Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/_PtF5E9RpfqZ9j5paACjO66PsdQ.roa
File: _PtF5E9RpfqZ9j5paACjO66PsdQ.roa (raw, json)
Hash identifier: TIXUUnlnJn6IiB7hb4U86gmfnpLQmfAD0VlX9nz/Ty0=
Subject key identifier: FC:FB:45:E4:4F:51:A5:FA:99:F6:3E:69:68:00:A3:3B:AE:8F:B1:D4
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0ABF
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_PtF5E9RpfqZ9j5paACjO66PsdQ.roa
Signing time: Sun 07 Feb 2021 11:38:57 +0000
ROA not before: Sun 07 Feb 2021 11:38:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 220.132.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2751 (0xabf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FCFB45E44F51A5FA99F63E696800A33BAE8FB1D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:05:b7:11:74:f9:dc:76:2c:b6:23:80:e2:52:
c7:d7:40:b8:da:07:ea:6c:77:88:64:8d:44:e6:4c:
6c:a7:50:c6:43:50:1f:ff:45:ac:b4:1c:67:d1:85:
a7:66:43:52:f6:5a:8e:10:2e:c3:01:8e:02:c9:12:
2e:bf:c6:31:90:b9:09:88:8a:1c:8a:f0:08:f2:84:
ae:43:96:0a:8d:a9:7d:c3:3b:42:e4:b7:a8:a1:6c:
6c:08:d5:6b:f7:27:27:31:f2:c4:13:73:8a:4f:58:
04:6c:99:e0:6e:fe:a5:06:5b:5e:d2:a8:9f:f4:a1:
e4:6c:1c:80:bd:cc:2c:04:ab:37:fc:b5:a9:0d:64:
13:fe:3b:06:5c:ad:b4:2c:c3:16:43:81:61:04:da:
fe:dc:5d:00:79:b9:ec:39:1d:ca:45:52:32:d4:6f:
4c:fd:86:a3:9e:df:f4:3d:73:13:cc:5e:41:e2:7c:
46:4b:3c:85:5c:c5:e1:eb:fb:9f:33:31:c7:aa:5f:
e5:ac:76:49:aa:f3:c1:2d:a4:7a:29:b2:7a:d0:a0:
f3:d4:b4:75:bb:08:b3:43:42:40:c3:61:a0:7c:2c:
29:45:54:d7:29:89:4e:d4:61:31:38:96:2c:9e:2d:
dd:3b:9a:52:62:1d:c9:7d:bc:c6:c5:0a:ba:e5:14:
4e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:FB:45:E4:4F:51:A5:FA:99:F6:3E:69:68:00:A3:3B:AE:8F:B1:D4
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_PtF5E9RpfqZ9j5paACjO66PsdQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.132.0.0/14
Signature Algorithm: sha256WithRSAEncryption
8a:0c:97:38:80:c2:69:a6:26:5d:e5:63:00:35:2f:70:46:d9:
11:66:d1:dd:8a:25:99:e0:0a:3a:38:a3:7f:c8:e4:20:19:ca:
e9:7b:2e:f7:c2:9d:60:ca:7d:fe:29:7e:fd:5f:a1:46:0e:c4:
ad:bb:1a:c4:86:f0:a9:b9:d6:87:f9:69:2b:25:4e:ed:fa:a7:
84:f5:cc:0d:9b:4c:5c:51:d7:f9:4f:02:d1:fc:e8:58:3b:1d:
eb:02:e6:03:f3:d3:a1:04:56:22:cd:f3:8d:aa:28:f7:db:56:
90:95:c8:d5:75:ab:c5:53:0b:a0:15:b3:81:3a:31:ef:24:fa:
af:85:ed:65:20:6f:d9:29:45:31:98:20:0d:5b:ab:62:3d:fa:
9a:7c:bf:a2:b3:57:51:d0:7b:bb:80:3f:73:2c:b6:a1:45:51:
ac:52:c4:8f:2b:ed:40:b8:a7:44:c0:ff:f7:51:bd:ac:c0:37:
bf:c5:3f:6c:f7:10:a9:4b:34:b1:d1:9d:26:b9:ae:ea:dc:1e:
48:b1:e1:0f:27:98:22:b3:5c:93:5d:68:66:14:ec:9a:a5:4c:
42:4f:61:18:fd:ca:5f:30:70:7c:00:f6:93:06:d6:de:93:6a:
0a:06:73:59:5b:39:13:00:41:1d:37:e6:c4:b5:e6:e1:4f:00:
98:5e:e0:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:34 2025 by rpki-client