Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HYA/Yoz-FO8QRlyNJyyv-zVZtyeblsE.roa
File: Yoz-FO8QRlyNJyyv-zVZtyeblsE.roa (raw, json)
Hash identifier: ryI7Kmv6YpVvpjdJQ9yhQvpcvS+xePrieaqw804wBkc=
Subject key identifier: 62:8C:FE:14:EF:10:46:5C:8D:27:2C:AF:FB:35:59:B7:27:9B:96:C1
Certificate issuer: /CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4
Certificate serial: 0A36
Authority key identifier: 0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Yoz-FO8QRlyNJyyv-zVZtyeblsE.roa
Signing time: Thu 15 Sep 2022 02:49:14 +0000
ROA not before: Thu 15 Sep 2022 02:49:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 10085
IP address blocks: 114.29.240.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2614 (0xa36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4
Validity
Not Before: Sep 15 02:49:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=628CFE14EF10465C8D272CAFFB3559B7279B96C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:39:46:d9:ed:b6:f5:bb:eb:30:fe:e2:11:24:
78:64:0f:86:6e:c7:d9:bd:85:1c:25:28:15:27:9c:
89:42:e1:b7:ea:d9:d9:e8:62:1f:4d:71:f2:35:68:
f2:d1:fc:82:aa:88:00:aa:97:3d:3b:eb:5d:c0:ad:
e7:4f:61:05:04:f8:44:d6:61:ed:aa:d6:70:59:d8:
f8:2d:bb:07:35:04:64:e8:4d:34:24:35:d9:58:00:
b5:cb:7d:cf:e1:b9:fd:04:8a:35:19:cf:e0:db:06:
4f:05:da:22:55:38:a3:0e:7b:34:83:b3:08:9b:a3:
56:ba:c1:a1:de:a3:76:db:68:0b:db:22:d5:8a:63:
1d:0d:16:5e:1b:bc:68:9b:67:5b:f8:c8:08:aa:07:
cf:ba:bc:64:ef:c4:4d:dc:65:92:b9:a6:6c:f2:95:
b0:fb:19:e2:4f:59:c7:7a:be:42:ec:f9:b9:ea:c2:
93:ca:85:57:da:93:23:41:a0:a7:23:30:78:fb:8c:
9e:68:6d:82:e5:0d:6d:0b:ba:07:86:80:6c:f3:4a:
61:dd:65:af:28:d0:d6:75:05:ef:4a:1d:c1:6c:34:
a3:98:b3:5e:57:0b:4c:ce:a4:ef:7c:21:c6:ba:94:
12:94:2b:80:95:fe:c8:fb:8c:40:31:4f:30:31:e5:
32:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:8C:FE:14:EF:10:46:5C:8D:27:2C:AF:FB:35:59:B7:27:9B:96:C1
X509v3 Authority Key Identifier:
keyid:0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Yoz-FO8QRlyNJyyv-zVZtyeblsE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.29.240.0/22
Signature Algorithm: sha256WithRSAEncryption
07:d0:c0:5e:04:2c:77:9e:1d:ba:ef:bc:b7:13:30:6e:e6:a2:
34:c0:dd:ea:2c:f1:2a:a5:f8:30:66:2d:91:db:d8:c9:9c:3c:
cb:ca:5b:ea:66:e9:92:06:99:59:41:f8:12:96:f9:4d:c5:ab:
47:16:1d:d5:6f:37:5f:11:fe:eb:e4:d4:63:cf:ce:15:9d:65:
6a:76:c9:01:a9:d6:89:90:cb:2b:d7:37:2c:7d:93:4e:39:20:
06:b1:f1:59:11:d2:ca:b1:60:bb:87:fb:fa:42:ff:d3:fa:8f:
f5:9d:b5:a2:20:69:c7:77:f2:79:be:45:1a:f3:b3:0f:c8:64:
7e:e8:39:04:19:5b:a6:1d:5f:83:65:42:ed:b6:eb:90:03:28:
e5:29:d3:a7:65:9b:57:54:1f:fb:40:78:84:6d:c8:0f:81:48:
fb:8a:03:b7:b9:62:4d:56:02:b7:53:75:0c:dc:fd:06:c1:fd:
a6:7a:57:cb:0e:9a:f6:90:b8:94:6a:89:26:e8:ef:1a:f0:4f:
5a:de:8e:10:3c:b5:d8:8c:77:41:98:88:11:45:77:2f:55:44:
9e:bc:e1:d2:74:0e:67:52:33:39:a5:3c:b0:5e:e3:e4:98:23:
81:e6:fa:c4:b8:a4:f4:d0:8d:f6:43:43:a5:ba:28:13:7f:16:
2a:a7:06:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org