Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/m8HzXk8y6rd-16e-V7uYVERXJ0E.roa
File: m8HzXk8y6rd-16e-V7uYVERXJ0E.roa (raw, json)
Hash identifier: /JW1H/6CFW2uErq618jlQYz0ivqgQ44/TwMbezJyE08=
Subject key identifier: 9B:C1:F3:5E:4F:32:EA:B7:7E:D7:A7:BE:57:BB:98:54:44:57:27:41
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0850
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/m8HzXk8y6rd-16e-V7uYVERXJ0E.roa
Signing time: Tue 29 Sep 2020 09:58:36 +0000
ROA not before: Tue 29 Sep 2020 09:58:36 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 118.160.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2128 (0x850)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:36 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9BC1F35E4F32EAB77ED7A7BE57BB985444572741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a4:ea:4b:f1:fd:35:9c:df:18:56:33:af:34:
2e:02:a4:52:68:34:55:7d:c0:91:64:a8:20:ee:d2:
cf:ce:90:a6:0e:18:ab:54:fb:d4:1d:91:8b:ef:f4:
6e:ac:87:8d:17:47:d5:64:6e:ce:88:df:6b:a9:7e:
e0:7f:99:ba:f1:27:f3:c4:db:43:a9:bf:b8:eb:9e:
a9:60:a4:f9:f1:7a:e2:b8:c9:87:bd:fd:c4:7b:60:
49:e8:83:0e:2e:8a:6d:9a:73:13:63:1f:24:1a:02:
f2:40:82:85:80:63:c2:5c:18:b0:92:37:b5:24:25:
c0:ef:47:ef:2c:9f:e9:7e:27:bf:bf:1e:ba:90:96:
95:cb:f6:e9:39:09:77:bd:38:ff:29:bb:d8:06:57:
ed:5f:30:61:0b:4e:7f:e8:7a:f6:71:85:22:25:6d:
79:de:97:fa:27:af:fd:43:05:9e:90:9b:fd:5c:8b:
e7:37:df:d2:af:a6:95:8f:84:d5:c5:9b:73:68:7e:
f1:25:59:3f:18:c0:a2:48:fc:ef:e0:45:f5:fc:04:
55:14:92:74:b2:4c:27:de:95:e1:79:5c:75:26:db:
39:60:37:b2:69:bf:4d:8a:3b:4e:32:ec:fa:62:cc:
f9:ed:1a:94:a1:68:85:3d:53:aa:91:3a:35:65:50:
41:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:C1:F3:5E:4F:32:EA:B7:7E:D7:A7:BE:57:BB:98:54:44:57:27:41
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/m8HzXk8y6rd-16e-V7uYVERXJ0E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.160.0.0/13
Signature Algorithm: sha256WithRSAEncryption
d2:16:6b:30:2a:ea:ca:ab:15:af:69:c4:4f:e6:af:92:cb:0c:
cc:7e:3f:78:f5:83:9b:41:06:3a:a6:a5:aa:b0:b0:b6:99:4a:
d4:bc:0c:25:d8:90:fd:23:bb:73:2f:a8:05:fc:29:6e:9a:40:
95:ae:91:e9:da:40:d0:bd:62:e1:79:2b:d8:0a:83:92:16:c4:
5b:27:95:b4:28:67:74:fd:3f:1b:24:89:45:f2:39:45:07:82:
8c:a5:02:bd:10:eb:92:03:97:83:80:63:b1:a3:32:b8:5e:95:
e2:27:f0:5a:05:a6:ac:b7:24:ec:ad:59:ad:ff:41:b1:80:d8:
ca:f2:03:fc:44:7f:f8:9f:78:22:53:c1:8b:d7:5c:56:7e:54:
1b:d7:26:4a:83:ac:20:1a:21:78:8f:76:93:80:a7:2d:37:62:
9b:ab:af:99:df:93:b3:e0:f5:ab:47:3a:ed:7c:69:7b:b5:54:
e8:6b:1a:4c:e3:37:39:b8:7f:06:be:52:c6:0a:c2:13:b0:ad:
8c:47:38:87:19:34:a4:78:ae:ee:ff:84:8f:9f:33:58:74:b4:
91:b2:2c:2a:e6:85:f9:57:7f:28:4d:c0:da:4d:ac:77:c4:b1:
9d:1a:5c:72:34:c8:28:41:0a:56:8b:bf:2a:fa:b3:fb:ab:71:
41:95:8a:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:17 2025 by rpki-client