Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/9STrui1F6XiEbpQKlIYZlvIU5S4.roa
File: 9STrui1F6XiEbpQKlIYZlvIU5S4.roa (raw, json)
Hash identifier: XYzU3OVCOsWcTNk5bcOmYkphTixgRwrX1gyrZYTRuso=
Subject key identifier: F5:24:EB:BA:2D:45:E9:78:84:6E:94:0A:94:86:19:96:F2:14:E5:2E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0E68
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9STrui1F6XiEbpQKlIYZlvIU5S4.roa
Signing time: Tue 15 Aug 2023 04:06:36 +0000
ROA not before: Tue 15 Aug 2023 04:06:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 23675
IP address blocks: 203.66.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3688 (0xe68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 15 04:06:36 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F524EBBA2D45E978846E940A94861996F214E52E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:9c:ff:36:8e:b0:88:72:68:ac:ae:ef:0d:09:
43:a1:81:db:3a:ef:d3:62:62:6d:70:dc:d9:5b:41:
c1:5b:79:3f:c4:64:c0:92:33:51:dc:a3:36:ac:0c:
76:b7:97:86:10:31:88:2e:09:70:e8:c9:5c:53:d5:
e1:7e:3e:83:f5:de:d3:06:ca:96:cd:d6:96:a6:c7:
dc:8a:11:bb:fb:f5:a6:b1:da:45:b8:0e:5a:3b:49:
f1:63:fa:82:3a:91:28:d5:86:de:9f:d1:0d:41:6c:
8b:39:00:0c:d8:17:07:62:17:ca:f0:af:de:71:fa:
16:d8:f0:00:09:2d:90:f2:21:57:8b:b2:e6:0b:b5:
4e:5d:57:9c:21:2c:78:08:b6:2e:4c:ba:b0:bc:88:
81:a0:38:06:1e:2c:ff:2d:c6:6b:1a:c8:8a:ba:d4:
0a:24:49:ba:97:f2:ab:e1:5f:fd:42:b4:d8:02:85:
02:31:62:f3:56:46:70:f4:23:e5:be:be:e4:18:35:
35:c7:76:23:ac:3b:98:ad:9a:37:5a:9e:67:5a:21:
ef:6d:20:fe:ae:41:4e:d2:c7:d2:0e:28:09:88:c6:
38:6c:5f:7a:76:fe:92:e8:c6:21:44:1d:08:00:85:
d5:b2:74:3e:a0:8d:c3:c8:86:3d:ae:98:15:2e:7e:
38:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:24:EB:BA:2D:45:E9:78:84:6E:94:0A:94:86:19:96:F2:14:E5:2E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9STrui1F6XiEbpQKlIYZlvIU5S4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.100.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:24:5c:0a:15:b8:27:98:0d:55:fd:92:2a:8d:1d:9d:a2:f2:
34:77:37:f2:d2:52:82:44:e1:97:7a:3e:fa:74:83:b5:86:ea:
5b:4d:2e:91:c8:13:6c:8a:d5:0c:22:b7:9e:23:4c:96:0e:34:
ae:aa:f6:cb:d4:ef:bf:9b:8e:cf:20:b1:c1:51:76:ff:1e:37:
44:c9:4f:4f:3b:5c:9b:5c:32:09:b9:03:29:38:20:7d:c2:e8:
f7:75:f2:e5:21:2b:da:23:f8:70:2b:df:31:26:4a:d8:6e:f4:
e6:fb:55:24:ec:53:5c:28:b1:17:da:29:b1:6c:9f:22:5a:5b:
cd:4e:dc:2d:47:ba:a7:e3:b0:d3:bd:dd:61:90:a1:d9:3c:83:
68:fe:6d:82:c9:ed:ca:7d:39:00:bd:34:11:e1:2f:81:16:d9:
cf:ea:81:d2:08:77:5b:d2:79:34:54:b5:8f:39:a9:d4:17:5e:
1c:a5:df:54:3f:50:97:bb:f5:6a:8a:8b:e7:97:ae:d4:47:90:
50:91:94:02:15:4c:ea:fc:cb:c3:94:21:2c:94:4e:75:c8:e6:
68:b1:23:a0:63:d9:e5:21:34:ea:07:84:a4:0c:4c:52:74:50:
92:5c:e8:8a:66:64:ad:e6:38:3b:3a:a1:57:a9:f4:cb:69:a5:
ec:4d:b2:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org