Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/SkHCjbLWyoQWaOD5gGKILnyKxu8.roa
File: SkHCjbLWyoQWaOD5gGKILnyKxu8.roa (raw, json)
Hash identifier: L6oWXNDX8Csq0tRU2riPoHQBzRq85gzEjIGpOZD5Tp8=
Subject key identifier: 4A:41:C2:8D:B2:D6:CA:84:16:68:E0:F9:80:62:88:2E:7C:8A:C6:EF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0BFD
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SkHCjbLWyoQWaOD5gGKILnyKxu8.roa
Signing time: Wed 29 Sep 2021 02:50:44 +0000
ROA not before: Wed 29 Sep 2021 02:50:44 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 36040
IP address blocks: 202.39.67.192/27 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3069 (0xbfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:44 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4A41C28DB2D6CA841668E0F98062882E7C8AC6EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f5:ec:97:99:41:03:b5:c6:74:2c:e2:47:5a:
f8:89:93:01:b2:01:36:76:0d:da:8d:19:4e:17:c7:
d5:12:e4:66:09:e6:5d:34:e7:ac:74:97:da:73:79:
62:66:8f:45:36:66:6b:e5:9a:56:f0:0a:22:54:0a:
37:da:95:74:37:af:18:e1:4a:a9:43:4b:19:20:f5:
55:9e:dd:f2:4a:64:20:bb:78:09:e1:f8:0e:7a:e0:
12:6c:b9:39:eb:8d:fc:cf:7b:dc:f8:48:b3:a2:1b:
ab:c7:e5:e3:26:94:44:f0:10:28:57:be:b6:17:d2:
07:75:9a:c3:4b:a0:2d:30:bc:d6:cc:58:78:cf:e8:
4c:6f:c8:46:36:74:96:a5:19:bf:70:e5:67:97:a2:
3b:ad:24:fc:31:36:99:e6:d2:19:e8:83:b6:b3:3e:
e9:85:99:8c:68:dd:a6:87:c0:db:cf:6e:71:3d:7e:
7f:e5:ff:ad:c7:ca:b0:f3:50:dc:0b:40:ef:ed:5d:
c9:93:b8:e4:0b:a1:46:4a:ee:f1:ee:dc:de:2a:ec:
5d:40:46:48:4c:85:e0:4c:39:4d:ce:32:f2:1f:1b:
28:87:dc:35:e5:c0:aa:e0:de:e6:8c:93:3b:4f:82:
79:f4:53:7e:95:d8:5d:f2:0f:8a:ed:f9:86:b8:26:
74:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:41:C2:8D:B2:D6:CA:84:16:68:E0:F9:80:62:88:2E:7C:8A:C6:EF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SkHCjbLWyoQWaOD5gGKILnyKxu8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.67.192/27
Signature Algorithm: sha256WithRSAEncryption
ba:e3:95:6b:6e:82:47:4d:ac:92:c6:aa:fc:34:41:41:e9:1f:
f6:91:37:41:d2:86:10:b2:e1:f4:9c:28:9d:ab:9b:d7:5a:61:
16:ed:69:62:82:e8:c2:f4:37:37:5b:8e:35:9a:34:f1:64:41:
d8:c6:7d:c1:91:28:f3:51:f3:50:c6:94:91:e5:38:8d:23:82:
b3:9c:23:0a:dc:0b:77:98:23:62:c3:5c:14:eb:05:95:5e:98:
4c:82:17:9f:89:4a:ef:6c:ff:de:dd:2d:fe:ba:51:78:ce:1e:
2c:d1:e3:7f:63:3c:a8:ce:be:41:39:4d:e6:da:d2:9d:28:fc:
3a:31:e7:bb:b1:ea:f1:dc:81:26:14:6a:44:0d:7b:de:6a:f2:
f2:ee:b9:b5:30:dc:10:56:00:2b:8e:40:27:86:4c:4c:99:57:
77:3d:2f:44:49:91:45:ed:02:72:72:99:2e:1f:9c:87:ba:da:
9c:77:8d:3c:f3:25:95:f7:0a:b5:b3:72:71:df:cd:8c:ca:a4:
a0:f4:3a:0b:ad:ca:bf:57:34:43:26:6c:9d:e1:83:25:7f:7c:
40:9f:1d:7a:7d:79:c2:2b:df:e2:60:ba:01:d5:fc:28:ed:cc:
91:5d:3a:69:ff:f4:c6:cd:49:91:5e:25:e8:6c:fe:e4:1f:f3:
f1:20:f5:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:03 2025 by rpki-client