Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/sMWgpGXmnURHgmmFHuztPXf2_jE.roa
File: sMWgpGXmnURHgmmFHuztPXf2_jE.roa (raw, json)
Hash identifier: xgx/oSfAaM9MudjGL8rSzcXKQfswnmkKaOD9H6Ii9Hs=
Subject key identifier: B0:C5:A0:A4:65:E6:9D:44:47:82:69:85:1E:EC:ED:3D:77:F6:FE:31
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0E41
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/sMWgpGXmnURHgmmFHuztPXf2_jE.roa
Signing time: Fri 07 Jul 2023 09:56:01 +0000
ROA not before: Fri 07 Jul 2023 09:56:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 142005
IP address blocks: 210.61.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3649 (0xe41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Jul 7 09:56:01 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B0C5A0A465E69D44478269851EECED3D77F6FE31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:4f:8a:26:0b:f6:6d:7b:21:fc:86:2f:a2:1d:
aa:e6:e4:b6:88:dd:d3:56:20:e5:83:34:60:9b:13:
fe:fa:d8:1e:98:78:a9:53:89:8c:13:33:de:95:71:
e8:a2:08:2b:14:85:72:fe:51:f1:50:ce:50:fb:43:
9e:ce:d0:29:86:a8:6f:84:7f:f2:9f:03:5c:d4:60:
74:92:fb:7c:a0:60:17:e5:a3:7a:07:58:d3:ad:fe:
4f:cc:c7:d1:89:9e:86:93:7a:47:50:52:73:b1:4d:
c4:de:bf:67:09:f8:b7:4b:75:df:db:62:e8:cb:d3:
bd:b1:3a:5a:74:0d:83:3d:5a:7c:27:f8:2e:6d:bc:
7a:bd:30:84:7e:5b:b0:85:08:a7:f6:ef:21:cb:96:
fe:37:03:b2:ce:66:21:bb:77:31:ca:a0:53:20:11:
85:21:b2:19:5b:3b:5a:a0:83:cf:55:ef:90:77:75:
ce:32:1e:b7:d6:75:41:1c:87:94:81:30:16:68:b0:
de:e7:08:3b:8d:c8:3c:de:1c:dc:ec:77:c3:64:42:
37:d2:72:3e:26:9a:9d:19:73:86:4a:46:b7:46:d3:
e7:89:2e:f2:7b:c6:5d:a3:cd:ca:e0:b6:ff:d6:22:
86:e9:21:c9:87:73:81:b5:35:c5:d7:4a:d2:95:10:
5d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C5:A0:A4:65:E6:9D:44:47:82:69:85:1E:EC:ED:3D:77:F6:FE:31
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/sMWgpGXmnURHgmmFHuztPXf2_jE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.3.0/24
Signature Algorithm: sha256WithRSAEncryption
39:c5:c7:14:8b:de:f0:24:08:a9:ff:5d:b3:e6:a6:cf:6c:76:
b9:2d:30:45:5a:59:a0:73:ce:d9:f2:c4:fc:94:40:08:40:4f:
c2:cc:fa:e2:f9:90:0e:78:42:dd:c4:0b:e3:77:c9:df:a8:be:
4a:52:da:3f:0e:5f:75:b3:e7:97:66:fa:0e:53:88:5b:48:84:
a4:70:15:99:9d:ac:30:9f:d6:32:c5:5a:ed:1c:01:8a:9c:7b:
86:85:8f:72:3c:04:13:4f:4c:b6:80:ec:09:c6:b7:e4:c4:10:
1e:9e:59:73:c3:a6:a8:ea:c2:d2:77:25:9e:ce:1f:34:01:d8:
07:ac:c4:ba:cf:3a:2f:ee:02:aa:b6:95:6e:65:59:7c:14:1c:
0e:15:17:8e:1e:71:83:45:3b:62:6b:66:ce:60:e9:a1:89:a0:
c9:18:19:af:31:f8:bf:db:36:90:b9:da:60:a8:a2:6a:c5:07:
3d:b8:94:22:7f:67:83:20:88:20:3d:75:64:20:81:57:31:b1:
a9:5d:79:e8:80:48:5b:e4:fc:a5:5a:00:1b:89:7a:ed:dd:31:
79:eb:0c:eb:6f:09:9e:d9:af:75:14:f3:59:1c:78:8d:15:22:
35:e9:89:cc:e4:af:b8:fa:21:ec:59:ef:ba:9a:c7:50:9f:3a:
78:0f:41:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:11 2025 by rpki-client