Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/lTZ39noC3ANjL-skio2T7YCMVPM.roa
File: lTZ39noC3ANjL-skio2T7YCMVPM.roa (raw, json)
Hash identifier: 7THHXMPwnEeyDWfL9atlikQvhUfgExIMn9HaPFR2IcU=
Subject key identifier: 95:36:77:F6:7A:02:DC:03:63:2F:EB:24:8A:8D:93:ED:80:8C:54:F3
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0814
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lTZ39noC3ANjL-skio2T7YCMVPM.roa
Signing time: Tue 29 Sep 2020 09:58:19 +0000
ROA not before: Tue 29 Sep 2020 09:58:19 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 17421
IP address blocks: 116.59.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2068 (0x814)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:19 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=953677F67A02DC03632FEB248A8D93ED808C54F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2e:58:d4:ac:bf:b6:3e:7d:06:c5:8b:84:95:
49:31:d3:c1:76:b4:8a:bd:bb:89:7c:38:9e:77:2d:
f5:b8:f4:da:ce:84:c3:98:fc:25:13:b7:6c:1e:8c:
e3:31:48:5b:3d:da:0c:95:66:ef:86:c4:84:a4:ec:
73:f1:d1:c9:33:fc:6f:fb:13:48:54:d2:f9:0e:86:
ab:b5:24:63:05:ab:17:da:21:57:ed:f3:c6:57:fa:
fa:94:23:4e:ef:47:af:79:42:e5:59:6c:5f:3f:1b:
40:e0:43:45:41:09:24:a0:77:a0:5c:48:38:11:d9:
93:ac:eb:1e:b7:63:01:ef:96:c6:75:84:71:c4:32:
92:d7:a0:a3:6d:db:63:24:e8:e8:41:fd:2f:cb:25:
cf:3b:9a:16:ff:0c:a1:a9:a8:3f:28:84:57:70:b4:
e0:3f:b6:4a:2e:06:5f:17:b6:dc:82:b1:71:58:ec:
b1:d7:2a:d2:66:1a:76:70:f6:83:77:3c:cb:56:d5:
54:44:4d:f5:e8:3a:ce:93:75:20:b5:73:9f:e0:6d:
0e:95:cf:53:ab:30:2b:f8:47:b6:a7:ce:16:b5:d4:
28:1f:d8:1f:94:34:08:76:8a:b1:9c:a2:28:fb:cf:
c6:fd:0c:e9:95:32:ae:6e:89:c0:45:fe:c9:64:ca:
80:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:36:77:F6:7A:02:DC:03:63:2F:EB:24:8A:8D:93:ED:80:8C:54:F3
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lTZ39noC3ANjL-skio2T7YCMVPM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
54:1c:b3:00:eb:53:83:92:e8:bb:6f:65:b7:40:73:dc:1d:a2:
15:8f:01:da:24:d3:27:17:a6:8c:7a:88:72:0c:7c:4f:d8:bf:
f7:fa:9c:6f:73:b7:37:6c:f6:70:b1:66:c1:70:da:4b:2e:cf:
54:83:78:7a:33:2b:7a:9b:03:22:52:cd:59:5d:c8:f1:e3:09:
e6:af:fc:ff:d9:ab:f6:e4:46:1d:f6:17:6c:b5:a6:0e:80:56:
02:42:a6:b0:e2:16:dc:de:d1:1a:79:d9:38:87:c9:f1:fe:8c:
ba:53:c6:95:46:5f:ee:fe:86:c7:f9:9b:79:f4:20:dd:0d:16:
07:46:bf:10:61:75:26:0c:05:93:18:14:f1:29:b2:35:cb:44:
e2:b4:a5:cf:c2:02:67:aa:b8:d8:af:9b:48:89:14:42:6c:eb:
08:04:51:66:7f:b9:13:03:3b:73:b3:7e:a0:12:08:e3:fb:63:
81:17:0c:71:5f:3a:28:5b:aa:38:ee:4a:ac:07:16:ce:55:88:
91:b7:7d:4d:bb:89:17:60:1f:76:b5:7e:7f:63:40:c0:d7:ac:
63:2b:a7:8a:2c:77:39:13:b0:57:c5:04:55:0d:0b:f9:87:58:
bc:67:e5:dd:9c:21:5e:66:f7:26:6f:9b:3b:c0:98:b9:e4:55:
62:d2:9b:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:46:06 2025 by rpki-client