Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/i2hBSqJVZObt4zedCj1tzqtRMaA.roa
File: i2hBSqJVZObt4zedCj1tzqtRMaA.roa (raw, json)
Hash identifier: WNaR48gQJP5m3Y9FIiFKRwwh39PJmc94ORrS2f+ffiA=
Subject key identifier: 8B:68:41:4A:A2:55:64:E6:ED:E3:37:9D:0A:3D:6D:CE:AB:51:31:A0
Certificate issuer: /CN=43FF5C92CC4950A457A7327D168FBC465B218322
Certificate serial: 0953
Authority key identifier: 43:FF:5C:92:CC:49:50:A4:57:A7:32:7D:16:8F:BC:46:5B:21:83:22
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/i2hBSqJVZObt4zedCj1tzqtRMaA.roa
Signing time: Wed 29 Sep 2021 02:39:19 +0000
ROA not before: Wed 29 Sep 2021 02:39:19 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 4782
IP address blocks: 203.65.128.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2387 (0x953)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43FF5C92CC4950A457A7327D168FBC465B218322
Validity
Not Before: Sep 29 02:39:19 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=8B68414AA25564E6EDE3379D0A3D6DCEAB5131A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5e:39:0a:98:10:36:19:1b:01:62:8c:81:e0:
0c:c1:f2:b4:bc:7c:9f:02:cc:7e:c0:f1:33:05:9b:
6b:13:ea:cb:ec:5a:17:8b:f4:40:f2:73:33:a0:b9:
0d:15:9b:5c:7a:ee:29:df:09:3f:66:67:3f:14:f0:
22:a4:b8:fe:fe:ef:cf:a7:12:da:d2:44:26:64:ec:
a6:f0:a8:d0:0f:06:a6:dd:e6:78:c8:93:22:df:d2:
db:d4:e6:40:48:bb:d4:d6:13:5f:40:1a:a1:3f:ab:
ee:69:0e:ce:13:f3:b7:69:1c:6b:8d:cc:28:9c:46:
80:29:2b:22:7a:96:8b:79:ab:c8:18:4a:92:c7:1e:
e0:0b:94:2f:1c:8e:df:68:08:45:86:f7:c1:27:b7:
c0:d3:2f:c8:e7:a6:71:be:dc:c4:41:ff:61:1c:50:
d9:8e:49:a5:f9:0f:b0:69:72:b2:96:c8:d1:03:67:
b2:7e:3e:4d:5f:2a:50:5e:f8:9a:3d:17:d4:9c:d9:
e2:e5:4d:79:7e:be:f5:1f:92:7f:c7:b8:8b:2d:aa:
e2:a9:bc:5a:86:5f:93:b7:47:34:ab:11:af:49:83:
ad:4e:af:b1:c8:cf:f2:be:cb:44:c6:54:23:2a:ac:
8d:15:03:b9:89:96:c0:f0:af:4c:e9:5b:b5:01:07:
54:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:68:41:4A:A2:55:64:E6:ED:E3:37:9D:0A:3D:6D:CE:AB:51:31:A0
X509v3 Authority Key Identifier:
keyid:43:FF:5C:92:CC:49:50:A4:57:A7:32:7D:16:8F:BC:46:5B:21:83:22
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/i2hBSqJVZObt4zedCj1tzqtRMaA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.65.128.0/19
Signature Algorithm: sha256WithRSAEncryption
1a:de:aa:ad:5f:eb:72:8b:21:a8:ad:12:81:7d:ac:4c:f1:23:
ef:a5:99:c1:14:be:2b:73:f4:55:47:60:6d:02:1e:7e:09:eb:
d3:0e:26:a9:42:07:43:bb:00:99:cf:5c:58:5b:d3:27:99:12:
77:53:34:8a:f6:ba:a9:66:c0:67:c9:5a:e9:5a:b6:4d:eb:5d:
a9:43:2d:29:49:34:15:97:42:9c:72:e4:eb:57:ed:94:06:f9:
15:35:9b:3b:7a:c7:79:a9:7e:92:8a:97:71:c0:76:a6:fc:54:
ba:45:6e:91:1a:2e:03:07:a1:c5:42:0c:78:ee:7e:79:bd:a7:
cb:1f:d7:67:57:88:4f:0b:cb:fa:ce:f0:2d:4c:73:2f:a7:e1:
ef:b7:21:b9:81:ab:f6:82:ef:e8:54:99:a9:a2:f7:8d:f6:42:
d4:98:19:6c:38:61:fa:77:f3:2c:de:6d:4e:69:38:ae:fe:23:
81:da:3c:d0:63:2d:97:12:fd:19:14:0c:9c:25:08:83:4a:ee:
2a:9f:31:ea:4c:25:67:f8:0b:6e:a2:15:fe:aa:c3:e7:89:fc:
36:fc:91:3e:2d:a8:c0:50:6c:42:7d:4b:36:d0:d9:59:4a:32:
d1:97:d8:fb:e2:09:87:4e:a7:6b:1d:35:aa:69:8a:d6:b0:8d:
85:f1:18:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org