Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/zi1s-rBoJMDS2ergCiciXLz40v0.roa
File: zi1s-rBoJMDS2ergCiciXLz40v0.roa (raw, json)
Hash identifier: YVUvGSL75JmVc7BulNEDJSOP3L8bdShvWCJ5xD252e8=
Subject key identifier: CE:2D:6C:FA:B0:68:24:C0:D2:D9:EA:E0:0A:27:22:5C:BC:F8:D2:FD
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zi1s-rBoJMDS2ergCiciXLz40v0.roa
Signing time: Thu 15 Sep 2022 02:48:16 +0000
ROA not before: Thu 15 Sep 2022 02:48:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 220.128.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CE2D6CFAB06824C0D2D9EAE00A27225CBCF8D2FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6c:86:f0:53:0a:b8:bc:7b:c2:86:9f:24:2e:
c3:3b:cf:b1:f8:13:33:8b:5d:2b:05:fb:3c:23:9f:
f6:03:47:cd:1c:c6:45:75:58:0c:66:75:f8:8f:7a:
46:44:91:1b:d3:f3:cc:f0:c9:6f:c6:5a:a5:3c:e6:
a2:fd:aa:33:e8:02:53:9d:6f:99:9c:28:97:7c:f4:
fa:ee:16:16:c7:48:3f:b8:a8:94:ca:ee:b6:f5:1c:
95:66:59:e2:38:61:b3:d0:1a:49:30:fd:a0:81:82:
2b:46:5d:0a:c5:d5:44:f1:87:45:8b:5e:32:85:31:
e8:0d:4f:ea:0d:b2:4c:8d:4c:43:95:61:5e:57:13:
85:1b:b1:95:c1:97:d4:9d:13:a8:d7:c5:f4:03:2e:
e7:8d:0c:12:e5:ed:83:ff:2e:ed:ce:41:bb:b2:97:
25:35:dc:a6:5c:ad:e6:aa:cf:71:85:b6:69:50:f1:
ef:35:d0:2c:ee:31:4a:a6:15:5a:e9:c8:e4:02:be:
6a:e1:49:6a:a2:5a:4c:6a:7a:33:6a:ba:70:9a:a5:
b1:03:3d:f3:76:8b:75:3c:82:57:42:d0:ce:d8:c6:
5a:2c:ac:4f:cd:9a:29:08:cd:81:bc:90:d5:a9:95:
7e:f9:82:11:5e:a3:a4:d4:3a:9f:ac:76:20:03:c4:
cf:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:2D:6C:FA:B0:68:24:C0:D2:D9:EA:E0:0A:27:22:5C:BC:F8:D2:FD
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zi1s-rBoJMDS2ergCiciXLz40v0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.67.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:1c:73:fb:1c:6e:a6:eb:b4:c1:f4:0e:3c:75:3c:c8:88:12:
5a:15:f6:d1:cb:9d:39:e2:ac:cb:4e:bd:fc:6f:ea:c1:c4:06:
8b:9d:83:15:2f:76:d4:1c:b4:ce:63:2e:a4:44:e7:38:32:3e:
5c:c1:27:83:51:50:5c:87:27:10:0d:70:fd:8f:29:b6:65:8a:
47:97:2f:ba:d0:b3:c1:03:94:3b:59:55:ba:9c:16:dc:26:1f:
ae:e7:41:bf:5e:f6:18:af:cd:a3:d0:35:e9:02:2f:97:e9:c5:
c3:9a:27:34:0d:e9:1f:f8:7e:da:03:27:37:09:8b:92:6c:32:
c5:0f:3f:e0:5d:e5:c2:80:01:05:fe:5f:3b:76:0a:14:a3:11:
83:01:cf:82:77:87:7e:a4:da:ea:68:a5:4a:fd:f8:1b:df:73:
b8:ec:b3:e0:c5:06:68:88:8b:ff:bf:25:1a:54:d6:4b:f0:13:
9b:32:21:37:78:6f:54:c6:ce:55:06:fe:52:24:a2:67:ce:81:
d7:22:d2:85:92:fd:93:5c:63:63:5f:af:3d:de:66:fc:8b:a6:
14:4e:ba:9c:7c:ac:e5:23:85:6f:1e:fb:a7:72:8f:ab:11:4f:
4a:6b:8c:16:e5:78:36:ef:06:3a:2d:38:12:ab:33:4e:d5:41:
86:d2:6e:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org