Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/_yA-i8wkYUCXU-t4SjJQk53DLIY.roa
File: _yA-i8wkYUCXU-t4SjJQk53DLIY.roa (raw, json)
Hash identifier: Kd0w7sf69meIQWnYaokIynRDdMM52Grdg2CosYrBX/I=
Subject key identifier: FF:20:3E:8B:CC:24:61:40:97:53:EB:78:4A:32:50:93:9D:C3:2C:86
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C14
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_yA-i8wkYUCXU-t4SjJQk53DLIY.roa
Signing time: Wed 29 Sep 2021 02:50:51 +0000
ROA not before: Wed 29 Sep 2021 02:50:51 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 125.232.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3092 (0xc14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:51 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FF203E8BCC2461409753EB784A3250939DC32C86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:07:36:d8:e6:93:ea:1b:92:0c:13:39:2c:5b:
63:bf:8c:0c:1a:a4:ab:2e:87:7c:db:5d:af:b1:1a:
ac:fc:6e:b9:e1:6f:e1:50:4b:46:8d:d5:d2:cd:3a:
8f:96:6d:ba:1f:e8:e6:ab:b7:d1:d4:bd:f4:51:6c:
77:2d:2e:da:5a:27:9c:33:e6:ae:ac:ab:85:92:8e:
8d:24:34:16:9d:a0:59:5c:55:67:18:a3:a4:48:30:
5f:3e:bf:37:4f:a0:5e:d8:fa:1b:43:75:68:79:fe:
4c:c4:34:70:54:c3:8f:40:e4:ae:c6:27:4e:17:1e:
d0:3d:8e:ba:4e:28:eb:a1:9f:a0:26:cb:fb:ff:f5:
b7:06:de:7f:86:c0:c0:2f:43:91:38:cb:5f:16:cf:
cb:55:be:83:ad:c7:73:09:45:0f:ed:4b:e7:54:fc:
49:d4:67:16:ae:63:1b:80:b2:08:a6:c1:59:ce:00:
74:af:ab:2c:9c:35:05:2e:d6:56:89:5f:68:d7:97:
f4:69:1e:20:97:a0:d6:91:a3:3a:37:30:49:b9:0f:
17:d5:6e:6f:cc:d8:f1:6a:83:b6:d7:f0:f7:56:8a:
0d:43:b4:28:ab:5c:9e:f7:9a:69:5b:13:c3:98:d2:
9d:d4:72:91:11:9e:97:93:3f:70:cf:4d:83:08:5e:
e7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:20:3E:8B:CC:24:61:40:97:53:EB:78:4A:32:50:93:9D:C3:2C:86
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_yA-i8wkYUCXU-t4SjJQk53DLIY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
125.232.0.0/15
Signature Algorithm: sha256WithRSAEncryption
3c:08:1b:01:03:ad:13:19:50:f1:e2:ba:60:86:07:b6:ab:f5:
33:f0:79:e7:0a:11:88:62:3b:a0:9b:53:0a:6b:1a:62:5e:0c:
41:9f:9b:77:84:6e:de:5a:0c:79:c1:d7:80:24:db:73:b9:3b:
46:63:f9:b1:7e:11:c6:59:4c:8d:d4:15:5a:cf:99:8d:cc:9b:
fe:94:25:4e:32:eb:3a:5d:37:54:e6:5c:91:2a:e9:35:11:73:
1b:d6:f2:c9:a9:ae:0a:fa:5b:06:12:d3:81:47:1e:63:ad:d9:
a3:1e:5e:9d:fb:73:ff:11:42:6b:c4:ab:54:3d:f8:9a:ba:08:
30:9b:bb:86:be:1e:85:9a:66:5e:2d:b7:c1:87:ab:b3:ef:b8:
1f:58:40:37:f2:c0:d0:3a:ef:1b:a3:3b:a4:d2:2a:26:db:dd:
ef:24:b9:bb:28:e1:9b:a3:fe:d9:bd:03:09:3b:52:a6:ad:90:
5a:35:d4:ca:a4:76:81:13:a0:32:58:b9:bb:cc:27:d7:42:e1:
34:84:9d:f2:56:94:ab:45:93:2b:c1:06:9f:c5:e7:f8:ad:be:
cb:08:4e:93:55:0e:eb:04:ce:69:81:fd:3f:df:78:c7:2a:f8:
71:9e:89:c7:f6:37:a3:2a:d1:7c:81:ee:0f:d5:72:1c:35:6a:
5c:fc:75:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:03 2023 by rpki-client on console-fra.rpki-client.org