Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/fK-3uMdSSWJ5b5yAtztgC55uT2s.roa
File: fK-3uMdSSWJ5b5yAtztgC55uT2s.roa (raw, json)
Hash identifier: kAAr3lNIzMe3IVF1Or1p7VekBheHTRYb0DWk9kYog2g=
Subject key identifier: 7C:AF:B7:B8:C7:52:49:62:79:6F:9C:80:B7:3B:60:0B:9E:6E:4F:6B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/fK-3uMdSSWJ5b5yAtztgC55uT2s.roa
Signing time: Thu 15 Sep 2022 02:48:28 +0000
ROA not before: Thu 15 Sep 2022 02:48:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 33717
IP address blocks: 220.128.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7CAFB7B8C7524962796F9C80B73B600B9E6E4F6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:37:b4:c3:41:2d:25:a3:0d:f4:c6:a9:3b:46:
79:c8:a6:0f:1c:ca:c5:3c:15:43:2e:04:23:c9:96:
2e:af:f2:fe:ad:68:2e:dc:c3:74:25:f7:7f:b5:0b:
a9:77:1f:e3:bf:86:9d:84:ed:ac:ca:88:73:ac:22:
67:e8:73:8a:72:8d:b9:56:d7:13:c0:af:fe:3d:45:
93:c8:78:0f:3d:51:48:4b:ee:64:ce:00:52:f4:b5:
8c:2a:33:4f:a1:71:29:56:e1:b5:22:88:5b:b8:4b:
42:4b:fe:bc:b3:d9:35:17:69:4d:69:4e:41:e5:7b:
e6:68:56:e1:4c:44:32:34:e1:db:ec:f2:38:fe:86:
c4:a8:94:6f:cb:6a:97:c7:b8:10:3b:f2:7a:9b:05:
02:9c:bf:25:fd:5a:94:ac:65:b0:fc:c8:04:4a:52:
71:f7:ec:8a:c8:2d:76:f3:62:56:82:87:02:48:7e:
ff:fb:2f:2a:00:8d:26:c4:c1:7b:ce:a8:e5:5f:61:
6a:48:36:22:d0:ab:1a:08:30:97:bd:72:0d:5b:74:
50:ce:06:90:52:f4:bf:2e:af:55:81:9a:2d:ea:f5:
30:80:74:44:c0:b5:3d:f0:f4:ae:e3:f5:b6:86:18:
e0:bf:a7:df:b2:45:e6:0e:4e:05:bf:de:67:0b:0d:
77:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:AF:B7:B8:C7:52:49:62:79:6F:9C:80:B7:3B:60:0B:9E:6E:4F:6B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/fK-3uMdSSWJ5b5yAtztgC55uT2s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.55.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:43:e8:be:83:98:30:8b:fb:b3:f1:a3:b2:06:a6:cf:4a:64:
68:44:9b:29:61:28:e1:c5:7d:16:36:cd:ff:c4:dc:e0:26:32:
94:55:18:50:8f:c5:7d:f1:c1:62:78:3e:bd:e7:97:fb:4c:d6:
34:08:0f:6a:07:9d:af:5e:7d:e1:5a:02:e0:3f:de:28:d1:77:
38:73:77:2a:5e:2e:61:41:16:40:7c:ad:e3:59:7d:e2:2e:f5:
c3:da:5e:65:be:c7:35:83:f2:ca:3a:af:a8:27:5d:e3:66:54:
99:14:5a:4e:f0:7f:13:1e:6f:22:69:9c:1a:05:c9:9b:da:43:
72:d0:01:2f:28:59:e8:81:f3:6f:15:2a:8d:0d:f3:4f:60:06:
81:16:36:db:e1:ce:f1:cb:2c:dd:0a:31:2e:90:e2:3e:7a:87:
27:5e:ca:e6:55:b3:29:29:33:d3:7f:b9:8e:f0:2f:0f:09:26:
d2:5e:a6:9c:0c:b2:6d:ae:8e:07:30:28:8f:83:72:0e:09:bc:
6f:53:3b:a1:79:67:28:7e:dc:93:9b:33:04:dd:58:32:56:38:
65:a5:09:e4:0f:e9:1c:86:f5:b4:c2:fb:ad:90:46:00:b2:07:
66:bd:ad:fb:45:4b:52:52:9f:ce:29:24:74:fe:d4:bf:1c:61:
4e:bf:e4:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org