Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7Xuceri2CLV6z4ANchlRvOj7JU4.roa
File: 7Xuceri2CLV6z4ANchlRvOj7JU4.roa (raw, json)
Hash identifier: gSMiYn3sLh/4WXxiULPmhPwklAvq56iUnG8XBwn+5M0=
Subject key identifier: ED:7B:9C:7A:B8:B6:08:B5:7A:CF:80:0D:72:19:51:BC:E8:FB:25:4E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7Xuceri2CLV6z4ANchlRvOj7JU4.roa
Signing time: Thu 15 Sep 2022 02:47:59 +0000
ROA not before: Thu 15 Sep 2022 02:47:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 220.128.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:47:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=ED7B9C7AB8B608B57ACF800D721951BCE8FB254E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:32:1e:dc:07:ef:0f:fb:54:bb:ba:80:61:d8:
bd:4e:0c:3c:d3:65:5c:b7:2d:9a:9b:07:4b:eb:0f:
24:4b:b2:7d:c9:f4:66:b9:a4:95:03:3a:33:e0:61:
fa:0f:58:92:7f:de:d1:a4:61:88:9a:e6:ef:f3:fd:
e5:50:c4:41:22:03:00:f3:ba:ae:31:11:eb:9b:47:
54:99:47:0e:39:4a:ee:8e:5d:b1:e1:8c:ea:75:0d:
56:9f:d2:11:67:54:98:13:11:95:10:a7:48:73:43:
12:76:70:0b:88:14:3b:a7:17:bc:92:bb:c5:69:8c:
66:17:7d:25:cc:12:49:e1:7c:21:0c:a9:07:a7:3b:
da:03:23:41:f6:4e:fa:8a:26:f7:72:79:45:66:bb:
7d:42:e0:9c:68:5b:93:c1:69:8e:b7:51:fc:9b:16:
4e:b5:ea:43:2f:fc:d4:84:15:fc:8f:c8:34:b4:f9:
30:e8:d8:16:14:cc:06:ed:23:b7:12:f0:e4:18:b5:
b4:f1:46:dd:59:be:e6:4a:d6:35:83:f2:22:b8:b6:
3c:db:b1:82:27:d6:ec:ee:aa:7d:af:0c:0b:7a:19:
80:e8:89:df:b7:8e:cf:6e:fc:f3:2b:c2:66:94:ae:
f6:e4:32:0c:a8:8d:f9:3f:b2:f3:de:57:13:f2:e3:
0c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:7B:9C:7A:B8:B6:08:B5:7A:CF:80:0D:72:19:51:BC:E8:FB:25:4E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7Xuceri2CLV6z4ANchlRvOj7JU4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.79.0/24
Signature Algorithm: sha256WithRSAEncryption
39:d5:4e:2f:56:c9:4c:c7:f2:ad:6a:1c:08:65:d6:7f:40:0b:
74:00:3a:ed:50:94:76:15:f6:d4:80:9f:c1:38:03:94:93:b5:
82:1b:3f:50:c5:b5:b7:0a:fd:31:de:e7:ab:1d:e6:aa:69:ba:
a3:43:52:7f:6d:28:19:b4:df:2c:47:d4:bd:a3:08:57:a3:74:
a2:25:af:14:35:6d:01:26:66:f1:f0:3e:b4:70:75:99:6e:03:
ca:22:1a:49:52:77:91:cc:7a:c5:82:b0:b3:b7:2c:84:3b:71:
5f:1d:8e:85:60:2a:57:4c:b3:10:40:e8:e9:f8:42:fa:c5:1a:
a0:38:3e:f4:44:1f:22:c0:13:59:5f:e9:73:42:25:11:78:b2:
ad:19:f3:1d:00:e6:83:19:b8:dc:77:0a:80:c2:c6:3f:6f:1a:
15:11:66:64:69:0e:4c:28:a2:05:f7:50:da:c2:ed:a2:f7:f3:
84:33:61:78:a8:3a:88:a6:bf:b7:4e:c2:12:f6:58:a3:c7:3f:
ce:6b:5e:d2:0a:d7:c0:2e:fa:3b:51:05:5f:22:fb:53:45:37:
b8:3f:a5:64:6f:56:1a:e6:10:56:5a:2d:83:9c:6c:25:33:2f:
b5:b2:bd:46:53:4d:00:f5:63:22:55:df:c0:24:42:da:38:ab:
9b:68:8f:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:27 2025 by rpki-client