Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/zt9cZyBg416RrDjQ2M889EIHrZo.roa
File: zt9cZyBg416RrDjQ2M889EIHrZo.roa (raw, json)
Hash identifier: Z+eHIU0RhW87uv5vejpG7wUn1gkj+7WsCX3QXCvuEME=
Subject key identifier: CE:DF:5C:67:20:60:E3:5E:91:AC:38:D0:D8:CF:3C:F4:42:07:AD:9A
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0E49
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zt9cZyBg416RrDjQ2M889EIHrZo.roa
Signing time: Fri 07 Jul 2023 09:59:27 +0000
ROA not before: Fri 07 Jul 2023 09:59:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 142005
IP address blocks: 210.242.118.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3657 (0xe49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Jul 7 09:59:27 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CEDF5C672060E35E91AC38D0D8CF3CF44207AD9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:79:1a:bc:cd:b8:b1:93:7d:ff:13:fc:c7:d5:
c6:b9:41:f1:f4:54:7a:56:7a:dc:57:45:0b:4d:51:
00:5b:f0:72:86:de:69:5c:6d:69:e5:a9:f2:e2:76:
a3:f7:91:61:63:4f:20:fc:8f:7a:3b:29:77:9c:c7:
f8:44:e2:c1:16:9a:cf:07:2d:59:ca:ec:89:b6:28:
59:8d:71:86:48:64:fd:12:8c:25:59:60:13:b2:3b:
8d:f0:bc:f0:ea:1a:41:82:98:d5:49:b2:61:77:fb:
8c:7f:b7:be:27:48:aa:29:8f:96:57:d4:fb:63:bb:
e6:50:96:ca:c9:1d:73:69:e3:6e:ce:d7:2f:5d:2b:
cb:47:47:fd:02:27:7a:97:6b:5c:ba:62:85:e4:de:
47:26:8d:dc:ae:cc:03:19:03:9a:b9:07:4d:65:1c:
75:8b:73:b2:58:38:34:5b:6a:f0:4e:da:1f:8b:9f:
8a:ea:e9:da:2e:6e:5d:6a:64:32:3e:7d:22:e2:60:
26:b3:89:c0:ec:87:45:ee:f3:7f:87:1d:db:71:d0:
0e:4d:92:8e:cb:64:61:01:c6:3b:11:f5:2d:d5:6d:
bd:44:75:81:2f:65:88:9b:8b:65:21:0e:18:2e:35:
e7:41:55:f2:d6:d2:f3:53:ff:37:b1:76:bf:08:43:
f4:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:DF:5C:67:20:60:E3:5E:91:AC:38:D0:D8:CF:3C:F4:42:07:AD:9A
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zt9cZyBg416RrDjQ2M889EIHrZo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.118.0/24
Signature Algorithm: sha256WithRSAEncryption
11:b8:eb:f7:36:18:cc:3e:f4:6f:ec:83:e2:df:b1:f4:46:2a:
c2:9e:41:e6:bb:ff:50:a3:f8:d9:f7:9e:a2:0c:4d:a6:de:33:
ba:8d:1e:33:2b:b9:55:b8:42:70:e4:ad:db:5b:b2:1c:8a:c5:
13:22:5e:5d:22:c9:81:f4:ba:48:e7:23:cc:61:a2:70:0d:5c:
7f:c4:20:b4:90:2c:c8:85:1f:d4:98:9e:9a:7b:d5:56:cb:39:
bb:f5:c1:6d:71:b5:bc:21:a0:21:b4:c3:8f:7a:58:35:79:df:
40:f8:d3:3a:99:d8:fc:39:db:0c:1d:3f:c1:cc:39:bc:8e:4b:
67:1d:f4:c4:4c:61:28:ae:a4:6c:ba:ed:09:d8:13:17:0c:3c:
72:fa:a0:ec:43:52:b1:b2:f7:53:0e:f2:5e:3e:68:9d:b2:ac:
fc:7e:a8:18:94:46:af:ed:45:26:19:52:de:43:c8:39:d6:b3:
49:4c:55:44:fc:28:56:d4:c4:68:12:40:83:35:7a:51:2d:70:
bd:01:a1:07:c3:fa:8e:cf:c2:ae:75:a8:70:0d:cb:89:12:18:
75:27:93:ba:4e:21:03:37:ca:ed:ad:9c:11:c7:7d:51:a7:25:
67:76:1e:b6:d4:e0:1b:f0:63:fc:61:cb:02:2b:86:c2:4d:58:
bd:10:fd:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org