Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/D2PKcZbatBDaB0uOsNFL9vpqhEY.roa
File: D2PKcZbatBDaB0uOsNFL9vpqhEY.roa (raw, json)
Hash identifier: F+as8nl7t7pZeS1rvy1SgRwmJkcaOvFVYGX/Dy4f9Do=
Subject key identifier: 0F:63:CA:71:96:DA:B4:10:DA:07:4B:8E:B0:D1:4B:F6:FA:6A:84:46
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0FBA
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/D2PKcZbatBDaB0uOsNFL9vpqhEY.roa
Signing time: Fri 01 Sep 2023 08:57:25 +0000
ROA not before: Fri 01 Sep 2023 08:57:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 20940
IP address blocks: 2001:b032:104::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4026 (0xfba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:57:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0F63CA7196DAB410DA074B8EB0D14BF6FA6A8446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:64:09:a0:2c:aa:1b:09:a5:af:ea:27:0c:22:
06:0b:53:f9:17:3f:4e:ad:a1:12:e7:73:10:fd:5f:
c3:65:1b:99:1f:c9:d4:bd:8c:aa:6d:36:d2:6c:67:
73:c3:bd:b2:a2:f1:bf:c6:d0:e1:ca:65:d4:79:e0:
29:0c:67:33:45:37:1d:f5:8b:2a:2a:28:41:1b:a3:
fc:13:be:d5:fb:81:ab:94:90:0d:4d:b2:f3:46:53:
1d:b7:44:24:8b:08:c4:6c:10:90:0b:6b:59:36:9d:
1f:07:b4:45:3a:4a:c9:bc:9d:cb:17:f8:fa:b2:6b:
2f:dd:de:9d:3c:9a:12:d7:d9:d3:ff:28:27:66:4e:
d4:b5:a6:7a:85:bf:bd:54:b7:e6:aa:ce:d7:20:96:
4d:ec:b5:67:53:bf:f9:85:bf:e9:60:bd:c0:81:d9:
86:44:99:47:42:26:11:d1:51:bb:26:80:10:15:fb:
de:5e:22:f2:6b:84:53:5e:99:d2:a0:e9:0f:2f:27:
32:b1:01:97:fa:e7:58:3c:96:1e:af:66:06:e7:d0:
d4:50:53:10:cb:62:77:18:1e:19:a7:c3:1d:e8:27:
b5:50:49:a7:90:a3:ea:04:1d:c9:ad:74:96:a5:a4:
45:e8:5b:96:e5:82:e3:f2:3f:43:bb:60:80:6e:c8:
49:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:63:CA:71:96:DA:B4:10:DA:07:4B:8E:B0:D1:4B:F6:FA:6A:84:46
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/D2PKcZbatBDaB0uOsNFL9vpqhEY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b032:104::/48
Signature Algorithm: sha256WithRSAEncryption
34:92:88:a7:95:e3:f5:81:81:71:38:0e:9f:61:63:0c:2c:52:
fb:3d:78:17:26:46:60:cf:32:80:41:74:be:ec:db:5e:39:2e:
ed:ac:7e:ee:3c:38:bd:d8:b1:e4:8c:0b:3d:da:93:89:cf:d6:
2c:92:e6:28:cf:a3:d1:5c:75:de:b7:59:51:9e:a8:63:49:4f:
92:90:e3:f6:9d:f0:b9:38:3a:56:ae:6f:b5:ed:9c:65:3c:9e:
b0:cf:97:97:e9:b3:52:52:9d:83:3d:29:31:e3:db:e1:09:36:
e9:9f:7f:68:7a:99:38:1e:8c:f7:e4:c3:ce:19:4d:2c:92:dd:
65:48:50:44:5d:7a:9a:d9:b4:5c:16:46:a1:ba:ef:67:68:2f:
30:3a:2d:46:5a:d4:bd:c4:ca:4e:75:56:ba:c2:83:0b:dd:bf:
72:d7:b6:4d:76:51:e6:16:d2:97:3c:41:bc:73:3f:a5:1f:48:
b0:cd:eb:73:70:58:7c:0e:84:2b:90:f3:2e:8c:95:42:be:a7:
dc:cd:ac:f3:12:47:61:b8:b5:55:a7:47:cd:f2:b7:70:f1:6c:
ae:10:e6:e8:22:82:e4:09:aa:2c:02:c9:81:44:51:91:0b:cb:
11:56:52:2f:b7:47:15:b9:76:bf:cb:b6:dc:30:00:f7:34:bc:
6c:6d:ed:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:54 2025 by rpki-client