Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/i65kC3N-CZiLiIOeXacA-9YbtRI.roa
File: i65kC3N-CZiLiIOeXacA-9YbtRI.roa (raw, json)
Hash identifier: CGf9AJLCcifgbiiqjHmxaA2qjeLdgNHfb6cNHXNy24A=
Subject key identifier: 8B:AE:64:0B:73:7E:09:98:8B:88:83:9E:5D:A7:00:FB:D6:1B:B5:12
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0B0F
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/i65kC3N-CZiLiIOeXacA-9YbtRI.roa
Signing time: Sun 07 Feb 2021 11:47:17 +0000
ROA not before: Sun 07 Feb 2021 11:47:17 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17421
IP address blocks: 221.120.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2831 (0xb0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:47:17 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8BAE640B737E09988B88839E5DA700FBD61BB512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:08:bc:2e:69:bb:96:66:13:4f:8e:fd:a1:ef:
8b:2b:13:78:c9:c5:33:0d:a6:2c:17:e0:97:6e:f8:
7c:94:07:b5:51:76:55:20:41:98:ad:72:aa:77:9f:
1b:8c:18:7d:4b:a3:36:f5:c8:83:0f:91:3c:1b:32:
28:fb:21:b8:93:2c:cc:c9:e7:8f:f0:7b:ce:d9:e0:
85:c9:e6:39:cf:fe:d5:dd:be:1f:20:0d:81:1d:8f:
8f:ed:ea:35:cb:a0:a7:59:58:d9:89:bc:18:3b:20:
be:7a:7c:3f:77:a3:34:f6:d0:f2:27:a2:f9:00:56:
f2:41:7a:77:3f:8e:1f:55:0f:37:7a:76:4d:56:92:
da:d1:16:73:ba:e2:ad:bc:ff:9b:2d:8b:5f:5e:13:
10:4c:11:eb:80:89:95:18:6c:9b:55:f1:d1:11:34:
11:6a:67:c8:be:13:12:19:e4:c8:0d:38:d6:81:b9:
7c:29:ef:f6:ae:eb:b9:74:58:17:69:ac:35:2b:32:
0b:22:8c:5a:80:ed:c0:b0:54:71:ab:58:1b:c5:da:
a0:47:e5:aa:e6:20:b1:78:78:e2:f2:92:e5:86:9d:
da:9e:b7:1f:04:a1:1d:d1:71:a7:e6:ee:0c:3d:28:
69:42:6f:44:08:54:0d:99:f2:d6:40:84:51:ae:87:
e4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:AE:64:0B:73:7E:09:98:8B:88:83:9E:5D:A7:00:FB:D6:1B:B5:12
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/i65kC3N-CZiLiIOeXacA-9YbtRI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
221.120.0.0/18
Signature Algorithm: sha256WithRSAEncryption
a2:85:08:a4:ec:f8:3a:41:4a:fd:42:c2:1c:ab:31:50:23:21:
ce:09:28:6c:fa:b6:33:6b:32:63:6b:5a:55:bb:13:f6:3e:91:
12:b4:b6:eb:d7:a4:eb:f0:e3:d7:d6:2a:49:21:eb:a8:83:69:
ee:06:d4:87:46:6a:d8:d5:d3:4b:55:b7:02:34:2c:78:fe:03:
3f:41:ff:59:b8:ab:c3:e8:73:f1:2d:1f:e1:50:65:b6:3b:28:
ab:dd:08:98:dc:b3:f2:eb:0e:ab:76:0e:f5:27:2d:74:df:2d:
c1:06:85:a2:c3:0e:71:26:4c:44:82:03:01:31:c7:2c:af:44:
9c:69:dc:26:74:2b:78:cb:1e:9d:e5:e2:ac:33:5b:74:21:db:
5b:7a:f4:17:53:c8:f6:81:14:02:79:5d:32:a4:76:8d:8d:25:
a5:b4:4d:de:5c:02:ba:ab:a5:65:87:19:3c:4f:36:a0:c3:40:
e2:78:22:0f:85:bf:9a:e2:ea:0a:cc:a9:f8:30:ee:6a:fb:3f:
49:08:b5:f7:2d:f5:d5:02:1a:e0:cd:d0:2e:c7:ac:3c:2c:c4:
08:ce:19:0f:07:e2:33:c7:02:32:7c:2a:1e:8f:a8:14:db:62:
a3:7f:08:72:dd:6d:c7:90:96:9c:c0:43:2b:57:f3:2b:d1:dd:
d3:e3:17:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org