Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/JXUMxe51hWFdMgbabJRWUb5lwXI.roa
File: JXUMxe51hWFdMgbabJRWUb5lwXI.roa (raw, json)
Hash identifier: Wd31ieM0sdFAs+iCg0/wVKqLI2DnF1V9h9F5AkGzXZ0=
Subject key identifier: 25:75:0C:C5:EE:75:85:61:5D:32:06:DA:6C:94:56:51:BE:65:C1:72
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0B35
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/JXUMxe51hWFdMgbabJRWUb5lwXI.roa
Signing time: Sun 07 Feb 2021 13:07:37 +0000
ROA not before: Sun 07 Feb 2021 13:07:37 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 137280
IP address blocks: 203.69.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2869 (0xb35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 13:07:37 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=25750CC5EE7585615D3206DA6C945651BE65C172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a2:6f:5d:c3:31:a5:6b:0c:9d:71:38:03:3d:
bb:f1:12:9f:4e:2f:8e:4f:7d:d0:bb:71:ef:a3:91:
9f:66:62:a5:84:44:ef:57:32:e9:e3:0c:74:a7:f7:
9c:c9:2e:3d:cd:5c:88:6b:65:0a:2c:65:fa:68:1d:
4e:17:09:38:b4:e8:15:3f:18:d4:4c:9d:10:2f:0f:
4c:6e:14:6d:95:c8:f3:f9:f8:c7:0c:ec:cc:64:6f:
e6:9f:2c:a3:69:af:af:1a:b6:bd:bd:15:ba:68:fc:
57:6f:c7:90:c2:79:87:bf:09:b3:38:40:92:5d:b2:
ab:37:ac:fa:19:8a:f6:68:15:f8:2e:97:51:fc:2c:
a6:04:2a:54:fd:53:e6:3e:8d:2c:20:fc:97:83:57:
64:47:b1:02:aa:95:9d:7c:77:3e:86:73:07:9e:50:
25:c6:18:4c:89:89:5c:14:b4:9b:ae:7a:49:7a:5f:
3a:47:b7:6b:56:e6:18:06:11:c1:5e:4f:38:bd:e8:
70:d4:6b:0e:ad:58:b4:2b:f0:33:8d:4b:52:d6:d9:
5f:7e:01:07:5f:f2:cb:7a:13:1b:75:d5:63:b5:8a:
fd:99:10:91:4a:42:7d:3f:91:8a:ad:1c:d6:13:91:
29:95:43:d8:3f:ba:9a:67:e7:d3:6e:c2:27:49:4b:
77:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:75:0C:C5:EE:75:85:61:5D:32:06:DA:6C:94:56:51:BE:65:C1:72
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/JXUMxe51hWFdMgbabJRWUb5lwXI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.19.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:41:de:33:63:4f:1f:e1:c8:a2:b3:eb:05:62:0c:a4:2c:87:
3d:58:f4:65:2a:fc:db:c8:ff:db:50:65:d7:9b:8c:ad:20:a2:
fe:23:fc:4a:0a:8c:22:41:0d:50:e0:7c:b4:23:b9:b6:9b:eb:
9c:50:53:54:74:f7:46:a8:0a:dc:ef:93:dd:c6:31:02:45:85:
79:ed:04:85:c9:e0:23:9a:ed:7d:4a:16:e4:2f:28:f6:e3:e6:
74:ff:d0:7c:b3:72:89:99:aa:52:f6:c0:c7:fb:35:e5:9e:72:
98:53:28:e0:34:57:72:55:32:19:8b:bc:b9:5e:f3:13:dc:ae:
1a:ee:fa:ff:d7:1e:18:b7:fe:67:58:5e:dc:be:26:03:55:6a:
15:a5:00:c9:d8:53:9a:d1:2e:7d:55:93:6d:c0:a4:74:17:c8:
b2:dd:27:87:64:91:d6:ab:ef:e6:89:04:7f:14:d1:2d:de:86:
99:42:8b:bc:d6:01:4b:38:8a:87:8a:49:1b:54:78:10:e7:05:
77:90:07:00:0f:eb:f7:5c:1b:c1:1c:0f:a7:3b:61:57:5a:17:
ad:ee:de:e6:cb:28:9c:ca:7c:ec:a5:46:1e:e3:63:09:3f:38:
65:10:19:6d:f5:7e:37:5c:d1:a2:b2:7b:36:c9:9e:0c:ca:b3:
9e:60:9b:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:42 2025 by rpki-client