Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Yan3aL744PBYBP7FDekO2Js5rag.roa
File: Yan3aL744PBYBP7FDekO2Js5rag.roa (raw, json)
Hash identifier: AS+dWoTi7AevTNQu75UbzYgxqqLuPTc1HsNdj7fl8TA=
Subject key identifier: 61:A9:F7:68:BE:F8:E0:F0:58:04:FE:C5:0D:E9:0E:D8:9B:39:AD:A8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0F5B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Yan3aL744PBYBP7FDekO2Js5rag.roa
Signing time: Fri 01 Sep 2023 08:56:59 +0000
ROA not before: Fri 01 Sep 2023 08:56:59 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17421
IP address blocks: 114.136.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3931 (0xf5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:56:59 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=61A9F768BEF8E0F05804FEC50DE90ED89B39ADA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ea:92:5b:42:13:0c:ef:1a:27:4d:de:f8:cc:
1a:9f:c2:5e:c3:2c:04:ef:ff:db:c1:38:0b:0b:96:
dc:62:aa:37:87:fd:87:5f:99:fb:90:54:8b:1e:1c:
3f:2d:be:80:e6:54:5e:93:a7:5d:5f:0a:f2:c4:aa:
fe:9e:bc:a1:b7:29:e0:e2:43:b9:2f:96:97:62:56:
f5:9a:9b:71:23:39:f0:dd:68:c5:14:ef:b6:7c:0e:
1c:1b:1e:b6:ff:53:46:00:c2:ff:e6:41:4b:58:ce:
2b:ea:18:d9:43:97:da:5a:1c:1c:fe:bf:e8:a4:b3:
f3:c4:8b:a1:ce:17:8f:ff:ce:c6:42:05:ed:f4:00:
bb:45:99:07:53:c1:95:c7:31:18:5f:3e:51:fd:4e:
4b:62:a9:83:e1:ad:92:00:2f:5e:a6:30:47:19:ee:
46:02:7d:57:31:0b:f4:e2:8f:ad:e2:f8:9a:c8:c5:
9c:60:96:c9:0c:b7:c1:7b:d8:83:f2:c1:c5:78:d9:
90:82:b5:dd:dc:a0:0e:74:d6:73:8d:85:20:9c:4c:
3e:d7:92:23:82:9b:ec:b4:e7:74:38:78:71:58:dc:
57:14:cc:d0:07:d0:24:56:46:a7:53:4c:b9:90:7b:
21:b4:46:0e:a3:25:11:25:11:71:13:71:32:4f:58:
7c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:A9:F7:68:BE:F8:E0:F0:58:04:FE:C5:0D:E9:0E:D8:9B:39:AD:A8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Yan3aL744PBYBP7FDekO2Js5rag.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.136.0.0/15
Signature Algorithm: sha256WithRSAEncryption
98:ab:eb:ba:d5:86:fe:35:ea:5b:ed:4e:27:cd:8f:bf:38:be:
5f:9c:d0:e5:d0:fa:98:4c:47:14:55:2e:dc:9f:ac:80:3a:be:
c9:04:b9:be:f6:71:0e:5a:65:13:6b:35:65:88:e9:e2:1c:b4:
a8:f0:35:ac:09:5a:66:a3:35:94:cd:9f:59:e4:ee:29:8d:1a:
10:a0:30:a7:40:53:ef:e0:a3:a3:4e:c8:35:5b:a2:e4:f5:21:
79:7e:d1:a8:d3:8d:18:95:97:fa:62:b3:d6:d7:bb:1b:3b:eb:
35:d1:ba:ca:91:7e:cc:44:7b:b4:3b:1f:75:df:60:6d:79:f6:
a0:2e:ae:1a:6d:46:45:d8:be:0a:7e:f2:fe:e8:cc:53:ad:09:
47:fb:b9:0c:ce:f7:59:b4:d7:44:d2:e6:c8:1b:6d:cf:dc:f0:
3c:9c:3d:49:23:ce:26:ec:a0:45:ff:db:6d:4c:9e:2a:bf:1d:
43:e3:60:46:0b:ff:d3:10:3a:39:ff:ec:c1:76:55:5b:1c:fe:
0c:ef:52:9c:5e:72:42:86:60:80:e2:e1:cb:c7:d4:73:09:e8:
a4:f8:fb:f3:41:7d:a7:e0:25:e1:60:f3:a0:5c:b9:83:4b:c5:
c4:f3:82:ea:47:c7:bc:02:41:66:2c:fd:83:33:ca:53:30:14:
14:44:11:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:22 2025 by rpki-client