Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/UMC4mHEcvtZLAKXDsypo1jaV-hk.roa
File: UMC4mHEcvtZLAKXDsypo1jaV-hk.roa (raw, json)
Hash identifier: l3F2N7/wx6BAvNMJA3bCQiZ7Y969R5a/j/6p0ohD9Do=
Subject key identifier: 50:C0:B8:98:71:1C:BE:D6:4B:00:A5:C3:B3:2A:68:D6:36:95:FA:19
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C55
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/UMC4mHEcvtZLAKXDsypo1jaV-hk.roa
Signing time: Wed 29 Sep 2021 02:51:09 +0000
ROA not before: Wed 29 Sep 2021 02:51:09 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 17714
IP address blocks: 175.111.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3157 (0xc55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:09 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=50C0B898711CBED64B00A5C3B32A68D63695FA19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:80:c9:90:8d:b7:af:12:4c:df:39:2e:ad:b0:
9d:c3:d7:dc:86:24:8b:be:b1:ed:d4:cc:04:d9:d7:
f5:4a:49:c2:1a:80:bb:6b:02:49:6b:9b:42:5a:e1:
1b:50:88:91:2a:1d:aa:99:04:f6:fe:80:f5:2c:c6:
a4:87:0c:24:84:f2:8d:76:5b:4f:a2:41:ce:08:c7:
b7:53:33:63:88:ac:89:eb:d0:ec:4e:3b:bd:52:59:
66:3b:0e:1c:9d:e1:fa:3c:ba:b8:83:2c:a1:4a:82:
c0:23:18:32:49:a2:dd:73:85:a9:dc:33:6b:7f:1a:
3a:5a:0e:58:2b:d4:e0:3f:cd:d4:e9:5e:3f:4e:92:
8d:d5:14:4e:5c:b8:c0:45:dc:31:a2:3a:1e:c7:ee:
5b:76:36:68:1e:04:38:ac:c3:fb:10:58:d1:06:27:
55:74:69:33:c1:18:e0:83:8b:be:6e:99:92:f0:6e:
37:c5:8d:54:72:2b:e4:86:20:c3:70:80:3a:cc:7b:
bc:5c:09:15:4b:77:d0:c6:87:c6:42:f5:b5:fb:c5:
f7:2b:d6:7e:ea:45:c0:39:6d:46:4c:76:6c:3c:59:
47:bd:e3:e3:a5:f3:bd:7c:cc:a1:29:94:0f:51:27:
6c:45:fd:b0:66:4c:ae:ad:d7:36:19:5d:fc:3a:85:
58:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:C0:B8:98:71:1C:BE:D6:4B:00:A5:C3:B3:2A:68:D6:36:95:FA:19
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/UMC4mHEcvtZLAKXDsypo1jaV-hk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.252.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:eb:77:ee:8a:52:03:cd:ed:14:26:e4:f6:7d:e0:b6:ac:18:
79:d8:73:a9:8b:32:a4:38:06:19:e5:ea:6b:3a:7c:5a:48:fe:
d5:22:5c:e1:01:23:6a:df:84:9c:5d:00:80:40:a9:2b:46:d3:
81:b2:8d:43:3b:d5:b0:87:58:f7:94:46:b7:0a:e9:6c:8f:7c:
0c:26:e8:01:99:40:8a:3e:c7:82:b2:f5:e9:61:fa:31:28:7f:
9f:ff:b8:93:b9:28:ee:2a:cc:78:d7:81:aa:3a:fd:b3:09:a4:
47:c3:6f:f9:f7:24:54:b8:c2:c3:41:fe:96:93:e6:f6:2b:5b:
b5:f4:b0:48:6a:db:d1:42:78:1d:ca:18:ea:2e:90:16:d7:11:
d8:6a:ae:61:d9:9f:d2:80:52:35:fc:a9:74:74:6d:3b:16:1a:
73:15:98:50:8f:c1:1e:e8:5f:2d:0c:a5:3b:d7:ea:b1:f5:f5:
7f:0d:65:96:92:9c:ce:e3:9f:4b:55:7d:c1:22:db:66:87:3f:
53:94:d2:36:b6:38:55:35:1f:a8:04:ac:62:b8:6f:81:0a:7b:
b4:15:36:f6:c4:84:b8:c4:5f:86:62:fb:92:4a:39:bb:6e:c5:
70:d7:7a:80:1e:fb:ad:01:9e:b5:7e:80:8e:29:a7:f2:19:cf:
54:e6:48:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:53 2025 by rpki-client