Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/YmdTsrpACH-7tk2eKLToaF-Gobo.roa
File: YmdTsrpACH-7tk2eKLToaF-Gobo.roa (raw, json)
Hash identifier: wnwJ8KksY/mbCUZKtytuzf8Dv9R8fkAFNKfW+qnXui8=
Subject key identifier: 62:67:53:B2:BA:40:08:7F:BB:B6:4D:9E:28:B4:E8:68:5F:86:A1:BA
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C64
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YmdTsrpACH-7tk2eKLToaF-Gobo.roa
Signing time: Wed 29 Sep 2021 02:51:13 +0000
ROA not before: Wed 29 Sep 2021 02:51:13 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 220.128.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3172 (0xc64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:13 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=626753B2BA40087FBBB64D9E28B4E8685F86A1BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:08:41:f5:a1:8c:ed:58:8a:fe:e9:d0:2b:dc:
83:1f:c1:c2:a2:06:6a:b4:9e:09:73:86:67:ef:c3:
10:9e:cd:21:71:5a:a5:1a:0e:09:0f:ca:55:3e:87:
ce:52:21:4b:e0:d8:46:2a:9b:ed:43:34:d5:0a:37:
75:d3:91:ea:90:38:84:d6:5a:69:30:e8:04:02:38:
2c:73:34:07:2b:3e:9f:7c:1f:10:6d:a0:b1:f6:81:
fd:3a:7f:29:d8:fa:f1:bb:44:cc:18:1b:02:14:83:
da:9d:73:94:dc:d0:57:7e:0a:8e:12:24:bf:30:e6:
01:e9:3d:8a:15:05:27:3c:04:58:a4:46:cd:53:d8:
c9:c9:1c:f1:dd:f4:17:32:6d:f2:d9:e6:9a:1c:88:
d9:ba:f8:6e:53:d6:71:d5:02:b2:e1:91:f4:d7:7a:
96:1f:3c:22:ff:e0:8c:69:8d:7b:e4:66:44:6b:99:
bd:87:d7:f7:5f:86:30:22:ea:00:13:ac:bc:80:05:
ee:f2:e2:fa:43:24:c6:ec:44:a6:96:19:37:cf:bb:
5c:b6:f0:50:d4:53:9c:24:e1:58:fa:2b:30:22:2b:
90:e7:8d:4d:02:2f:54:56:b3:b6:3b:f7:1f:20:d5:
2b:b9:74:bd:66:22:35:6f:f4:3d:4f:80:5e:c9:2e:
0e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:67:53:B2:BA:40:08:7F:BB:B6:4D:9E:28:B4:E8:68:5F:86:A1:BA
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YmdTsrpACH-7tk2eKLToaF-Gobo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.71.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:ed:23:00:d2:2f:30:f5:fa:be:07:b2:ea:d5:79:8c:be:71:
79:27:6c:e1:f8:99:7b:12:c9:32:2f:c8:59:8b:75:16:bc:dc:
e4:79:a5:f7:d1:82:2d:ac:fb:61:33:80:0e:db:56:92:ff:2c:
fc:52:11:e7:a8:b4:f2:bc:5f:c1:25:4e:a7:25:c5:a9:d2:f3:
54:72:a0:3b:06:29:36:69:90:26:13:f2:b1:76:19:29:1c:90:
63:5d:23:48:3a:bb:1c:59:ff:3d:5b:43:c4:15:ec:7d:e9:30:
60:7e:ae:56:d7:b2:b5:21:7c:9c:c2:fb:5b:bc:be:1b:82:f5:
22:b8:8b:5b:2f:c7:0f:5b:c4:21:b4:2c:a7:1c:b2:d7:11:83:
5c:ff:4d:2e:d1:ac:31:cf:86:d6:c5:94:15:9d:66:96:ca:10:
ba:f4:fb:23:c0:d1:61:cc:e9:ee:7e:69:65:4a:f0:ae:42:1f:
0d:ca:6a:ed:72:86:ad:5e:4e:01:f1:b8:b7:50:92:80:a5:42:
6f:7c:81:d1:08:85:b9:8b:db:74:a4:71:91:5f:44:4d:89:55:
0c:14:da:6a:12:a5:b7:9f:61:cd:ba:ba:67:65:01:65:05:57:
49:c6:16:84:ed:c7:d3:d6:2c:b3:00:1d:07:21:73:f0:b8:3c:
f2:99:3d:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org