Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/oP788sgg7P6JQpbrZSIVnZi7UW4.roa
File: oP788sgg7P6JQpbrZSIVnZi7UW4.roa (raw, json)
Hash identifier: kiU1YLqqYipIiJw0+k8n5LXFBNi6Hx5M9Oqk3O9mVAo=
Subject key identifier: A0:FE:FC:F2:C8:20:EC:FE:89:42:96:EB:65:22:15:9D:98:BB:51:6E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0F63
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/oP788sgg7P6JQpbrZSIVnZi7UW4.roa
Signing time: Fri 01 Sep 2023 08:57:00 +0000
ROA not before: Fri 01 Sep 2023 08:57:00 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 3462
IP address blocks: 220.128.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:57:00 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A0FEFCF2C820ECFE894296EB6522159D98BB516E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:15:60:51:86:5f:ae:5a:93:99:63:d4:c7:79:
72:6a:d2:4b:8b:61:b6:d3:b6:44:c2:d3:5b:a6:cf:
1d:9c:c3:59:6f:b4:f2:10:ac:1f:a9:4c:14:52:01:
f3:a2:85:91:d8:c9:f1:06:68:fd:37:57:9a:83:ea:
d6:fd:85:d6:08:4c:77:da:fc:4d:60:cd:15:ce:31:
e6:3b:4c:84:ff:c1:99:d0:7c:7c:c3:9d:e1:b2:27:
a8:d1:60:58:ee:2b:15:14:2d:58:6a:90:81:e5:1f:
07:64:c8:ce:1c:f3:18:6f:04:e6:07:99:78:74:88:
b2:bb:3e:4a:e7:c5:22:75:d6:42:99:24:e8:9e:a7:
20:0b:77:b6:c5:74:ab:bf:da:6b:5e:69:ae:8f:eb:
58:d1:c7:c8:a4:09:a9:c9:7f:c8:f0:f1:e8:29:f2:
1b:41:e1:cb:4f:e2:b5:b5:74:17:eb:5e:f2:16:1d:
7a:cd:99:cd:2f:64:ab:c1:95:6a:b0:9e:09:63:3d:
3d:68:3e:b2:d3:38:b6:83:ae:9c:e4:a8:71:a5:0f:
24:10:4c:fe:e2:06:a5:aa:b8:15:ac:01:2e:ac:24:
76:91:09:e9:25:1f:dc:41:32:f4:35:84:5f:d2:ed:
03:ef:fd:ee:69:11:61:2f:9b:e8:47:fc:1e:80:3d:
f7:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:FE:FC:F2:C8:20:EC:FE:89:42:96:EB:65:22:15:9D:98:BB:51:6E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/oP788sgg7P6JQpbrZSIVnZi7UW4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.128.0/17
Signature Algorithm: sha256WithRSAEncryption
c3:f9:1b:3c:a3:c5:77:25:39:91:36:1f:52:7a:a9:18:d9:28:
74:57:a8:cd:b0:08:8e:67:a6:b7:26:f1:06:5e:05:9d:41:52:
f0:93:24:3d:bd:48:f6:84:48:c4:c8:d1:54:22:2e:83:86:c3:
25:db:5e:dd:5d:4f:28:cb:a1:c6:c0:26:da:7c:ba:a1:a4:ff:
a9:fc:73:d2:4f:3f:77:05:5c:7d:35:54:06:4f:f0:b1:bf:29:
ec:1e:0f:09:73:b0:fe:b1:80:bd:6c:00:7c:d0:5f:4e:10:6b:
aa:fa:1a:2f:15:5c:2d:5c:07:be:85:4d:2f:3d:bf:c3:d1:85:
54:89:72:74:dd:45:be:e1:ec:4d:b1:dc:b4:73:ed:24:d1:b9:
c2:f1:31:bc:1e:25:f5:ac:a9:32:a3:42:5a:fa:35:93:71:aa:
e6:38:a6:08:90:22:32:e4:a2:7e:53:80:e9:5e:1c:19:7e:65:
16:43:5a:05:e9:e7:3c:71:66:5f:04:78:88:77:09:d7:4c:e1:
b2:8b:c2:5e:9d:f1:e2:61:90:3e:de:df:a8:f9:c7:76:10:1b:
b5:7a:cd:8e:3a:5a:7b:ef:5a:5e:4f:44:1a:9f:6d:16:70:ea:
ea:e3:e2:44:b0:c2:34:64:89:17:b2:10:66:d3:2c:61:c6:39:
4f:32:09:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:47 2025 by rpki-client