Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ZPsC0S2GKIZZDpigu9pNJJn_Zs8.roa
File: ZPsC0S2GKIZZDpigu9pNJJn_Zs8.roa (raw, json)
Hash identifier: gIJo9C8qWTzfRLCcEnCBcvGCdIdsUe7qJYgVMiXov1o=
Subject key identifier: 64:FB:02:D1:2D:86:28:86:59:0E:98:A0:BB:DA:4D:24:99:FF:66:CF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D59
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ZPsC0S2GKIZZDpigu9pNJJn_Zs8.roa
Signing time: Mon 08 Aug 2022 03:51:37 +0000
ROA not before: Mon 08 Aug 2022 03:51:37 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 210.59.138.128/27 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3417 (0xd59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 8 03:51:37 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=64FB02D12D862886590E98A0BBDA4D2499FF66CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0f:a6:73:bc:a1:ba:f2:99:5c:27:84:70:54:
9a:ff:7f:39:ce:0c:ab:6d:80:3b:da:c8:14:3e:14:
80:87:7a:99:87:6f:70:1b:c8:76:6b:33:f6:ba:f2:
bd:56:cc:c9:bb:a7:d9:c5:bb:5d:de:57:e6:94:b1:
e1:33:8d:03:5f:5b:b9:5d:e5:d4:20:b2:ed:17:de:
2e:1d:6c:f6:8d:61:18:f5:12:3e:c4:66:dd:ba:8d:
c3:54:11:a0:a8:87:e8:df:53:1c:e3:e0:72:60:83:
de:01:b2:e7:0c:28:12:e3:9c:16:35:2c:94:c0:6b:
b3:35:66:de:50:79:d6:72:72:56:8d:57:c3:16:f8:
10:9e:3a:95:c4:a3:cf:a1:97:75:19:84:a3:a4:b0:
75:3f:58:60:b5:58:b8:ba:7e:49:85:9b:6d:a0:63:
42:34:fa:3c:c3:7f:b4:3b:ec:a7:07:c7:8b:d2:64:
b2:25:b9:1d:4f:ca:bd:6d:20:ae:ab:98:cd:94:8d:
36:93:58:b4:8c:64:af:f7:2e:dc:ad:47:55:26:05:
e6:4e:14:00:91:88:e3:83:85:db:33:3c:77:ea:e3:
f8:9a:a0:43:9c:47:b1:f6:ba:b5:e4:29:76:f4:4f:
b6:70:3e:8e:ad:30:7b:c7:7e:92:50:ec:8d:65:c8:
ce:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:FB:02:D1:2D:86:28:86:59:0E:98:A0:BB:DA:4D:24:99:FF:66:CF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ZPsC0S2GKIZZDpigu9pNJJn_Zs8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.59.138.128/27
Signature Algorithm: sha256WithRSAEncryption
5d:90:ff:94:2e:3e:2a:c5:fe:a7:4c:36:2e:4e:81:1e:b3:ba:
99:a7:de:68:76:27:b8:cf:a1:5a:23:8a:b8:31:85:27:04:a3:
c0:cc:4c:1a:91:40:60:15:6f:9c:44:74:7e:3a:9d:cf:be:9f:
c2:58:24:74:69:d1:ee:e3:e1:04:41:1e:bb:e0:69:1b:22:79:
49:1d:86:c7:b0:24:9f:77:c0:f8:2b:43:cb:bb:c9:cc:1e:41:
39:43:3c:87:33:3a:ba:82:fe:1a:1e:cd:8c:fb:c3:2e:1e:76:
25:4d:fe:8e:d5:0e:ac:85:f7:d0:5a:17:1d:5f:71:60:2a:c1:
03:a1:e1:3f:c6:b6:95:b5:5e:0f:f5:c3:f2:52:39:e1:6d:03:
30:8a:b6:5f:f7:49:bd:90:21:1c:06:6a:22:30:28:63:cd:bd:
dd:ee:b3:89:5a:b6:c3:5b:2e:fb:17:2a:08:c5:ef:51:bc:81:
be:58:a8:c4:aa:7a:ed:df:d8:ad:de:b1:9e:9b:5c:9d:7b:1b:
78:7b:2e:c2:fd:e3:27:37:74:3c:3e:98:a7:46:fc:c5:33:6a:
c2:69:13:ca:2c:42:75:29:84:b3:fd:38:aa:25:0d:67:62:a0:
6c:bb:3d:76:ec:c2:74:49:3b:f0:8d:a2:07:0e:dc:30:0e:69:
92:65:35:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:03 2023 by rpki-client on console-fra.rpki-client.org