Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/fETGlxLrBd3ZB3UDnE64XAuAfXA.roa
File: fETGlxLrBd3ZB3UDnE64XAuAfXA.roa (raw, json)
Hash identifier: a/QCmWZs9Ft5uZyDutX6AezmU2SPJL/nh8kBv8Rplbs=
Subject key identifier: 7C:44:C6:97:12:EB:05:DD:D9:07:75:03:9C:4E:B8:5C:0B:80:7D:70
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0A66
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/fETGlxLrBd3ZB3UDnE64XAuAfXA.roa
Signing time: Sun 07 Feb 2021 11:37:42 +0000
ROA not before: Sun 07 Feb 2021 11:37:42 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20940
IP address blocks: 210.61.248.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2662 (0xa66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:37:42 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=7C44C69712EB05DDD90775039C4EB85C0B807D70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:d0:b2:bf:70:0e:23:ab:c3:3b:92:1f:92:51:
c5:ef:05:6d:3a:63:c1:96:d2:cb:ba:5a:f0:b8:44:
ef:68:7b:f3:61:b1:cc:69:45:02:f5:ba:8c:af:5f:
7c:65:9a:8e:82:1b:7b:10:2a:d7:0d:0f:80:57:09:
f4:0e:ee:25:98:5a:d9:34:d5:17:d7:28:83:c7:ad:
21:ca:8a:32:09:90:40:3d:fc:5e:8e:2f:f8:e2:75:
0b:99:b1:46:c0:33:b3:2f:79:e6:af:53:3c:fa:cf:
08:59:83:eb:2e:11:97:a8:36:00:ad:b9:6c:26:06:
5c:19:0d:96:0a:1e:37:53:80:d3:29:de:2a:03:04:
21:64:2e:e2:68:35:e2:19:e1:40:6b:88:dc:6c:1d:
7a:d7:8d:b0:f9:e2:b1:a8:25:ea:f8:40:15:8f:5a:
dd:64:24:53:46:61:67:69:98:ef:4d:74:57:00:f3:
45:d6:7f:47:9a:0b:9d:7c:52:4b:26:ce:4e:8b:02:
a6:90:18:b2:11:af:6d:d0:5c:38:eb:4d:a7:2c:aa:
3b:a1:ab:33:1b:c6:a3:8b:0f:c3:f4:07:af:b2:59:
c5:21:7e:5a:67:96:c2:bc:28:55:0e:11:0c:d2:06:
18:45:02:54:b3:8a:94:33:4d:d3:8d:00:39:34:1c:
ae:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:44:C6:97:12:EB:05:DD:D9:07:75:03:9C:4E:B8:5C:0B:80:7D:70
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/fETGlxLrBd3ZB3UDnE64XAuAfXA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.248.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:bf:c9:05:d4:85:3e:2a:ce:2f:f9:da:1a:c0:2a:f2:96:58:
49:0d:20:a8:73:3c:2b:0d:a6:b8:5c:2c:8e:04:67:43:5a:a4:
4c:c2:d9:f8:06:0c:b0:62:97:c0:60:a1:dc:76:e0:75:19:c4:
38:78:0d:cd:da:16:76:e4:e5:11:5f:23:02:9c:0d:74:99:32:
1d:aa:da:7b:7e:2f:64:97:8a:ac:82:b4:19:5c:27:e2:a8:75:
bc:60:6b:41:e9:31:ba:9e:4e:12:0c:04:06:51:fc:82:60:87:
a1:7b:41:cd:a6:ee:1c:b5:d2:a3:f2:e5:72:72:23:5b:2d:71:
a3:03:2d:ab:2d:fd:8c:84:9b:e9:0a:ab:60:41:1e:07:bf:86:
65:b7:6d:1c:c4:43:78:3a:46:0e:76:c6:a7:79:24:f3:3f:14:
72:5e:a2:b0:6a:6d:32:c7:1d:91:b7:4c:f3:22:4d:08:1c:5c:
34:ee:61:c2:f4:a0:a9:82:c2:36:d0:f6:7a:5c:82:60:7b:d7:
c3:2d:79:ad:2a:17:2e:02:e4:d2:84:77:31:d1:4a:c6:ca:0c:
e6:02:86:d3:dc:b8:a2:81:d7:59:f1:b4:a2:1d:39:a0:e0:0c:
bd:97:2a:7b:f9:52:14:44:d8:91:48:2b:8d:a3:f0:49:0d:5b:
5a:9d:ed:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:55 2025 by rpki-client