Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/j1c0YkC4Uk68FWWNpsNemJ0VYmY.roa
File: j1c0YkC4Uk68FWWNpsNemJ0VYmY.roa (raw, json)
Hash identifier: J/iYOigAIQnE6M8EwTKn3bw/nmgoeOQn4L0hHGOgwNs=
Subject key identifier: 8F:57:34:62:40:B8:52:4E:BC:15:65:8D:A6:C3:5E:98:9D:15:62:66
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C45
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/j1c0YkC4Uk68FWWNpsNemJ0VYmY.roa
Signing time: Wed 29 Sep 2021 02:51:05 +0000
ROA not before: Wed 29 Sep 2021 02:51:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 33717
IP address blocks: 220.128.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3141 (0xc45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:05 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8F57346240B8524EBC15658DA6C35E989D156266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:52:c7:b8:0b:54:ae:2f:9a:6e:b7:f3:4e:5d:
a2:48:27:ed:f9:c8:e6:84:f3:b5:84:51:49:ec:ae:
65:18:58:7d:67:61:3d:e6:e5:4f:90:eb:82:95:fa:
7b:17:35:6e:a7:cc:b4:2a:47:65:8e:56:c2:95:b5:
2f:ff:55:e9:6e:83:2a:96:53:8a:1b:43:87:fd:91:
de:ed:51:a1:3a:4a:cb:6d:a4:b7:eb:3c:9d:00:f9:
4f:f1:6d:9c:da:2a:6d:36:df:b9:75:cf:95:ce:cb:
16:97:5b:3d:07:26:77:69:f3:69:0b:6c:a6:c5:3e:
b3:7a:ca:11:bd:de:ee:c5:f7:81:5d:e2:6d:77:14:
1f:83:92:5a:e9:cf:26:d2:dd:87:09:e5:5d:fb:61:
f4:3a:35:95:39:8f:51:79:07:2a:99:f8:1c:5d:60:
29:0a:6d:3a:22:e3:6f:03:3c:d3:24:cf:1d:a6:6d:
62:a9:70:21:5f:33:7f:5b:e1:fd:23:f3:2d:70:00:
29:43:97:47:fd:6e:9f:4d:ab:48:6b:05:96:68:14:
3a:e4:bb:b8:13:1d:3c:2d:21:fb:b6:55:e4:18:fb:
36:25:1c:ac:99:1b:4d:ca:e7:62:7e:ee:65:1e:8a:
b4:36:16:3c:d7:72:1c:b2:94:31:86:b7:9b:9a:48:
75:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:57:34:62:40:B8:52:4E:BC:15:65:8D:A6:C3:5E:98:9D:15:62:66
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/j1c0YkC4Uk68FWWNpsNemJ0VYmY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.51.0/24
Signature Algorithm: sha256WithRSAEncryption
44:b3:a6:5d:7e:cd:07:85:89:9d:ac:b6:fa:3e:13:5d:a0:e0:
81:e2:6d:bc:f6:ba:15:37:c5:4b:ac:c6:59:5f:71:c3:cf:b9:
c2:a6:2e:15:55:d2:6a:b0:76:b9:5a:9c:f4:2f:2e:2f:f8:4c:
56:66:17:f4:d0:56:e0:40:08:82:88:c8:3d:d5:e3:92:3d:fa:
70:2b:2a:d5:d9:9c:cb:c4:0e:5a:1e:0b:3a:c6:48:03:59:03:
e0:6c:67:25:9a:3a:57:76:ae:6a:6c:b0:8a:43:79:1b:04:84:
ff:5a:4d:d9:99:01:5d:e9:c8:45:72:89:7e:74:0b:bc:86:3a:
a0:54:2b:cd:12:ed:0c:28:21:e4:92:fd:13:26:06:4f:0f:e3:
bd:db:63:a3:b7:03:e3:fb:9a:8e:c8:f8:e0:86:85:4f:3f:4d:
9a:c9:39:98:05:2e:26:65:f6:77:5a:f0:9a:ee:84:64:de:6b:
48:f9:f9:1c:46:64:e2:6f:28:3f:e0:8a:10:70:30:66:0d:ff:
cb:dd:11:b9:b3:b6:4e:7b:cf:f6:52:9d:6b:e4:0a:4d:18:7d:
a1:3e:b1:cd:b8:9a:5d:94:f4:54:44:e7:fb:c5:cc:b0:da:20:
38:db:70:17:f5:50:8e:d7:9c:65:12:57:43:34:92:44:52:01:
c9:b1:83:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:04 2023 by rpki-client on console-fra.rpki-client.org