Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/zoL-RyCHaTZ0KKLVlcDEx_rU1MI.roa
File: zoL-RyCHaTZ0KKLVlcDEx_rU1MI.roa (raw, json)
Hash identifier: d6eGH8MN4sJgxhAiht4Ix6d3vSr6OSKBYb1jjCv82j4=
Subject key identifier: CE:82:FE:47:20:87:69:36:74:28:A2:D5:95:C0:C4:C7:FA:D4:D4:C2
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0811
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zoL-RyCHaTZ0KKLVlcDEx_rU1MI.roa
Signing time: Tue 29 Sep 2020 09:58:18 +0000
ROA not before: Tue 29 Sep 2020 09:58:18 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 15133
IP address blocks: 203.74.4.64/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2065 (0x811)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:18 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=CE82FE47208769367428A2D595C0C4C7FAD4D4C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b6:75:b2:fb:ec:df:1b:ed:58:e1:39:0f:51:
48:84:75:25:ba:fd:31:ff:d6:c8:7c:ed:5a:19:0e:
05:82:3e:49:3b:fd:9f:69:ff:53:27:d4:3c:a5:de:
4c:64:d5:dd:ad:95:53:ce:56:f6:31:e1:66:02:1c:
97:0b:2e:54:65:9a:61:34:73:bd:57:1b:83:82:1b:
0a:af:a5:a8:74:a2:23:99:69:88:fa:e5:98:0e:1c:
46:ee:52:3c:09:ff:da:56:0c:7b:40:57:c1:21:76:
76:c7:d2:e1:12:35:85:d5:4f:56:5c:d6:44:f7:fe:
c1:62:b5:5e:88:71:7e:01:34:de:33:df:96:9f:8b:
ae:95:a3:9c:79:df:b8:9b:44:b0:16:47:a5:8f:1e:
ee:bc:89:51:69:bf:44:c8:bb:7e:9f:51:84:96:f5:
b8:54:cc:99:22:23:c5:59:83:14:09:5d:88:e9:55:
50:f8:44:fc:17:8c:6d:e3:1a:4d:5a:f8:56:26:de:
31:34:ed:12:67:e8:a7:a9:54:ad:8e:21:d3:82:96:
f2:d0:6d:68:1c:cb:1a:28:79:c7:de:44:df:bb:28:
d8:d8:84:dc:66:e8:d9:9f:ef:2c:21:8e:3d:7d:f1:
5e:46:b0:25:cf:e3:8a:8a:5b:ec:ee:c1:43:3e:14:
3f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:82:FE:47:20:87:69:36:74:28:A2:D5:95:C0:C4:C7:FA:D4:D4:C2
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zoL-RyCHaTZ0KKLVlcDEx_rU1MI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.4.64/26
Signature Algorithm: sha256WithRSAEncryption
b5:c2:34:6b:c2:2e:e7:c9:77:35:bb:48:cd:bd:ff:c7:04:08:
fd:ff:53:3f:b3:b8:f3:c1:2f:f2:81:af:c3:b6:17:78:1f:9b:
c6:06:df:04:4d:40:05:de:38:a7:e0:3e:29:72:db:99:34:0e:
4d:b4:0e:9c:ec:e6:41:20:c7:af:9a:bb:51:dd:d0:28:7d:4d:
96:0f:0e:a4:c7:f1:57:77:94:93:27:a0:71:43:a1:d8:08:77:
ed:c9:89:5c:9b:c8:d5:58:9c:3a:82:ea:58:e8:84:21:39:0a:
50:2f:e1:f3:f3:14:5a:82:0c:a3:3e:6a:6f:38:1b:3c:81:d0:
09:e7:b7:b4:ef:5e:14:0b:6b:4c:64:58:18:83:58:dc:86:49:
37:66:b0:0b:2a:c0:52:e8:69:b8:d2:bd:df:f6:95:91:db:a2:
0b:b6:65:7a:5d:19:17:ef:29:29:26:53:82:a4:10:c1:71:ce:
a9:be:c9:98:cb:ca:db:5d:d1:d6:bd:17:62:9d:d3:0a:ce:3c:
6c:14:8d:4e:ff:52:4a:28:36:77:c2:a7:c8:1b:f9:4b:a6:32:
42:60:ae:57:e3:79:66:67:9e:94:41:0b:6e:ce:1f:97:a2:f0:
90:a2:29:57:34:56:cd:8a:ed:24:e7:10:d6:bd:f4:6e:44:1d:
a1:fa:31:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org