Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ZNXHlbs8wV4_Z1VyBHo1QoOwzK8.roa
File: ZNXHlbs8wV4_Z1VyBHo1QoOwzK8.roa (raw, json)
Hash identifier: MV+wFH3kHacxlb+MYb6VIFcoQUI+F4OQ7GYZhTI2TD8=
Subject key identifier: 64:D5:C7:95:BB:3C:C1:5E:3F:67:55:72:04:7A:35:42:83:B0:CC:AF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 085A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ZNXHlbs8wV4_Z1VyBHo1QoOwzK8.roa
Signing time: Tue 29 Sep 2020 09:58:39 +0000
ROA not before: Tue 29 Sep 2020 09:58:39 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 114.24.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2138 (0x85a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:39 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=64D5C795BB3CC15E3F675572047A354283B0CCAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1c:53:86:79:2b:85:e7:66:be:6f:aa:a1:b7:
fa:89:2d:a0:30:3a:a4:20:cd:1c:d7:17:31:93:78:
9c:fc:9b:8a:7c:f8:37:a3:f7:98:84:d9:42:39:64:
a1:82:10:d9:06:77:69:2f:80:e3:9e:17:43:c7:53:
81:ad:07:f1:f1:a8:b6:89:be:3f:0a:d6:85:04:91:
b3:06:38:f9:7d:d4:79:6a:e5:be:1b:4c:03:98:dc:
ef:83:7a:66:e9:24:f8:0a:94:cc:9a:0a:e4:70:b2:
db:c6:a0:ca:73:95:00:c1:e5:d5:9b:e6:0d:d1:16:
1e:39:68:e6:91:8a:65:69:7f:5e:fa:2b:cd:10:3c:
d6:13:cb:0e:08:60:85:55:e7:80:eb:a8:fb:7a:cf:
99:36:0e:ab:f4:66:14:2a:19:09:b3:92:3f:3d:43:
7c:69:e9:f0:2b:b1:d6:27:3c:e7:17:31:db:75:c8:
71:4b:06:54:b0:42:f7:2d:aa:72:b0:10:63:5c:2c:
9a:31:57:69:a9:f2:c9:40:7a:8b:e1:93:ae:5a:a1:
26:26:67:77:ac:03:4f:80:0e:0e:3b:da:47:78:c1:
ae:7e:d6:2f:5f:c6:90:9c:5d:26:1a:26:8d:a7:15:
f3:7b:64:2d:14:10:7a:fd:92:47:28:65:ad:c8:b1:
fd:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:D5:C7:95:BB:3C:C1:5E:3F:67:55:72:04:7A:35:42:83:B0:CC:AF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ZNXHlbs8wV4_Z1VyBHo1QoOwzK8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.24.0.0/14
Signature Algorithm: sha256WithRSAEncryption
b9:c9:f6:89:36:b2:56:12:c8:c7:37:c0:b3:40:e1:23:75:f2:
ff:8e:6b:4c:1b:55:e4:22:3f:99:c2:6f:f3:14:8e:12:11:36:
e6:f2:3a:1b:e0:e2:87:28:3d:cd:61:c3:b9:a8:8c:eb:9b:bb:
5c:0d:56:21:3e:ad:ca:01:9e:a0:39:58:5b:98:e8:1e:ed:1e:
8f:b3:7d:d9:39:42:78:bc:9e:c7:fb:98:f2:d1:27:78:39:c0:
94:aa:90:d1:e6:54:7d:ec:50:27:1a:52:27:ad:4f:2a:5e:e5:
74:da:7e:98:42:ed:9f:e4:22:47:6f:ec:d6:cf:14:5a:c2:66:
00:5f:94:82:ae:c0:76:9e:0e:3a:27:b8:7b:60:ef:89:78:26:
e7:04:ab:fc:a6:87:32:8c:f6:25:51:50:83:69:d6:4b:bd:9a:
22:17:01:04:a6:2e:c4:cc:33:03:26:fb:3a:5c:02:c4:d1:49:
e0:99:b2:ae:50:2b:47:f1:fd:8e:60:14:96:5d:16:1d:7f:de:
82:c7:6c:03:b8:5f:f2:db:9a:04:5a:3f:1a:e0:b3:19:af:4b:
30:87:81:d9:7b:54:10:bc:e4:f7:9c:45:6b:37:7d:bd:a7:de:
03:2a:c6:9b:15:82:37:7d:21:d8:e9:eb:1c:75:cc:e6:4e:0b:
c5:de:8d:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org