Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/QUgIW6-Oqxvy6WDVlfpC56wEZtI.roa
File: QUgIW6-Oqxvy6WDVlfpC56wEZtI.roa (raw, json)
Hash identifier: AI08r7IHX4Qn4kxpADkT9wXmd7pIUReWYGxR9gLfVq4=
Subject key identifier: 41:48:08:5B:AF:8E:AB:1B:F2:E9:60:D5:95:FA:42:E7:AC:04:66:D2
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0833
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/QUgIW6-Oqxvy6WDVlfpC56wEZtI.roa
Signing time: Tue 29 Sep 2020 09:58:27 +0000
ROA not before: Tue 29 Sep 2020 09:58:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17421
IP address blocks: 111.70.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2099 (0x833)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=4148085BAF8EAB1BF2E960D595FA42E7AC0466D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:68:84:d9:22:c7:e6:62:0d:ca:e2:eb:c4:c8:
47:d9:17:66:54:89:89:af:82:6e:66:24:ad:ee:09:
e7:f4:dc:ff:aa:73:10:02:9d:21:db:1e:ff:f4:54:
ad:3d:3b:47:0a:32:42:35:c0:ea:63:23:4b:ad:12:
e3:63:2c:2c:28:50:48:43:97:28:19:ac:02:00:9a:
3f:45:66:bb:54:3d:34:b4:7c:6e:04:45:70:5a:80:
d8:1f:8d:92:cc:6e:fd:49:db:5c:08:ce:a7:ee:89:
a5:d4:03:e4:a9:c2:4c:65:3e:3a:06:17:cd:45:d0:
97:a6:5e:80:8a:5a:e4:92:94:1c:89:a4:52:73:8c:
50:01:14:1d:2c:40:7c:da:52:a6:ba:8e:01:02:58:
17:7b:82:25:71:eb:ba:9f:dd:d4:6b:db:6e:12:6b:
ea:7e:0b:9d:ed:d3:08:cc:e0:85:49:d3:7e:0d:0b:
db:9a:50:c3:34:63:cb:4c:d8:af:f8:5a:4f:f0:36:
67:b8:5f:10:24:68:c6:a8:cd:08:34:5d:cb:4d:68:
7f:95:f2:f5:1d:8b:4a:c8:e1:c2:e2:a3:21:ed:a4:
6c:26:92:c7:18:04:84:71:c6:83:19:a5:40:92:d5:
c4:fc:86:b9:bb:94:43:ea:23:e8:27:61:5a:f2:5d:
40:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:48:08:5B:AF:8E:AB:1B:F2:E9:60:D5:95:FA:42:E7:AC:04:66:D2
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/QUgIW6-Oqxvy6WDVlfpC56wEZtI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.70.0.0/15
Signature Algorithm: sha256WithRSAEncryption
a0:2e:d8:87:a5:a6:c5:a9:55:3b:02:83:3a:d6:10:ec:6e:e6:
8d:26:2b:6a:57:a7:84:d3:38:2e:20:54:f7:21:96:d9:a8:97:
36:3a:20:45:c1:17:ef:f6:b3:37:17:53:9b:6a:14:e2:e0:c8:
67:e6:e1:81:76:bf:f0:e1:94:3c:ff:87:7e:f4:30:75:a6:25:
a9:d9:4a:e9:aa:bd:17:bf:cc:41:ac:82:eb:b8:65:75:84:49:
b3:6a:3a:6b:bd:69:af:13:dd:33:67:3f:df:cb:5f:84:6f:b3:
f8:c7:4c:fd:d4:be:2b:b8:b9:40:63:d3:9e:aa:a0:b9:63:92:
cd:69:e5:36:1e:00:35:1c:98:9c:81:56:e9:be:47:1a:34:83:
3a:8d:0d:32:9a:b8:5f:1a:ff:e5:9f:f6:01:b4:82:85:b4:80:
58:e7:8c:81:c7:89:b3:33:21:be:a8:b0:e2:3b:4e:65:e4:64:
a0:55:2e:bc:51:2e:9b:0f:6e:c1:7b:b6:3a:58:9c:c4:fc:f4:
c8:bc:63:08:9f:32:8b:85:3e:3d:c7:7a:de:c3:5f:4a:88:10:
8b:da:bd:cb:ae:cb:f2:e1:2b:18:07:87:cd:a3:95:11:7d:77:
1d:d6:f9:8e:ce:2d:71:b3:ec:2f:d0:3f:fe:fa:7b:cc:5f:6c:
76:1f:6f:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:43 2025 by rpki-client