Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Wxn-nkiJzuSpgv_HTxOECKQ6tRQ.roa
File: Wxn-nkiJzuSpgv_HTxOECKQ6tRQ.roa (raw, json)
Hash identifier: hLDz1WYlDge29Raa3+DJ2pJ4C3Nw9ufc7p2900/+CHA=
Subject key identifier: 5B:19:FE:9E:48:89:CE:E4:A9:82:FF:C7:4F:13:84:08:A4:3A:B5:14
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C31
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Wxn-nkiJzuSpgv_HTxOECKQ6tRQ.roa
Signing time: Wed 29 Sep 2021 02:50:59 +0000
ROA not before: Wed 29 Sep 2021 02:50:59 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 220.132.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3121 (0xc31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:59 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5B19FE9E4889CEE4A982FFC74F138408A43AB514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e4:d4:15:b3:cc:17:82:92:e8:27:d8:63:e5:
f2:bd:40:11:fa:2e:06:c0:c0:a9:2d:f5:55:32:95:
43:2d:cc:b0:de:37:93:d4:70:c3:27:df:19:5c:29:
71:b3:4a:a5:03:2a:7c:32:86:81:6d:6d:05:8a:d1:
30:41:90:69:22:13:0d:c6:d2:65:41:da:ba:07:d3:
ad:be:b6:ec:be:86:fa:dd:6c:c3:5f:ff:75:79:17:
4b:9c:53:78:fb:35:a0:96:c8:20:b7:d8:bc:5c:60:
8c:4e:99:7d:e3:b8:4b:6e:04:dc:44:0e:82:e9:36:
81:af:2b:6c:44:bf:8b:b4:a6:5c:6c:d9:de:fa:52:
0d:8b:47:4b:7f:78:93:27:8f:18:4f:30:ce:e5:c4:
a3:26:0e:80:b1:99:b2:07:f7:af:b5:ab:42:de:b9:
84:58:5a:b2:7c:87:d2:d7:df:a2:de:f1:7a:5d:68:
73:b5:7c:7d:00:70:a7:fd:ad:22:c6:f1:5f:22:bb:
cc:19:19:67:2f:d3:44:86:1c:34:e8:6e:1a:12:c3:
21:80:06:e7:0b:b0:dc:e7:bd:96:4a:86:48:86:b6:
3e:d8:c8:70:45:58:fa:84:c8:bd:b1:a3:3a:e3:e8:
d6:00:77:64:0a:6e:8a:54:6e:ab:34:94:2b:07:eb:
17:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:19:FE:9E:48:89:CE:E4:A9:82:FF:C7:4F:13:84:08:A4:3A:B5:14
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Wxn-nkiJzuSpgv_HTxOECKQ6tRQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.132.0.0/14
Signature Algorithm: sha256WithRSAEncryption
11:db:ed:e2:1b:a4:60:d0:fe:ce:d9:0c:7f:52:6f:7a:21:0e:
a2:8b:24:29:3d:79:46:25:e7:11:4c:ec:0e:e7:6a:0c:e3:9d:
c0:8d:a1:c1:ee:7d:27:cf:0d:2e:58:4f:83:2a:e1:72:1d:3c:
9f:00:14:e4:7c:7a:ee:0f:af:3e:98:22:09:89:23:f4:ed:2b:
53:fa:a3:d4:3a:bd:ed:5a:6a:17:98:ed:7f:24:3b:ef:42:c3:
7b:5a:cf:c3:fa:91:15:59:6c:23:6f:7b:9b:7d:c3:1c:74:27:
39:62:41:5b:65:c4:b2:d2:0e:bd:dc:ef:33:86:e8:3c:1e:58:
d6:c1:64:4d:f1:9c:53:c7:e1:64:35:41:0e:aa:b9:32:8c:c9:
9d:d1:6e:e2:eb:5c:57:a9:28:b1:b8:c8:96:92:e9:8d:36:61:
32:d7:48:df:62:0f:cc:c3:97:05:80:f5:a2:37:cb:c4:5e:eb:
e0:ff:a9:75:c7:85:c0:eb:7e:4c:5f:29:52:68:25:48:64:94:
dd:18:78:70:0b:ea:b0:6a:37:88:db:29:1a:9c:c9:65:eb:e4:
f5:de:a9:20:c5:ef:56:86:b8:48:fa:17:24:ca:36:38:ed:8c:
fb:93:15:b1:a0:b6:1d:67:4e:6f:7e:83:43:84:0e:9c:a0:74:
c1:e0:b9:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:03 2023 by rpki-client on console-fra.rpki-client.org