Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/wML_Dju2EM3JsTwwdC63JdngAj8.roa
File: wML_Dju2EM3JsTwwdC63JdngAj8.roa (raw, json)
Hash identifier: R7ddvnwqU+aYEa2DfUQ1JUf/IIH2Kw+fuI+10Y3Lf/0=
Subject key identifier: C0:C2:FF:0E:3B:B6:10:CD:C9:B1:3C:30:74:2E:B7:25:D9:E0:02:3F
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AE9
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/wML_Dju2EM3JsTwwdC63JdngAj8.roa
Signing time: Sun 07 Feb 2021 11:40:58 +0000
ROA not before: Sun 07 Feb 2021 11:40:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 33717
IP address blocks: 220.128.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2793 (0xae9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:40:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=C0C2FF0E3BB610CDC9B13C30742EB725D9E0023F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c2:8c:b5:3d:8e:4a:8e:6d:81:0e:80:51:42:
6f:07:a2:ef:ef:d3:9c:e2:57:7f:37:5c:ae:ed:13:
51:4a:61:a4:5b:2b:f0:27:01:70:d5:32:8b:a8:05:
7b:20:ed:42:b6:52:3f:a6:25:04:cb:ff:b3:c2:65:
30:02:37:a6:7a:39:a2:58:53:48:cd:a4:3f:b8:1b:
82:10:8a:95:b1:0c:52:f8:29:44:ef:7e:c7:9a:21:
55:40:72:4f:49:df:59:04:2f:d7:25:28:95:52:ba:
da:33:31:fe:d6:0a:f4:63:68:dd:08:e2:f7:7d:89:
81:2b:78:94:6e:6e:6a:ed:33:61:e9:90:f0:92:7b:
49:13:49:db:cd:55:5b:17:c3:42:34:f5:e2:71:2f:
4d:ca:b6:4c:27:b3:3d:b8:72:12:f6:69:e6:06:d2:
48:64:de:8b:36:c1:a1:84:e8:d7:de:b8:87:58:35:
eb:41:28:30:03:4b:ea:53:68:07:89:25:e6:ca:23:
0e:8e:3c:40:c6:ae:7f:da:d9:1d:03:0b:9b:9a:4f:
58:0b:a5:3a:a6:f5:5f:14:f0:a8:8a:2a:85:21:59:
3a:b5:b4:94:42:51:79:04:23:1e:68:6d:f5:49:12:
41:a3:d4:e1:11:5d:5c:4d:41:15:2c:b8:ca:ed:db:
0c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:C2:FF:0E:3B:B6:10:CD:C9:B1:3C:30:74:2E:B7:25:D9:E0:02:3F
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/wML_Dju2EM3JsTwwdC63JdngAj8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.55.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:75:09:63:86:af:f3:fe:fd:30:c5:dd:39:33:97:ea:61:3b:
39:1f:a0:5c:95:89:bb:5e:d7:19:05:c9:de:7d:e2:de:df:f6:
f0:f1:8d:37:53:d9:fd:05:73:4a:0a:1e:a4:09:d7:df:cc:a4:
5a:64:0f:3d:2c:13:83:38:3b:f9:25:b6:ba:4c:da:ed:57:31:
36:ca:7e:27:26:7f:e6:bd:8d:68:2d:7d:d1:3a:c2:9d:d7:35:
8d:bf:28:13:38:32:b4:c0:de:db:6e:3e:9b:a1:76:51:c7:d1:
ec:06:a1:fd:7b:2e:35:ba:7c:04:f0:f1:24:d1:94:be:48:d6:
c2:df:91:38:de:fc:2a:8b:23:a7:fc:66:13:07:40:95:61:5c:
4c:d2:88:11:42:29:9f:cc:9b:42:dd:d0:41:2e:ef:7d:a1:a0:
91:d7:82:34:f9:94:30:2b:d1:fb:e7:d4:b2:45:d9:28:d7:9b:
49:e5:93:98:85:cc:03:7f:48:51:d3:e4:7d:97:08:84:28:03:
59:c1:88:bc:05:84:ca:19:bb:68:75:3f:f7:dd:78:d1:91:4e:
67:59:18:59:94:bd:7d:f0:db:8c:63:21:0b:36:1d:11:18:81:
f7:7b:90:87:e5:95:f1:4d:65:98:c4:f1:2d:82:14:53:de:16:
46:a6:9e:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org