Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Guc4CU5TN2STpu2ZdZaYxw7u5jM.roa
File: Guc4CU5TN2STpu2ZdZaYxw7u5jM.roa (raw, json)
Hash identifier: D0kXCvI3rUgQXzmYIUPMKOrKhKFSaOhXc9vTIE9Ulw0=
Subject key identifier: 1A:E7:38:09:4E:53:37:64:93:A6:ED:99:75:96:98:C7:0E:EE:E6:33
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0B30
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Guc4CU5TN2STpu2ZdZaYxw7u5jM.roa
Signing time: Sun 07 Feb 2021 12:58:58 +0000
ROA not before: Sun 07 Feb 2021 12:58:58 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131660
IP address blocks: 114.25.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2864 (0xb30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 12:58:58 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1AE738094E53376493A6ED99759698C70EEEE633
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c9:a1:12:17:b7:ee:4e:11:15:56:08:6e:d5:
2c:91:43:a9:fb:6e:65:22:94:a4:75:1b:cd:9e:7a:
ba:7a:74:eb:67:9e:69:a3:30:9a:7b:92:47:ff:94:
10:97:db:f6:81:89:e8:2e:be:be:3b:82:34:a3:da:
49:87:a1:0b:2c:67:d6:e7:3f:e8:18:3d:8a:16:c6:
4f:02:fd:63:b6:a8:4c:96:a6:b0:72:58:89:ed:8e:
6f:1d:64:09:f9:05:4b:38:9f:8d:e1:aa:c9:3c:0a:
66:cb:5f:72:9f:6a:4d:3b:41:46:d3:21:20:6d:b3:
42:c0:36:1e:af:7c:5c:b2:44:e7:df:61:78:0d:d4:
a9:68:67:9d:0f:55:c3:d9:48:6b:6c:f4:08:18:bd:
e2:d8:bd:95:80:f7:c7:f5:e7:04:d1:f5:ca:30:c0:
9a:4e:9d:e9:ba:6c:ce:c8:8b:7a:f5:8b:4c:e0:2d:
21:fb:6c:dd:2e:73:32:d7:20:df:af:5d:b0:0e:f6:
8b:92:5e:57:a0:4f:74:3b:09:cb:41:a6:95:ca:98:
c7:67:4b:28:d7:a1:4e:48:2f:e2:a9:fc:61:83:36:
53:b1:b2:c7:11:f0:d1:21:4a:d0:74:13:21:8c:87:
c6:6f:4c:be:b5:08:ce:cc:e4:f2:b9:32:8c:59:a5:
b4:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:E7:38:09:4E:53:37:64:93:A6:ED:99:75:96:98:C7:0E:EE:E6:33
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Guc4CU5TN2STpu2ZdZaYxw7u5jM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.25.251.0/24
Signature Algorithm: sha256WithRSAEncryption
62:d8:1c:4d:5d:2e:d3:e4:09:68:24:fd:fe:af:3d:0e:ae:f2:
1e:9c:67:2d:c3:28:f1:05:c8:7f:7b:a5:f0:58:f9:3f:a7:42:
f1:89:50:c7:11:62:1a:f1:ed:f5:a9:30:7b:8a:56:91:a5:a2:
e0:75:02:61:e7:e0:d9:60:ed:1f:56:eb:2a:d9:2e:88:5d:f9:
8b:4c:c4:db:9e:7b:f4:93:93:ca:c3:4e:ce:e1:63:55:7f:1c:
4d:86:ea:6d:31:3a:32:f7:5f:1e:62:eb:b9:a4:ec:e9:3d:bf:
bf:fb:a4:27:5d:85:38:58:fd:46:59:5a:a3:d4:b7:74:bf:8b:
52:9e:c0:0a:76:c5:cf:91:3a:fd:c7:72:70:8e:9c:5b:49:09:
ab:08:9a:22:b4:72:a8:84:9d:00:8b:62:bd:51:8f:e5:9c:24:
8e:0d:d4:17:66:b7:6a:7b:f8:18:57:96:9d:71:31:56:67:bc:
f1:3b:27:16:c0:36:d9:42:5c:0a:20:f4:7b:d8:09:3f:ee:97:
64:f9:b9:ac:a4:66:72:f1:d0:98:73:ad:63:3a:29:26:87:41:
36:72:1a:0f:ba:6b:85:a2:5c:f0:b7:e8:5c:ec:e8:86:df:0a:
d0:57:96:1b:06:bc:fb:e3:06:21:5e:3a:c2:20:6f:2b:64:3b:
f8:2f:b7:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org