Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Cr6nEoWZnmd4oP4wSrUJRNyWxFY.roa
File: Cr6nEoWZnmd4oP4wSrUJRNyWxFY.roa (raw, json)
Hash identifier: k4PAf/It7F0P1ZbfDXsRQF8glVbCzOBYvocjT//krXI=
Subject key identifier: 0A:BE:A7:12:85:99:9E:67:78:A0:FE:30:4A:B5:09:44:DC:96:C4:56
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0F5C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Cr6nEoWZnmd4oP4wSrUJRNyWxFY.roa
Signing time: Fri 01 Sep 2023 08:56:59 +0000
ROA not before: Fri 01 Sep 2023 08:56:59 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 3462
IP address blocks: 210.61.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3932 (0xf5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:56:59 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0ABEA71285999E6778A0FE304AB50944DC96C456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:74:ae:4d:3e:3b:a4:b4:2f:bb:76:55:d4:59:
53:36:8c:dc:18:8e:20:47:91:65:2b:6e:80:82:ab:
69:3f:85:e2:04:f0:d4:ab:0f:2f:fb:9b:e4:76:57:
d8:5e:1c:35:fa:69:25:d2:e9:12:45:84:06:6f:82:
55:f9:33:77:d9:32:75:59:67:86:c6:9a:76:c1:a8:
45:6c:3f:44:aa:07:b3:04:32:13:80:0f:f3:d7:e8:
3d:3c:31:8d:eb:60:41:3e:7f:dd:f3:ec:cf:e7:a6:
2a:df:d2:50:4f:2f:7b:95:69:b5:3b:1b:2e:74:0f:
b1:c7:87:39:20:1e:1b:dc:8f:f7:30:f9:3f:b5:f8:
9d:94:37:02:db:f5:de:98:ef:39:22:08:dd:5f:a4:
d5:88:69:a5:c7:96:4b:3f:7b:5e:8a:bd:63:ea:14:
d3:29:80:0b:76:30:aa:99:d4:73:da:df:b9:e2:ef:
61:69:b5:f6:cc:a8:40:ae:a3:a9:78:91:04:5a:c3:
2b:3a:7a:07:23:a2:aa:2a:16:e1:1d:52:2d:b0:0a:
91:71:ff:2c:6d:ec:21:f8:48:0b:88:d4:6d:0b:f3:
01:e3:ff:e2:83:d2:6c:ca:52:21:49:65:16:7e:1d:
70:a5:ac:6f:5e:1e:4c:fa:a2:d9:6b:b4:2c:52:de:
f2:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:BE:A7:12:85:99:9E:67:78:A0:FE:30:4A:B5:09:44:DC:96:C4:56
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Cr6nEoWZnmd4oP4wSrUJRNyWxFY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c7:db:ca:c3:9b:d7:58:40:c2:ae:04:e5:c4:3e:3c:70:b3:ef:
09:a2:79:9f:7b:6b:c0:15:06:83:c3:37:e7:57:44:31:0e:b7:
f9:26:05:6d:85:51:b2:b3:b5:ae:5b:4e:0d:a9:5b:a8:d9:d6:
10:ee:06:f3:bc:e4:0b:e0:5c:d7:37:ea:30:eb:9c:2c:e6:8e:
67:bb:8d:73:83:94:1f:ef:ca:47:24:71:8b:6a:3c:ef:5a:60:
76:ea:d1:7d:73:78:e1:2d:70:3b:55:cc:c2:a7:65:ff:70:81:
f1:82:5e:5f:56:11:09:6b:fc:20:1a:aa:a2:72:b8:d2:84:0e:
40:d5:79:07:b4:f4:44:7c:e5:67:a6:f8:0c:95:00:62:1d:e6:
d9:db:03:91:07:08:27:07:e5:c5:e9:c6:2d:86:ba:d7:ab:44:
2a:f4:8a:b9:6d:c4:a8:08:b1:d0:83:ca:29:5a:60:13:85:1e:
39:88:22:fb:f2:dd:ac:3f:7f:e6:09:80:16:1f:b4:9f:e8:aa:
4d:22:a6:3f:69:f3:f5:1a:90:a8:12:c7:2e:a5:8c:49:e7:16:
c8:7c:c4:a1:87:63:a3:e8:bb:98:94:8b:45:9b:84:06:a5:5f:
45:02:36:29:3a:0e:5f:74:a2:ba:13:f6:64:18:1d:b9:74:52:
7b:54:b6:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:09 2025 by rpki-client