Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/p74L_MIMdI_lbi-MEh6R30hsp_s.roa
File: p74L_MIMdI_lbi-MEh6R30hsp_s.roa (raw, json)
Hash identifier: BoatvrUiRpCOw+0bpB0ymt5dM4K0eF4QzM641zUsDmw=
Subject key identifier: A7:BE:0B:FC:C2:0C:74:8F:E5:6E:2F:8C:12:1E:91:DF:48:6C:A7:FB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0FCD
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/p74L_MIMdI_lbi-MEh6R30hsp_s.roa
Signing time: Fri 01 Sep 2023 08:57:30 +0000
ROA not before: Fri 01 Sep 2023 08:57:30 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 10126
IP address blocks: 203.160.240.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4045 (0xfcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:57:30 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A7BE0BFCC20C748FE56E2F8C121E91DF486CA7FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d9:51:aa:74:e0:80:83:d6:70:6e:5d:e1:bf:
fd:8d:a6:db:0a:94:db:8f:2c:7d:85:e7:f1:88:06:
34:66:f0:4a:86:50:e9:cd:58:0c:68:0b:57:fb:b2:
16:61:93:c6:6a:c2:49:ab:25:f7:ed:21:b8:10:05:
e7:3e:66:46:4b:77:53:5d:da:ae:d0:c8:0e:b6:1c:
9d:dc:96:f4:9b:4f:81:b7:e8:cd:f5:29:10:e2:3a:
a1:07:39:61:9c:37:c7:ca:7b:e1:20:94:20:12:3e:
8c:30:d4:f0:77:7d:5a:04:46:76:d1:19:2a:2a:2b:
fb:4d:51:b7:2c:2b:41:76:f9:f6:de:67:a2:d7:14:
77:b5:be:2e:d0:51:6e:74:ee:81:0e:41:ae:e3:8e:
82:de:c4:b1:8f:bb:22:be:f2:f7:12:b1:f9:ab:ef:
df:59:17:53:0c:46:3e:03:c3:34:a8:15:49:4b:49:
a0:a3:57:0c:6d:7d:92:e3:43:62:61:55:d0:f9:38:
fe:72:3e:3a:80:8e:d0:e1:42:89:ee:ba:e1:8c:d1:
5a:99:7e:ba:02:8b:74:8d:3c:50:c7:54:18:4d:f9:
15:86:1e:27:91:ea:a3:f9:ec:4a:03:7f:2c:19:ef:
c4:67:ef:f0:e2:b4:2c:2c:a0:7d:bf:af:bc:03:9d:
be:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:BE:0B:FC:C2:0C:74:8F:E5:6E:2F:8C:12:1E:91:DF:48:6C:A7:FB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/p74L_MIMdI_lbi-MEh6R30hsp_s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.240.0/20
Signature Algorithm: sha256WithRSAEncryption
bf:12:ce:9a:6c:01:9e:07:5d:23:8f:fa:28:0b:44:ae:64:0d:
0c:c0:1b:d2:e5:ce:8f:85:94:2f:b5:59:72:97:aa:72:91:5f:
0e:3b:2f:34:37:f0:7e:99:3c:f3:38:52:b0:d1:c3:a2:b7:c9:
7f:48:ce:8c:a8:3b:5b:8f:64:55:bc:d8:ee:6f:7c:da:22:14:
e2:c3:32:b7:4d:87:5c:c9:7f:9d:b4:8a:dd:a1:6c:42:eb:24:
a6:c4:81:a5:78:04:9b:58:7d:76:d6:84:2c:7d:2a:e0:0f:ef:
e7:e9:c8:da:4b:45:99:bc:90:2e:0e:e9:57:d7:11:3f:74:15:
24:43:36:49:5c:8f:9e:d3:55:a1:6c:d6:71:64:9e:5d:a9:ee:
cf:af:59:01:9e:e2:73:23:85:5c:26:7a:95:9a:7e:c5:c9:bf:
58:2e:29:36:c5:2b:1d:01:ea:b0:b6:8f:3d:ab:d2:4d:c9:9b:
0c:e0:99:e4:4e:2d:b8:a7:5f:74:a8:42:ae:b7:f9:12:ea:fd:
f3:5a:ca:0d:e1:52:67:68:44:54:f8:24:f2:ad:85:f0:ce:12:
af:ce:12:94:29:c4:bf:c0:b1:3d:b1:1f:be:fb:8a:5f:44:a5:
88:cd:e0:5e:2b:81:0c:90:58:fb:8d:ce:2c:9c:11:25:c0:9d:
b6:8a:15:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:27:21 2025 by rpki-client