Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/kczge1EaUb17_PTJX_bHi0NaMEw.roa
File: kczge1EaUb17_PTJX_bHi0NaMEw.roa (raw, json)
Hash identifier: e4aLtIMj54MozBG7vGHbcHMTx7RI74+gAu4oligJfOo=
Subject key identifier: 91:CC:E0:7B:51:1A:51:BD:7B:FC:F4:C9:5F:F6:C7:8B:43:5A:30:4C
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kczge1EaUb17_PTJX_bHi0NaMEw.roa
Signing time: Thu 15 Sep 2022 02:48:18 +0000
ROA not before: Thu 15 Sep 2022 02:48:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9505
IP address blocks: 220.128.48.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=91CCE07B511A51BD7BFCF4C95FF6C78B435A304C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f0:f4:57:f0:32:a8:3d:4b:f3:d0:73:58:a2:
13:42:80:b0:6b:f0:0b:68:6d:ef:88:db:37:07:8c:
a1:24:00:98:74:b6:ef:1c:95:50:68:fd:60:78:e4:
ed:64:b6:15:18:be:d4:77:a0:06:a0:74:98:7c:21:
86:36:3f:6f:71:d9:b1:8c:7d:40:13:4f:37:47:fb:
1f:a1:da:67:51:ff:4a:f9:44:78:4f:12:c5:c2:b2:
e5:35:65:ae:f0:19:7f:64:21:31:c8:d6:79:01:ae:
ea:c4:3d:84:61:ce:cd:ef:fb:5d:8e:5c:49:a6:cb:
55:2c:eb:01:e3:ad:cc:df:7a:df:50:e1:e8:2f:b7:
43:dd:0b:15:c7:3a:1a:69:69:ca:89:e3:9e:77:d3:
0e:f8:98:4e:b0:c9:e5:48:26:d4:f1:2e:b7:91:36:
23:9d:42:c6:2d:5e:37:f8:8b:11:3c:61:19:d6:fd:
48:ec:26:b4:5c:b8:4d:a8:f2:23:24:28:ea:29:ee:
38:04:5d:e1:92:32:61:33:8a:7c:21:a2:69:f4:65:
83:11:73:73:80:fa:fb:ee:98:0c:8a:97:c8:60:f5:
ba:75:fb:7b:ba:2e:4c:87:42:29:b5:ce:d3:9c:48:
a2:bc:f4:3d:3f:a5:96:8d:23:ca:2c:05:22:bf:18:
92:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:CC:E0:7B:51:1A:51:BD:7B:FC:F4:C9:5F:F6:C7:8B:43:5A:30:4C
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kczge1EaUb17_PTJX_bHi0NaMEw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.48.0/21
Signature Algorithm: sha256WithRSAEncryption
c6:cf:bc:3e:42:8f:8b:3d:bb:8e:ee:63:e4:05:4f:cb:ac:61:
75:c7:ae:83:e5:c6:a3:6c:5b:83:bb:a1:a7:76:a6:b9:c4:c0:
3a:74:45:d2:dd:d2:98:5e:59:84:f1:f8:ba:c3:61:b8:e8:3b:
f5:b4:4e:d6:af:e8:e6:8a:d8:92:1d:cf:32:5e:58:60:58:03:
60:7f:89:08:46:18:7b:5b:62:aa:49:e3:ff:51:f2:08:95:8c:
e9:be:55:ee:b2:66:52:7d:a6:22:49:42:51:fe:cf:a1:8a:6d:
49:11:66:f1:f5:f3:f8:17:fb:b5:6c:4a:c7:e5:24:ed:fe:19:
e7:fc:08:f5:f4:5a:5f:9e:d4:53:ca:af:ab:9b:22:06:0d:ac:
f0:ef:93:04:4a:30:f6:e0:26:57:bb:6c:bc:35:6d:a4:31:63:
44:2f:9f:cd:d4:c6:d9:b0:d6:75:a1:0f:51:85:0d:84:8f:93:
60:89:5a:1d:3c:95:b7:d6:fa:74:98:d0:fb:b6:c3:56:a3:dc:
af:43:c4:df:7a:9d:96:10:46:7c:58:cf:5e:79:05:1e:c9:19:
ad:ad:64:75:6f:4b:73:cb:9f:cb:32:19:0a:f5:62:a2:05:0c:
e7:8e:21:d4:c9:ea:5e:b1:34:47:a9:36:ea:69:ad:aa:23:a8:
be:43:57:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org