Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/38q12abn9DvKTwt7H3Afd3XXslQ.roa
File: 38q12abn9DvKTwt7H3Afd3XXslQ.roa (raw, json)
Hash identifier: D8f0osEaHBL3sCNSm8+LjwDeTFEFk5SVcqT7RhY4l/0=
Subject key identifier: DF:CA:B5:D9:A6:E7:F4:3B:CA:4F:0B:7B:1F:70:1F:77:75:D7:B2:54
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0853
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/38q12abn9DvKTwt7H3Afd3XXslQ.roa
Signing time: Tue 29 Sep 2020 09:58:37 +0000
ROA not before: Tue 29 Sep 2020 09:58:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20940
IP address blocks: 210.65.144.128/26 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2131 (0x853)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:37 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DFCAB5D9A6E7F43BCA4F0B7B1F701F7775D7B254
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8c:93:e0:58:92:ac:ca:3c:d8:b1:94:1a:5d:
7d:f9:d6:2e:82:b4:e6:46:7a:19:69:e6:1f:ee:bf:
9a:0f:3b:3b:a3:0b:34:17:94:e9:2b:ba:09:ba:34:
c5:9e:1f:09:0d:24:85:89:ff:07:66:30:5a:04:e7:
d0:10:73:c5:b7:40:6b:44:44:76:40:f1:28:45:06:
81:4b:63:4c:3e:17:5c:5d:50:8e:8a:76:17:b0:63:
7c:95:36:9a:ff:f4:d3:c3:6a:ed:94:79:ce:82:71:
04:b7:30:e9:4f:7d:d5:a1:cb:bd:a8:e1:ab:eb:ed:
f1:37:d5:8a:81:4a:d2:09:73:4c:c5:c5:6f:28:01:
5c:17:f9:2c:58:90:0b:2d:53:6a:83:de:fd:e1:57:
8f:98:fc:6f:09:e4:79:cd:c0:e6:69:3a:70:38:da:
9b:60:0f:52:ca:e1:ee:0c:c2:57:9f:ff:02:14:4e:
c9:c3:3b:2e:8d:9c:61:8a:06:98:c0:2b:f6:f3:dc:
46:91:ea:b7:69:58:54:85:4b:c6:e6:e7:de:2d:be:
ef:5e:bf:f4:8e:55:22:08:b5:61:97:9d:05:cc:df:
e4:dc:80:7e:3c:4a:8a:a9:93:4c:1c:47:f4:cf:99:
03:e5:90:c1:12:ea:e2:e9:0f:54:9a:d8:5a:cb:9f:
88:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:CA:B5:D9:A6:E7:F4:3B:CA:4F:0B:7B:1F:70:1F:77:75:D7:B2:54
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/38q12abn9DvKTwt7H3Afd3XXslQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.65.144.128/26
Signature Algorithm: sha256WithRSAEncryption
cf:63:1a:40:28:bb:f0:95:84:9e:ea:aa:50:ad:fc:f2:d4:b6:
e4:2b:5b:0f:62:44:71:bf:65:4d:62:cc:cc:b8:1c:be:f1:76:
cb:01:3f:5c:19:49:84:68:2f:fd:0d:3c:da:c9:39:36:05:01:
c6:0b:93:46:64:7c:f4:36:d0:16:c7:69:c3:3b:9d:09:7b:66:
e8:98:6d:29:08:97:04:1e:0e:d2:be:f7:e9:6a:ba:7c:31:06:
b4:7e:5f:69:5b:d0:2b:af:bd:8e:5b:55:d6:4c:a9:40:d2:0e:
6c:36:7d:1f:74:5c:d6:1d:cb:39:34:cc:fd:af:92:12:c1:6d:
1d:13:06:ac:bf:cc:94:07:b7:87:63:64:7a:50:f1:bf:27:41:
e2:a1:7d:2d:62:9a:94:20:3b:2b:fa:c5:ac:4e:f1:97:f9:42:
96:4e:e2:62:fb:68:df:b5:bb:f5:99:ca:85:5f:1b:a2:b9:f2:
33:4d:56:8c:25:64:77:9d:69:5c:79:a4:7b:1a:b3:aa:fe:8c:
a7:78:e1:b1:16:e1:93:a2:dc:75:22:5c:b2:8b:ab:a9:ab:53:
87:1b:65:9b:5c:ea:b6:be:b9:9c:23:65:22:51:8e:da:04:78:
45:b5:50:20:26:69:45:36:ce:6a:50:d2:39:3d:5c:c9:6c:2f:
0a:01:cd:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:13 2025 by rpki-client