Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/YdzqkldLGgvdl_6TTGN6BP8Mtpg.roa
File: YdzqkldLGgvdl_6TTGN6BP8Mtpg.roa (raw, json)
Hash identifier: ZHw4Mnt7zSYzF75njrOeXik2YFdoXMUyIq+Sm7eb31w=
Subject key identifier: 61:DC:EA:92:57:4B:1A:0B:DD:97:FE:93:4C:63:7A:04:FF:0C:B6:98
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A5A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YdzqkldLGgvdl_6TTGN6BP8Mtpg.roa
Signing time: Sun 07 Feb 2021 11:37:32 +0000
ROA not before: Sun 07 Feb 2021 11:37:32 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 36040
IP address blocks: 202.39.67.192/27 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2650 (0xa5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:37:32 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=61DCEA92574B1A0BDD97FE934C637A04FF0CB698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:31:ff:cd:16:bb:5a:5b:0e:d0:d0:b3:ea:19:
05:2d:21:3a:cf:8c:3a:cf:b8:0b:44:43:20:ac:ed:
54:08:0f:94:b7:a0:f8:06:ac:70:ea:c9:93:a1:62:
09:da:39:bb:b2:93:cd:25:fe:84:da:e9:70:62:bb:
1f:52:02:88:5d:e0:91:84:a4:47:8e:90:8e:b0:6a:
ae:6a:6c:f5:3c:34:0d:aa:2c:86:ec:5f:0c:13:d4:
44:77:ff:f2:f5:62:b0:e9:4b:70:24:d8:dd:b3:06:
38:66:53:05:12:89:ea:ed:ae:80:de:97:d9:e6:43:
30:c0:e2:bc:5a:1a:90:69:d8:64:a6:d2:d5:3d:06:
96:d2:f6:5f:c0:fa:a4:0a:15:70:61:b9:91:da:b2:
ec:a1:64:d8:0b:ee:e1:66:f7:dc:19:0d:c2:be:a3:
ac:76:22:d9:61:74:20:1a:26:cc:02:e0:69:47:8e:
86:9e:f1:bb:bb:6d:04:7d:4f:1f:c9:49:0c:b2:d3:
bf:12:28:96:8d:74:e7:e4:63:b9:1f:b0:4b:b4:7e:
bd:ce:58:2c:3f:c0:3a:c8:52:1c:25:29:be:fb:cf:
96:fa:46:7e:f9:32:58:6c:38:7e:55:b8:c3:6f:c0:
d7:dd:b4:4d:c3:1f:b8:5d:c4:4c:f3:8d:5e:b6:39:
31:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:DC:EA:92:57:4B:1A:0B:DD:97:FE:93:4C:63:7A:04:FF:0C:B6:98
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YdzqkldLGgvdl_6TTGN6BP8Mtpg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.67.192/27
Signature Algorithm: sha256WithRSAEncryption
ab:62:57:87:4c:fb:64:91:23:cb:05:53:7e:d8:cc:e8:fc:7a:
f3:a6:37:6f:8d:01:99:49:48:b7:d5:7a:20:34:de:14:48:35:
22:57:d6:ef:bf:ac:62:93:f7:82:03:11:93:d0:7b:3c:78:8d:
74:60:7e:ed:38:bd:67:39:a6:c0:86:18:00:2a:01:28:c2:ab:
c3:ff:8d:f1:0a:fe:fd:e3:15:b5:0f:86:f4:31:7b:41:ed:83:
e4:99:c1:e3:e3:d7:ed:e2:06:df:29:d8:ac:fc:0e:e2:34:f2:
fe:fa:c7:5c:a0:c4:1c:20:26:b3:7b:7c:61:25:45:b8:82:36:
28:3a:50:86:db:d3:a6:75:06:33:23:5e:dd:97:a7:70:21:dc:
8e:f7:17:6c:31:cc:43:cb:e1:00:3d:81:51:02:02:f6:d4:f6:
37:01:6d:f3:04:f2:8d:fd:7d:fb:2a:08:16:76:1e:33:21:db:
86:e9:00:ed:28:e3:e5:a4:e1:60:16:15:6e:90:c6:24:18:b0:
9c:ce:69:07:c9:72:78:bb:02:21:8b:db:a4:d4:a4:f1:54:9b:
6b:54:29:7d:3e:a1:e2:ab:35:ff:b6:ec:97:11:79:51:45:c5:
a6:fe:af:fe:96:48:4b:78:5d:a0:17:6c:4d:78:02:ee:ad:7d:
4b:23:0d:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:34 2025 by rpki-client