Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/_GAbYolCN-Q9DQuQra2zvc4uvi4.roa
File: _GAbYolCN-Q9DQuQra2zvc4uvi4.roa (raw, json)
Hash identifier: sBx0AbdmOkJyrNHNPN0HrMgIBrMiuxUdQXvQ3jeZyjg=
Subject key identifier: FC:60:1B:62:89:42:37:E4:3D:0D:0B:90:AD:AD:B3:BD:CE:2E:BE:2E
Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Certificate serial: 084A
Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_GAbYolCN-Q9DQuQra2zvc4uvi4.roa
Signing time: Mon 09 Nov 2020 02:06:33 +0000
ROA not before: Mon 09 Nov 2020 02:06:33 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131660
IP address blocks: 168.95.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2122 (0x84a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Validity
Not Before: Nov 9 02:06:33 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FC601B62894237E43D0D0B90ADADB3BDCE2EBE2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2a:fe:f8:fb:9a:8d:dc:ac:65:07:9a:bc:93:
68:73:88:d3:43:87:13:5c:3d:7a:79:e9:83:b6:e1:
ee:d6:15:77:32:7b:8c:49:ee:fa:8f:b2:69:ee:b9:
12:e7:0a:be:8a:f3:34:a4:75:ec:96:89:aa:84:04:
c1:b8:ea:b8:cc:2c:fe:f7:e9:9d:45:0c:ec:2c:ae:
e1:83:ff:8f:d0:b9:d5:a5:f2:10:32:79:0b:0b:0d:
2e:10:fb:74:0a:b7:2f:b7:3f:e6:6a:c6:97:74:49:
0d:7e:53:68:2f:14:73:00:bd:4a:af:4a:78:12:39:
c7:29:d7:e6:99:2e:32:42:50:24:02:cf:c4:07:fc:
62:57:c0:52:40:81:59:d7:52:6a:7b:58:f1:f7:4a:
64:ad:05:ce:56:db:f8:7d:db:9c:e0:02:85:5d:50:
0f:51:f8:ff:d0:0f:e4:66:54:50:a2:f0:a1:11:5f:
69:d3:c8:88:72:3e:35:f3:0c:d0:b0:72:a0:ad:af:
a2:c1:ba:b1:fc:83:31:26:7c:a0:c0:90:db:6b:19:
80:da:58:08:14:95:fa:7f:3e:97:0c:e1:a3:93:3a:
80:81:51:f2:c3:77:17:85:6a:fd:e7:6c:8f:af:55:
69:11:12:57:bf:0a:28:ec:e3:98:ea:50:91:2f:d6:
93:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:60:1B:62:89:42:37:E4:3D:0D:0B:90:AD:AD:B3:BD:CE:2E:BE:2E
X509v3 Authority Key Identifier:
keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_GAbYolCN-Q9DQuQra2zvc4uvi4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
168.95.245.0/24
Signature Algorithm: sha256WithRSAEncryption
66:eb:9e:e8:a3:21:06:3d:a3:28:e3:17:f3:c1:c9:9c:59:2f:
05:c6:0c:8d:e7:3c:0a:33:a7:8b:f1:a5:d4:ad:fc:76:22:d0:
18:fd:45:e5:55:a1:7d:08:bc:42:ef:c0:21:7a:b0:54:07:3d:
fd:0f:f4:f5:63:6a:f6:1c:80:8e:20:08:9b:96:02:a8:c0:b5:
8b:35:22:94:dc:85:09:db:97:96:2d:1f:a7:29:a3:0f:16:6e:
87:23:0d:3f:d9:21:ea:5a:26:ff:a6:2d:d9:bd:57:53:cf:86:
d8:b5:45:97:1b:ea:42:12:1f:25:d1:c4:d0:1f:fe:16:cf:ec:
6e:e9:d5:96:99:4d:5c:a1:7e:4d:73:5a:1b:b8:69:b0:99:87:
6a:e3:6e:ae:df:ad:28:1d:b9:45:67:f0:d8:8b:3b:f6:75:11:
d1:0b:0d:37:48:4e:10:44:ee:a3:98:3f:b5:e3:db:30:c8:18:
b6:18:35:35:b6:52:9f:b9:56:86:47:67:1c:43:05:87:30:cd:
32:73:21:1e:28:68:86:1c:ca:39:31:23:fe:8e:f3:55:98:f2:
41:a0:d8:18:61:32:90:69:64:c9:9f:a3:57:db:82:58:f6:b1:
f9:94:98:49:47:92:0a:73:dd:72:a5:6d:18:2a:6d:37:e6:fe:
9e:c2:32:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:03 2025 by rpki-client