Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/xHIYYEExfPb9jrJtQVpVgSKk5Zc.roa
File: xHIYYEExfPb9jrJtQVpVgSKk5Zc.roa (raw, json)
Hash identifier: 8fT7iEPOlkgGBhJ7lbDXYBp+fet1dvI17xXftHAwi/s=
Subject key identifier: C4:72:18:60:41:31:7C:F6:FD:8E:B2:6D:41:5A:55:81:22:A4:E5:97
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0E4B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xHIYYEExfPb9jrJtQVpVgSKk5Zc.roa
Signing time: Fri 07 Jul 2023 09:59:47 +0000
ROA not before: Fri 07 Jul 2023 09:59:47 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 142005
IP address blocks: 210.242.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3659 (0xe4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Jul 7 09:59:47 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C472186041317CF6FD8EB26D415A558122A4E597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:58:5e:93:f8:48:17:3e:c2:72:39:de:a0:8f:
85:1e:3c:81:aa:2e:3b:92:e9:20:1e:48:09:85:e1:
d7:90:94:4c:fa:37:5b:00:30:9a:92:b9:5b:eb:87:
e3:69:07:47:5d:3f:3f:8a:66:95:cc:56:d9:82:0d:
0b:8c:7d:db:74:4d:45:4f:0b:2c:cd:c8:d3:fd:3a:
76:8a:9f:62:c2:ad:95:bd:fe:c1:48:d6:ab:6b:e5:
3e:6f:88:c5:a3:13:d7:fe:88:24:ae:50:78:fa:0b:
e1:8f:01:e4:92:57:06:6d:30:33:ca:d9:f5:9e:1b:
5a:a2:12:be:c4:be:9b:df:2c:51:85:6d:2c:26:d5:
e0:4b:8a:93:66:4a:3b:65:46:82:39:09:b5:8f:dd:
6e:9b:6a:fd:77:a5:fc:78:bf:69:68:1a:33:70:ae:
49:1b:ed:80:18:e4:de:4f:ae:61:9c:c5:10:b5:72:
0c:38:1e:15:e8:76:98:b2:4b:de:30:d7:48:89:aa:
c5:54:60:ff:d2:2b:db:5c:7b:e6:d8:f1:ed:be:c3:
c5:d8:7e:6b:e1:cc:81:9e:60:af:c5:16:55:c7:20:
2a:97:1a:73:14:b6:9c:cc:22:4e:f9:e0:85:a9:78:
69:c4:5a:22:48:54:a9:5c:cf:a6:21:51:11:20:ed:
9a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:72:18:60:41:31:7C:F6:FD:8E:B2:6D:41:5A:55:81:22:A4:E5:97
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xHIYYEExfPb9jrJtQVpVgSKk5Zc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.123.0/24
Signature Algorithm: sha256WithRSAEncryption
07:55:aa:85:6c:38:21:59:db:c5:ae:dd:af:53:1d:70:10:42:
cf:9c:b2:45:9b:11:43:64:9c:3d:5d:95:9f:94:4f:3b:a5:41:
0c:ae:a4:d3:07:3a:3e:b6:78:5c:47:16:6b:e6:31:51:15:20:
60:04:3d:47:91:58:c2:86:84:6b:73:28:c7:46:7d:1a:36:63:
4f:76:c7:76:03:1e:fc:db:a0:d2:d3:64:96:46:62:41:cc:d3:
f0:2b:1d:46:c1:bd:eb:cb:b4:75:96:8f:e3:7b:b8:1a:1d:f7:
bf:31:a6:db:c6:5b:96:7f:6d:70:e6:f8:09:90:6a:85:57:6c:
7a:88:e3:a1:ca:65:13:d6:99:bd:42:07:47:cd:54:9e:11:34:
d5:ed:24:56:b0:44:94:d8:f9:ec:e2:60:45:e6:85:6f:8b:91:
3b:34:f6:6c:83:dc:7c:1c:64:cc:4e:e1:b1:5f:d8:b6:8a:1e:
c6:80:77:0a:44:b9:99:a3:34:8a:22:50:9f:d3:cf:e2:6a:f0:
57:fc:25:79:ee:9b:16:a1:b8:81:79:1f:b5:71:e3:05:77:35:
cd:33:5d:cb:32:ef:83:5b:98:0b:d0:79:fb:4f:84:73:dd:3b:
c3:04:c6:aa:a6:a4:5d:3f:71:51:6f:ca:89:d3:e7:ea:1d:68:
36:3a:56:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org