Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/lklMu-Bzehf7GApaYcUyzIVmubc.roa
File: lklMu-Bzehf7GApaYcUyzIVmubc.roa (raw, json)
Hash identifier: 6OcTKRdEyxtSjvyx35xpdlBAquSCIb/MIcrmR1zWgIY=
Subject key identifier: 96:49:4C:BB:E0:73:7A:17:FB:18:0A:5A:61:C5:32:CC:85:66:B9:B7
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AED
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lklMu-Bzehf7GApaYcUyzIVmubc.roa
Signing time: Sun 07 Feb 2021 11:42:25 +0000
ROA not before: Sun 07 Feb 2021 11:42:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10126
IP address blocks: 220.128.64.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2797 (0xaed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:42:25 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=96494CBBE0737A17FB180A5A61C532CC8566B9B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9e:16:ce:06:b1:ac:aa:0d:b1:57:30:87:0a:
a4:79:8c:e4:d3:f0:53:06:e2:d2:87:44:ae:41:0e:
6d:29:c5:92:6d:a3:7d:2e:5e:bf:cc:5c:5c:91:82:
d5:11:ca:f6:af:50:6e:f0:52:cc:ac:9e:c3:e3:8e:
71:81:20:c8:df:89:69:17:6c:2f:d8:fb:d0:dd:a7:
51:bd:06:11:45:b8:bf:2a:50:c5:fb:8b:6c:af:c9:
a5:9f:ec:18:82:fe:32:a4:cb:ca:77:fb:d6:69:8d:
be:45:d2:d8:11:02:12:69:31:3e:73:7e:78:2c:ed:
80:b5:27:54:23:11:53:fe:34:3e:ff:45:b5:0a:47:
eb:e3:fa:92:d5:da:0d:e9:b2:40:39:16:dc:f6:09:
d5:ed:9e:7a:92:b0:b6:f0:a5:d6:eb:f5:96:5c:c8:
88:42:d4:d7:f8:e8:3c:b6:81:3b:8e:23:30:80:95:
97:97:bc:a2:4d:01:44:3c:3e:33:5c:0c:e3:6b:cc:
fe:4a:be:fe:49:b7:0a:f5:16:ee:ba:ae:ae:b4:dc:
ae:e3:75:7b:74:81:af:9f:8b:c6:c6:ad:bb:28:8f:
82:e8:ea:fb:a0:df:86:4a:16:42:0f:e9:5c:aa:55:
49:5a:90:ca:6e:0d:8e:40:ed:f7:87:21:cb:6a:74:
bf:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:49:4C:BB:E0:73:7A:17:FB:18:0A:5A:61:C5:32:CC:85:66:B9:B7
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lklMu-Bzehf7GApaYcUyzIVmubc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.64.0/20
Signature Algorithm: sha256WithRSAEncryption
25:4c:d0:0d:5b:73:a2:15:40:16:9c:22:e0:39:ca:d4:5a:5d:
0c:6d:91:31:ab:05:04:39:78:ab:80:a4:64:35:a2:b1:c2:4f:
62:0c:ae:30:ef:e2:ac:9b:cb:e5:d6:0b:88:7a:19:14:0d:0b:
87:4d:3b:c1:93:07:9b:96:70:24:08:f8:0d:98:94:e1:7b:8e:
73:d3:d3:f4:c4:65:61:96:37:75:25:c9:fa:a1:d0:45:1d:db:
d3:e0:9a:ff:72:17:d2:87:4d:73:ec:60:10:ef:16:0e:9c:82:
89:47:ac:72:8d:3d:d6:30:9f:97:20:0f:ac:4f:30:a8:45:12:
f2:5a:0a:8c:7c:43:8d:57:ba:f1:24:54:2a:2a:12:92:34:58:
c6:3f:db:2f:50:e1:42:49:c7:95:cd:f3:8e:31:24:c1:3f:2e:
61:e5:cb:de:d2:8f:bf:3f:4c:a6:b6:83:75:b9:da:23:d5:dc:
8c:c4:e6:7c:55:b4:5d:b4:d1:d5:0b:80:e4:cb:3d:a1:6c:fe:
a7:6b:2f:3b:48:e8:ce:80:45:85:6a:7b:9c:aa:9d:30:e3:5c:
cf:9f:e6:0d:ae:78:f2:a4:49:3e:d4:2b:13:77:98:cd:a0:a5:
3d:d2:e9:bb:ff:87:c7:43:46:79:a6:25:26:d1:a2:4b:6b:5d:
9e:b0:15:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org