Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/0jB6pwewwyXbBZWSK3cY5gB2DP8.roa
File: 0jB6pwewwyXbBZWSK3cY5gB2DP8.roa (raw, json)
Hash identifier: 5kKUu+3YmSMXhxKzVXlbVH3xRMUCz4OvngkITcILh6M=
Subject key identifier: D2:30:7A:A7:07:B0:C3:25:DB:05:95:92:2B:77:18:E6:00:76:0C:FF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0F35
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0jB6pwewwyXbBZWSK3cY5gB2DP8.roa
Signing time: Fri 01 Sep 2023 08:56:45 +0000
ROA not before: Fri 01 Sep 2023 08:56:45 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 3462
IP address blocks: 125.224.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3893 (0xf35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:56:45 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D2307AA707B0C325DB0595922B7718E600760CFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d1:93:69:cd:39:8e:a0:57:d0:73:43:eb:d2:
39:a8:9d:e1:40:02:92:02:f4:a5:c1:48:3a:e0:ff:
d4:de:bb:e5:42:b2:38:2b:89:db:65:a5:7f:e0:d0:
d8:8a:17:53:0a:f2:28:17:73:f7:f5:11:44:bb:7e:
04:c3:87:74:17:c8:2c:19:43:50:61:e4:83:09:82:
b6:9c:be:08:af:b7:c5:1b:b3:b8:cd:f6:98:5f:92:
b1:c2:4c:c6:19:d7:51:39:7f:f3:d9:68:f9:07:6d:
41:4f:13:fa:16:76:4c:06:66:55:31:e6:31:49:ab:
52:c0:dd:ae:d1:04:a6:42:7a:f8:d7:5a:91:42:da:
c1:a0:3e:46:93:49:c0:72:84:3d:40:88:37:35:ef:
50:c1:5e:b4:f5:57:86:7b:03:15:66:c4:e0:77:3a:
a9:49:18:fd:3d:c0:78:0f:9b:29:bd:93:58:1e:f2:
9c:f2:f1:84:78:d7:17:aa:a9:01:0a:59:11:18:c6:
ff:e7:b6:48:a9:72:e7:f9:39:ba:03:59:9a:f1:7c:
18:2e:f9:bb:99:91:10:b3:89:c2:fe:b1:c4:0c:11:
e1:2f:59:af:1d:f4:4b:5d:10:38:bd:7a:f6:44:41:
66:66:74:11:6d:5f:11:1f:70:cf:59:7f:a8:38:65:
a0:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:30:7A:A7:07:B0:C3:25:DB:05:95:92:2B:77:18:E6:00:76:0C:FF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0jB6pwewwyXbBZWSK3cY5gB2DP8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
125.224.0.0/13
Signature Algorithm: sha256WithRSAEncryption
b1:ae:66:e8:5d:04:41:5b:46:44:bf:c4:08:c3:6d:9f:5b:a9:
7c:e3:e8:61:d3:32:c8:7a:c3:e0:c9:15:c7:00:8f:7c:ea:5a:
e2:12:61:fe:09:99:68:f9:8d:bb:05:91:e6:58:6b:da:f3:87:
b2:92:fb:fb:ef:60:1e:6f:74:c1:12:90:11:c8:6d:04:1d:ed:
91:04:c5:36:90:aa:40:a1:7b:cf:d9:d0:12:ea:ca:c9:a5:72:
c5:d2:5a:fb:6f:e7:10:6c:72:44:c6:17:65:cc:39:1b:58:67:
ce:40:e3:43:bd:89:f5:35:b9:ae:04:30:dc:2e:72:69:a4:85:
e9:e6:1f:36:0e:53:ea:24:dc:70:87:aa:d6:c7:89:f8:8f:26:
ed:70:89:11:0d:95:9e:a7:76:9d:04:0f:e2:3f:fc:56:38:9f:
9e:29:d9:87:8e:fc:a5:89:22:e4:3d:60:f7:ae:31:7e:48:dd:
a2:b5:cc:37:29:b0:be:cb:e2:0f:82:0a:2c:f2:49:bf:7c:ee:
22:4b:df:df:0f:11:66:57:91:cd:0f:34:78:91:04:08:f2:c9:
08:db:9b:01:31:c5:a2:10:d5:c7:60:a9:cc:30:fd:20:c3:f0:
49:5e:54:06:4b:52:d2:16:c4:91:f0:4b:7e:70:cb:1d:63:86:
ac:eb:27:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:27 2025 by rpki-client