb:
a1:0d:fc:b9:17:c5:6d:d1:f2:05:ef:e5:d9:90:34:f5:5b:9c:
e3:f8:3c:b9:d6:2b:88:7e:d5:18:a1:b6:92:ce:9b:6a:30:42:
cf:6f:38:d7:86:9d:11:a8:4b:46:1c:12:eb:1d:04:37:50:e1:
19:8a:09:4d:ee:61:3e:e9:99:a5:94:21:1f:85:06:9e:cc:02:
09:7f:e4:1c:59:07:17:0f:49:b8:b3:a4:77:d6:02:38:5d:84:
bc:7f:b3:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org