Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/sim0jCEtEbRm937olk21JFxfVis.roa
File: sim0jCEtEbRm937olk21JFxfVis.roa (raw, json)
Hash identifier: q+ODo2X6MYstvnFMo+XrUXPSMMwcu95LpVraHA55tAM=
Subject key identifier: B2:29:B4:8C:21:2D:11:B4:66:F7:7E:E8:96:4D:B5:24:5C:5F:56:2B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0875
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/sim0jCEtEbRm937olk21JFxfVis.roa
Signing time: Tue 29 Sep 2020 09:58:45 +0000
ROA not before: Tue 29 Sep 2020 09:58:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 10126
IP address blocks: 220.128.56.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2165 (0x875)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:45 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B229B48C212D11B466F77EE8964DB5245C5F562B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:51:50:9a:c5:29:7f:9d:d3:30:b4:e7:cd:84:
45:cc:45:f7:24:01:a5:b6:62:bb:fd:f3:49:3f:e4:
1d:44:6d:4e:ef:07:5b:56:24:42:c6:42:ec:f4:72:
82:88:98:8b:71:ee:53:17:05:01:be:4a:ce:ba:b0:
bd:2e:59:73:d6:98:db:61:31:6e:48:22:f9:27:7d:
b0:6f:44:e5:34:6b:2d:8b:37:52:ce:28:ca:96:5e:
a7:ee:19:85:4c:1f:0d:c8:e4:75:fe:d9:88:1d:84:
05:25:e8:79:05:0d:1c:83:20:3c:0a:fa:63:66:83:
ed:6d:6c:d1:f3:b7:3b:69:da:3f:34:32:a5:69:d1:
75:63:a2:6e:1e:82:3b:48:5e:f5:d0:1c:b6:56:0b:
88:20:d0:56:65:c2:d6:e6:a5:c0:d4:75:a2:56:75:
61:5f:08:f6:00:28:c3:d6:6e:58:3b:87:61:69:8f:
87:7e:3c:ac:36:5d:47:fc:cc:3b:48:ce:74:a5:16:
a0:00:a8:6f:4b:29:df:e2:0e:23:1c:f7:03:71:fb:
95:0d:c0:f4:66:4b:ff:6a:20:d4:ee:ff:6f:37:2c:
5b:79:45:5c:cd:bf:0a:32:87:b3:95:14:16:6e:db:
da:24:61:7b:26:9c:e5:8c:9b:49:a4:56:fe:9e:2b:
fc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:29:B4:8C:21:2D:11:B4:66:F7:7E:E8:96:4D:B5:24:5C:5F:56:2B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/sim0jCEtEbRm937olk21JFxfVis.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.56.0/21
Signature Algorithm: sha256WithRSAEncryption
0c:17:3a:38:2c:5f:68:85:e4:f9:ae:03:fa:84:88:2d:e0:1c:
86:52:1d:a1:45:0b:cd:2e:ab:e1:36:1f:b2:6c:76:4a:41:87:
12:32:78:51:fc:22:f3:cb:c4:d8:48:0e:73:f0:ba:78:b9:4a:
d7:21:42:e5:d5:0e:b4:24:d2:15:b6:2f:90:7c:13:e3:b7:e4:
4f:2c:0f:d2:53:25:9f:16:6a:e0:5b:d0:23:83:0f:90:72:94:
32:d6:16:64:77:9c:21:bc:7f:01:11:52:2e:62:1a:52:fd:c4:
ea:d7:de:ee:99:d5:25:93:96:47:27:19:5f:c4:f5:d5:d3:0e:
8e:60:a3:c2:51:38:cb:51:17:35:c9:a0:66:ad:e5:47:33:89:
9e:f5:5c:85:9b:1e:f7:69:58:62:f3:0f:db:33:3f:2b:03:10:
46:82:03:93:9d:0f:b8:86:ce:03:de:4f:2f:08:2f:29:d7:f6:
07:64:c6:27:92:0f:e3:a2:27:f9:90:e3:6f:3e:df:ab:c5:5f:
67:9a:90:8b:bc:ec:fe:5f:c4:5c:ab:3b:ad:b9:07:68:c7:ed:
2c:df:9a:3c:d2:64:81:55:90:05:e9:37:ff:e5:be:10:36:2a:
01:b2:22:c3:4f:78:1b:d7:0e:fe:b4:21:be:43:ce:3b:36:aa:
65:de:61:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org