Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/zcOTCrts2jySJZPnY4EVOpSq4XU.roa
File: zcOTCrts2jySJZPnY4EVOpSq4XU.roa (raw, json)
Hash identifier: /5ZdzVzlA7YjsDhXmOTNlZbd4KjyR0fjyFi3SH+z6nY=
Subject key identifier: CD:C3:93:0A:BB:6C:DA:3C:92:25:93:E7:63:81:15:3A:94:AA:E1:75
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0E6A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zcOTCrts2jySJZPnY4EVOpSq4XU.roa
Signing time: Tue 15 Aug 2023 04:06:57 +0000
ROA not before: Tue 15 Aug 2023 04:06:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 23675
IP address blocks: 203.66.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3690 (0xe6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 15 04:06:57 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CDC3930ABB6CDA3C922593E76381153A94AAE175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:59:07:d0:e5:7b:d2:a9:77:54:b6:0d:b1:7b:
53:88:bd:b7:4d:b0:e4:41:b0:03:41:68:b5:f2:ef:
a4:ad:01:50:05:b3:42:43:0e:09:1c:cc:2b:5e:6d:
9a:fa:26:bc:3d:78:73:53:f4:8d:1e:f4:bf:4b:be:
19:a2:f2:61:4c:ac:fe:3c:d3:37:85:81:fa:26:42:
0a:3c:d9:c7:04:92:25:eb:2f:99:35:cd:77:a3:bc:
dd:7f:87:70:93:13:d0:36:a9:21:57:af:ca:4a:ea:
8a:09:65:b3:52:ba:c7:ab:b1:a8:51:66:eb:5b:89:
2a:a8:30:96:ee:d1:b0:60:f3:95:13:d7:03:0b:29:
b3:d4:00:89:36:7b:d8:80:1e:28:ea:f9:52:62:27:
12:77:32:5b:56:4b:a9:ae:7b:5b:ac:3e:80:a0:ff:
c6:0c:b5:5e:2c:8e:86:4f:65:73:46:06:96:5a:a8:
34:17:d5:96:c5:69:13:d2:12:da:54:6a:c2:8f:4a:
3d:14:89:4e:17:95:00:0a:cf:20:b4:1a:46:75:d3:
cb:cf:f6:6a:2e:46:9e:97:ae:3c:87:3d:dd:3d:ce:
5c:23:20:70:3b:b3:10:d4:47:7a:e8:83:e1:63:24:
bc:61:77:89:6b:81:46:c4:3e:4a:31:1e:14:ef:9f:
67:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:C3:93:0A:BB:6C:DA:3C:92:25:93:E7:63:81:15:3A:94:AA:E1:75
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zcOTCrts2jySJZPnY4EVOpSq4XU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.101.0/24
Signature Algorithm: sha256WithRSAEncryption
98:85:a7:50:35:31:31:e3:d4:90:47:02:ab:e9:8b:e2:20:d8:
2b:f9:55:c7:41:21:7e:6d:08:2f:12:72:cc:0c:d6:af:66:4e:
5b:da:0d:e2:d4:5d:a1:71:67:be:12:88:b9:1a:6e:c0:9b:dd:
eb:2e:48:ed:8b:95:ae:e0:48:a0:f9:82:8e:0a:22:62:2f:57:
d2:2d:db:ca:2d:00:56:39:64:1a:da:9d:74:dc:de:b5:ef:01:
76:25:7c:d9:90:c8:a4:fe:9d:83:13:41:91:01:a2:23:64:57:
66:07:6c:85:f5:d8:2c:9f:b8:4a:3c:53:5f:40:bc:21:30:45:
ac:b4:2b:66:f9:6d:df:72:f1:55:89:24:e1:d3:e9:60:27:e3:
9c:28:ab:cc:f2:be:f6:10:94:6c:59:c6:26:e3:30:49:d1:bc:
4b:db:51:91:8d:58:c0:db:de:b1:c8:4f:4f:64:f1:3b:ba:99:
05:f9:74:44:51:43:9b:7d:7c:02:4f:0a:66:73:a0:08:56:06:
b3:4c:9c:9f:ba:b1:1f:a9:7e:f7:3c:96:39:32:1c:ab:31:aa:
77:df:13:e8:f5:33:b2:a5:6a:87:bb:96:5b:68:97:b2:4d:cf:
f2:e8:65:d6:af:9b:c1:e6:7f:1a:e0:78:9f:1b:32:48:35:d8:
86:8a:5c:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org