Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/nn0vy2_6yiyqYkeCDFgs7FateUA.roa
File: nn0vy2_6yiyqYkeCDFgs7FateUA.roa (raw, json)
Hash identifier: nFzRE4E9NkyvG22/DrXHQbu7FTYdS+6+0JWUeI1dzes=
Subject key identifier: 9E:7D:2F:CB:6F:FA:CA:2C:AA:62:47:82:0C:58:2C:EC:56:AD:79:40
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AB5
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nn0vy2_6yiyqYkeCDFgs7FateUA.roa
Signing time: Sun 07 Feb 2021 11:38:49 +0000
ROA not before: Sun 07 Feb 2021 11:38:49 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 220.128.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2741 (0xab5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:49 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9E7D2FCB6FFACA2CAA6247820C582CEC56AD7940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:88:56:55:c0:63:03:3a:eb:64:17:ac:2e:08:
0d:62:c7:9a:9e:18:77:82:2e:8f:6d:75:a8:6c:b3:
15:a2:b2:4e:d5:ee:1a:35:46:19:87:5a:a5:c7:e2:
37:bb:02:88:8e:d7:b3:0b:7e:c6:39:ea:d4:56:a6:
1b:41:9b:86:ad:a4:46:d0:f8:17:06:1d:46:28:4e:
ba:72:d5:2c:58:2e:d5:27:b7:1f:0e:09:bb:a3:78:
84:97:65:55:35:8b:9e:6a:87:64:20:ed:1d:8b:37:
08:54:6f:d4:e9:5f:06:94:3a:66:19:57:12:9a:ef:
cd:29:e2:65:81:d8:1e:63:75:c0:15:ad:26:ec:79:
c4:96:5e:fd:9d:4a:d0:ac:d1:c1:4f:11:18:92:33:
61:63:53:28:78:a8:45:5c:3f:02:1f:7d:06:cb:72:
e8:26:27:35:d2:78:b9:f6:9f:10:48:c0:f9:39:40:
c5:e9:99:a9:0f:99:a9:3f:62:c8:95:c5:b9:27:86:
44:79:02:08:c5:b2:ca:d4:12:75:55:a7:19:56:b7:
f2:d3:28:50:90:14:94:19:39:89:ee:7a:5e:40:e9:
72:b1:c8:cf:f5:9f:68:52:fd:93:69:1f:0f:e6:51:
d1:fa:4a:b9:5d:93:b9:3c:fd:7b:bf:5b:4b:1b:14:
43:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:7D:2F:CB:6F:FA:CA:2C:AA:62:47:82:0C:58:2C:EC:56:AD:79:40
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nn0vy2_6yiyqYkeCDFgs7FateUA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.0.0/18
Signature Algorithm: sha256WithRSAEncryption
53:0f:eb:ca:2e:8c:55:b4:8e:16:14:d9:c2:76:de:bf:a8:66:
dd:34:55:69:ab:54:a6:92:10:21:a1:c8:a7:c3:eb:25:e5:58:
97:3a:5e:9c:85:15:7b:1b:9d:0e:8d:b0:92:f0:55:65:78:6f:
d0:19:a3:55:51:bb:20:08:6c:df:ef:9e:9d:53:4d:7b:74:0e:
2b:52:4f:10:39:06:b8:2b:cd:fc:f2:f5:ef:31:b3:5f:e0:a1:
bd:b5:d8:43:12:ce:fb:7c:a9:bd:39:33:7b:b0:fd:2d:16:7d:
2f:1e:90:1c:e3:c2:7a:ba:5a:82:54:11:50:c6:f3:20:08:cc:
a7:0c:45:c2:b4:5c:83:8d:3b:5a:2f:9f:e6:17:e2:68:46:38:
5e:c2:61:a1:9b:b8:29:83:9a:9c:80:5b:29:47:11:e4:2d:73:
2f:ab:9e:6d:06:23:26:cd:a1:e4:e5:55:d7:4f:62:fc:e2:6c:
2b:51:18:92:81:26:51:f2:8e:d0:16:66:8d:91:f3:1d:7e:75:
b5:1c:35:d2:0f:1c:c6:c9:45:e3:21:f5:02:ee:6f:58:db:57:
e6:4a:d4:4c:66:3b:d7:82:65:97:89:10:c8:9e:21:49:64:a0:
86:a3:2a:76:f2:f5:7c:3b:c8:a2:c0:0c:bc:d0:79:bb:4c:df:
8c:32:2a:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:25:08 2025 by rpki-client