Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/waIfVA9K55TZqwyWjFPQmpm-ea8.roa
File: waIfVA9K55TZqwyWjFPQmpm-ea8.roa (raw, json)
Hash identifier: XSLtPzqr2YiaBxQO6pFdIaNPAJvUq5WrB5O99F3eWAU=
Subject key identifier: C1:A2:1F:54:0F:4A:E7:94:D9:AB:0C:96:8C:53:D0:9A:99:BE:79:AF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0E6C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/waIfVA9K55TZqwyWjFPQmpm-ea8.roa
Signing time: Tue 15 Aug 2023 04:07:22 +0000
ROA not before: Tue 15 Aug 2023 04:07:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 23675
IP address blocks: 203.66.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3692 (0xe6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 15 04:07:22 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C1A21F540F4AE794D9AB0C968C53D09A99BE79AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:8e:fe:81:01:89:e3:f7:3c:9c:66:a7:b4:bb:
73:14:7d:59:e9:cc:85:e5:11:b7:37:8a:65:b5:10:
f6:bd:cc:de:c5:ab:46:61:20:11:e5:8f:68:f1:2c:
27:c3:ef:d6:5b:7c:c4:37:d0:e9:90:b0:b0:8a:5b:
68:86:10:f9:5d:95:08:10:3d:a2:75:0e:3e:13:a1:
08:52:27:bf:a9:78:34:71:6e:7c:76:ec:99:94:c1:
47:8d:1c:05:f6:24:96:73:7a:e0:42:40:fb:fa:e2:
6b:10:a7:46:6b:d7:52:89:d3:60:e9:95:e0:6e:ba:
80:e1:d8:6d:68:69:3a:f9:85:07:b6:01:03:fc:94:
97:59:87:3b:e3:0f:99:d6:46:44:b1:2f:38:fd:81:
64:f0:5f:b3:70:72:6a:59:6a:c0:94:2d:0d:3e:21:
f1:26:a5:1c:fd:f1:da:21:64:52:15:a7:ef:ab:df:
12:7d:87:7f:5d:df:a4:dd:63:70:ea:2a:fb:40:95:
55:87:bb:a6:fa:38:d2:f6:49:6d:97:6d:6c:c9:5c:
5b:5b:e6:de:00:dc:a7:85:85:65:aa:0e:94:d1:06:
0c:54:87:89:ba:a8:72:6c:58:23:10:1b:6a:17:2e:
70:d4:e2:ef:36:d2:a2:9d:6d:46:44:83:94:8e:42:
83:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:A2:1F:54:0F:4A:E7:94:D9:AB:0C:96:8C:53:D0:9A:99:BE:79:AF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/waIfVA9K55TZqwyWjFPQmpm-ea8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.102.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:ba:06:79:36:46:d5:81:81:bd:42:23:18:54:1a:35:95:af:
5e:5c:f8:c4:5b:86:4d:47:04:75:ef:59:a6:f1:4a:3b:b9:03:
ce:b1:5b:ee:1a:bc:0d:2a:c0:bf:d6:aa:03:1b:01:21:0b:bc:
af:c4:92:52:ca:e1:0e:3b:71:b6:7d:f4:22:da:04:aa:9c:a4:
4b:74:a9:6e:6e:ff:f1:f4:21:35:2b:a7:99:1f:e7:2e:33:3f:
cb:df:2f:76:48:5b:d8:e2:7d:f6:c0:c4:cd:55:c6:87:f8:af:
93:d3:1b:51:e6:c7:50:2d:b8:5c:a0:85:a4:be:8b:1d:94:1e:
29:ee:b9:4b:e6:d9:df:ba:2a:c4:fe:52:95:09:db:f0:27:7b:
33:55:6e:a3:b9:d0:53:be:8c:69:1b:8b:38:97:23:86:d3:39:
68:2b:85:0d:a6:ab:f2:40:19:80:5c:bb:9a:1b:84:64:86:61:
ba:69:6c:cc:45:61:9b:9e:a8:62:92:28:c3:69:bb:86:21:97:
bf:21:9b:6d:18:bd:46:58:2e:28:ad:7d:03:e2:fe:fd:a1:f9:
f3:8c:ff:8b:13:cf:92:66:e6:60:3e:3c:99:8c:60:a7:d4:58:
68:3d:7f:9c:c6:c2:7a:28:85:2e:5e:a2:c1:6e:0a:02:37:13:
b0:40:56:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org