Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7VtZdba7HTQ-JB1L-iaFPvIhODQ.roa
File: 7VtZdba7HTQ-JB1L-iaFPvIhODQ.roa (raw, json)
Hash identifier: v/+KaUdpjVHmPHxWM2kL2Kt1G2FesmzunKYE4FypwTM=
Subject key identifier: ED:5B:59:75:B6:BB:1D:34:3E:24:1D:4B:FA:26:85:3E:F2:21:38:34
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0F93
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7VtZdba7HTQ-JB1L-iaFPvIhODQ.roa
Signing time: Fri 01 Sep 2023 08:57:14 +0000
ROA not before: Fri 01 Sep 2023 08:57:14 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 3462
IP address blocks: 211.21.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3987 (0xf93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:57:14 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=ED5B5975B6BB1D343E241D4BFA26853EF2213834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:1e:79:a5:9e:a6:d7:c8:89:c8:40:2a:c7:6e:
4c:d3:f0:b7:44:e6:45:cb:1b:44:83:79:86:e1:b0:
87:7e:ac:17:56:fb:bc:c3:55:29:83:c3:45:9d:bc:
30:23:bf:8c:a9:d8:06:22:bf:97:c4:e9:62:13:16:
09:7c:94:ba:92:a4:c5:5c:d2:90:73:83:1d:5e:6f:
2f:5b:81:39:3e:1d:d6:de:55:1b:10:c2:ba:39:c2:
f6:6b:c8:ae:1c:24:3f:e0:da:bd:a5:25:68:f8:b2:
45:8e:e4:f1:53:a9:6b:11:ae:72:f2:87:d3:60:b5:
b7:9f:a5:b7:20:7c:67:a9:a3:c1:a1:5e:52:4d:5c:
06:5e:f5:35:a5:ac:6f:57:44:32:f3:ff:75:5f:53:
ec:61:98:43:81:aa:43:2a:fe:98:36:33:bd:5c:bf:
df:bc:e9:51:ac:a4:e7:a8:59:be:10:c0:7a:35:1a:
e8:fa:d6:0f:68:d0:af:64:b3:17:0d:63:d9:19:79:
1f:5a:54:2d:c7:50:50:30:a9:f2:a6:55:ba:11:66:
d0:cd:1e:10:bd:3c:3d:46:6a:47:ab:bb:6f:23:04:
f1:3b:ce:00:20:2c:f4:19:f0:4f:d8:f5:5a:08:6d:
20:a4:82:b7:2f:27:9e:9b:9b:1b:cf:7e:6e:85:68:
8d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:5B:59:75:B6:BB:1D:34:3E:24:1D:4B:FA:26:85:3E:F2:21:38:34
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7VtZdba7HTQ-JB1L-iaFPvIhODQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.21.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7c:74:07:ae:c2:55:0b:7d:14:29:02:ac:90:90:8a:a0:e5:68:
df:78:69:a2:c1:3e:d5:16:62:eb:44:18:38:e2:06:45:4e:3d:
83:ac:0e:9e:48:e1:b6:52:69:d2:09:f3:1b:a1:34:75:bc:eb:
e9:b0:a8:36:7b:b2:00:32:16:2c:be:90:e3:69:d5:7f:fa:4f:
24:7c:93:bc:b0:46:09:5b:ff:66:e1:a8:91:d1:1d:52:ad:79:
30:83:9e:f2:a6:85:f6:24:e5:c7:29:38:d4:be:c8:e9:7d:24:
e8:90:77:8d:07:75:a3:9a:4f:d1:55:1f:1f:84:fe:3c:cf:1a:
ab:6a:4d:de:0b:b2:bb:00:8c:77:79:43:e1:e9:f6:6e:ed:89:
2d:41:6b:22:43:fa:a9:6e:91:68:d6:53:f8:3f:0e:98:57:0b:
e1:52:dd:e7:24:7d:ce:27:a1:10:37:46:27:20:5d:17:5f:d2:
d9:35:32:53:89:0b:41:2b:8a:83:ca:d4:00:1f:2a:00:07:d2:
62:ae:00:df:bd:f9:e1:a2:91:2e:d9:66:69:d3:31:1a:b7:79:
63:cb:77:fa:9a:8d:af:9c:5b:28:bf:f4:c5:a5:6a:8a:0b:93:
ca:7e:bd:3d:2b:b1:7c:70:51:ab:8b:ea:df:d3:3f:17:64:41:
80:2c:fc:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:08 2025 by rpki-client