Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/l0ma5NESTSbgYTsOxyDrKalLrgY.roa
File: l0ma5NESTSbgYTsOxyDrKalLrgY.roa (raw, json)
Hash identifier: 8BF2HMB5HyNAWP6vr3Frreo1MZJXZ3ww5LMJ8e28KSU=
Subject key identifier: 97:49:9A:E4:D1:12:4D:26:E0:61:3B:0E:C7:20:EB:29:A9:4B:AE:06
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/l0ma5NESTSbgYTsOxyDrKalLrgY.roa
Signing time: Thu 15 Sep 2022 02:48:27 +0000
ROA not before: Thu 15 Sep 2022 02:48:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 211.21.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:27 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=97499AE4D1124D26E0613B0EC720EB29A94BAE06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e4:8a:8c:21:22:09:85:ee:bc:38:d2:55:22:
72:a0:9b:b3:ba:64:06:3e:4e:81:3e:71:64:0e:7b:
02:05:ba:53:1a:6d:0b:4a:b6:ca:a2:e1:75:5d:4c:
7b:55:0d:6e:1b:26:1c:69:08:bb:a7:a2:35:73:4f:
59:fd:ff:79:94:61:73:67:1f:dd:d7:0b:b1:55:51:
af:a6:04:c3:a2:b5:d2:80:93:6a:f3:17:af:28:06:
41:ca:79:dd:95:f3:00:3b:3e:0e:fe:f0:89:27:85:
e7:74:00:39:9e:59:15:97:af:cd:5e:70:ab:ae:6a:
a4:a2:70:4d:18:6c:e9:c7:1f:ca:9a:cb:f5:bb:01:
9e:b7:75:4e:c7:5a:75:31:3d:22:f1:9d:09:ea:58:
7b:f7:0a:58:27:01:02:ab:9e:1e:7e:af:4c:0e:d6:
f4:33:b1:7c:d0:af:a1:6e:af:98:3a:2b:cb:cf:5d:
e5:b3:71:a3:55:8c:12:4d:9a:51:67:6e:43:21:45:
52:cc:ab:ea:b7:90:9a:5c:a1:24:37:fb:6b:d8:30:
6e:94:8f:82:52:20:83:6c:bc:2f:85:19:2e:01:d9:
f8:ce:05:71:90:da:6e:09:82:b6:02:e5:95:9f:59:
71:17:0c:55:7b:54:15:bc:a9:3d:c8:ed:f2:12:e8:
bb:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:49:9A:E4:D1:12:4D:26:E0:61:3B:0E:C7:20:EB:29:A9:4B:AE:06
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/l0ma5NESTSbgYTsOxyDrKalLrgY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.21.0.0/16
Signature Algorithm: sha256WithRSAEncryption
42:7d:8f:c5:33:e6:64:8e:ca:9b:7e:2b:93:c0:4b:70:be:d8:
97:16:63:2f:c5:33:13:80:67:4f:c2:8b:6c:c6:26:11:a2:3e:
59:5d:a3:db:5f:0d:87:e8:78:b7:68:06:f4:56:26:64:02:84:
49:f5:8f:2e:e1:2f:e6:45:d9:0d:ac:ee:60:23:82:e1:bf:2a:
c2:1d:a8:6d:af:fd:cf:9a:97:71:ab:b2:cd:34:6c:7a:35:c1:
47:fe:ae:8d:99:57:e1:3a:3d:36:21:d5:2f:e1:56:1b:ea:b8:
51:bf:5d:cc:e5:48:b4:df:4f:0e:c8:f3:52:eb:4c:c3:e2:37:
b9:0b:44:95:5a:62:bb:e3:26:95:9e:a0:d2:08:e9:5c:cc:8d:
5a:ed:28:28:cb:c6:6a:a1:09:d9:d8:f0:73:25:62:53:f4:81:
9e:6d:22:cf:6d:84:0b:cf:fa:1d:b5:5d:cd:9e:1c:c9:9d:5f:
af:ed:73:a1:0f:6c:09:72:13:3c:7a:1b:98:da:97:f4:02:df:
60:85:a4:fe:12:09:ef:22:48:d1:6e:fa:3e:2c:73:4f:1d:01:
eb:69:60:11:39:17:ad:03:a7:ff:70:cd:fd:91:49:68:da:07:
0d:ce:f2:06:d5:7d:79:99:de:13:2a:24:c3:ef:25:22:de:24:
32:60:b9:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:51 2025 by rpki-client