Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/hTUtdUTlLxi6Y3IC8w-CikILxs0.roa
File: hTUtdUTlLxi6Y3IC8w-CikILxs0.roa (raw, json)
Hash identifier: 4XvosqHfdd4/zbokKS4D4HAwiXySV2cj7GrnE+LX3s0=
Subject key identifier: 85:35:2D:75:44:E5:2F:18:BA:63:72:02:F3:0F:82:8A:42:0B:C6:CD
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0827
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hTUtdUTlLxi6Y3IC8w-CikILxs0.roa
Signing time: Tue 29 Sep 2020 09:58:25 +0000
ROA not before: Tue 29 Sep 2020 09:58:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17421
IP address blocks: 223.136.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2087 (0x827)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=85352D7544E52F18BA637202F30F828A420BC6CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:f5:bc:1f:67:f4:32:be:f1:66:3c:a1:c6:0a:
26:f3:e4:d0:9d:2c:3e:65:15:97:df:d7:11:95:90:
16:55:4f:2e:05:5b:da:e8:f4:c1:4a:f6:ec:99:13:
ba:ed:ec:ca:fd:43:58:19:2a:ea:c8:8f:a4:20:4f:
d7:cd:97:92:0b:94:73:9e:03:de:ac:5a:f7:7b:8f:
29:93:f6:04:97:9c:0a:49:fc:61:0f:08:07:68:dd:
04:ab:95:9b:2b:c2:d4:e1:90:0a:98:ce:09:fc:a7:
86:22:ad:49:66:54:fd:04:4c:bb:ac:52:fb:7e:d0:
38:25:d5:b2:77:2b:ba:51:e8:85:b4:9d:44:54:d1:
7a:61:10:00:52:b1:aa:e2:88:de:50:5c:89:51:0e:
9d:87:40:7c:8e:a8:11:7c:6e:3e:61:fc:84:a2:d3:
38:2c:a9:01:08:e5:f9:aa:ac:3e:cd:47:26:8a:fe:
7c:53:4e:f1:eb:b6:e3:92:c9:60:4a:a8:ef:42:76:
ec:09:15:cd:b3:d8:2f:1b:aa:5a:b9:fb:84:70:16:
7c:51:ab:58:59:4e:14:5a:2f:70:8c:e6:75:4a:43:
ca:15:c1:bb:2f:47:5e:82:65:bd:52:94:f7:d9:aa:
2a:44:dc:26:9e:99:9c:d6:66:15:4b:88:b4:92:ed:
4f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:35:2D:75:44:E5:2F:18:BA:63:72:02:F3:0F:82:8A:42:0B:C6:CD
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hTUtdUTlLxi6Y3IC8w-CikILxs0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.136.0.0/13
Signature Algorithm: sha256WithRSAEncryption
a2:bf:d8:98:55:21:22:0e:c2:9d:3d:70:e7:9e:1a:ab:d8:82:
97:50:f3:db:19:0a:1d:71:52:1e:bd:fb:bf:21:16:09:30:ab:
24:dc:04:1a:da:ed:de:7e:5a:44:32:38:fa:c1:f9:dc:a3:b6:
1a:c1:d5:05:5f:3b:d2:56:eb:e2:cb:85:0e:04:4a:89:c1:9a:
30:1a:5e:b4:25:82:90:b9:7e:1d:11:6d:67:d7:c5:89:74:ec:
7a:7f:91:2f:e3:51:c5:9a:6e:ed:5c:d0:da:08:b6:ff:d8:9f:
ab:ae:6c:db:ff:ad:10:4e:14:e9:69:8f:c6:a5:79:cb:96:7c:
48:d3:33:0c:a8:b6:59:c3:97:e4:40:42:63:d4:1d:6f:c0:0b:
07:02:5d:53:66:68:7d:0e:c1:a7:f7:83:58:41:fb:73:f8:f5:
21:cd:02:ae:a4:76:ce:7f:31:b1:19:16:a3:00:5f:22:61:aa:
e6:24:d9:ea:fc:43:9c:0f:29:ac:01:68:f8:61:f0:c3:34:70:
8f:a7:c3:23:e5:dc:9a:ce:3e:fe:15:21:5e:ba:e8:81:4d:30:
94:74:7e:f8:78:fa:d9:dc:6f:11:c4:98:e9:bd:52:92:7a:e9:
a0:89:cd:43:86:74:4a:3a:2f:35:df:f7:23:23:e8:f4:d2:9f:
24:49:be:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:55 2023 by rpki-client on console-ams.rpki-client.org