Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/y68tFVNhnHnCoKDIvP1a9NQ3UZA.roa
File: y68tFVNhnHnCoKDIvP1a9NQ3UZA.roa (raw, json)
Hash identifier: 2GIUFkelGh4Ydk/zZ2dlwZWn2h0ZKuMHUAv0eoQv2Hc=
Subject key identifier: CB:AF:2D:15:53:61:9C:79:C2:A0:A0:C8:BC:FD:5A:F4:D4:37:51:90
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/y68tFVNhnHnCoKDIvP1a9NQ3UZA.roa
Signing time: Thu 15 Sep 2022 02:48:17 +0000
ROA not before: Thu 15 Sep 2022 02:48:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 36040
IP address blocks: 202.39.67.128/27 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CBAF2D1553619C79C2A0A0C8BCFD5AF4D4375190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9d:16:f9:c6:c8:b6:e7:d1:7d:a3:6a:5f:16:
2d:ea:a3:67:91:1e:f3:40:dd:5d:fb:b8:f6:c4:fa:
44:1b:da:60:82:8f:bc:8b:62:52:c8:02:74:13:0c:
a3:af:01:6d:f8:fd:30:48:76:a7:23:6c:12:94:3d:
5a:64:db:35:8a:53:33:eb:97:80:93:ab:00:a6:78:
9c:6b:6f:cf:6f:d1:52:46:b2:1e:31:c2:75:62:ba:
8b:fd:9c:53:d8:ce:22:cd:78:57:10:91:ff:58:a4:
b0:89:25:78:e2:da:ea:f3:8f:99:36:11:c8:45:4b:
0c:27:f6:f4:87:a6:a9:7e:3c:3c:8a:36:a3:e0:c3:
41:13:b7:df:43:5d:ae:c9:f4:06:95:80:f7:7c:01:
ac:1a:7d:8f:b6:6a:b9:b5:fd:99:77:5f:65:d1:2d:
76:5d:ff:18:fc:ac:7d:87:65:5c:d0:7b:fe:dc:20:
68:33:3c:37:ca:1f:58:ed:ca:10:28:11:1c:a7:32:
ae:59:d2:c4:9c:ca:ad:03:86:1f:52:55:0d:5b:10:
67:2c:1d:2d:d0:7f:c6:0e:ce:29:0a:f9:36:7d:3c:
b6:1a:20:e8:16:bb:39:03:b7:e9:9c:bd:93:31:c8:
ca:76:05:db:6e:0e:d9:d5:6d:10:d7:2d:c4:d6:9d:
c2:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:AF:2D:15:53:61:9C:79:C2:A0:A0:C8:BC:FD:5A:F4:D4:37:51:90
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/y68tFVNhnHnCoKDIvP1a9NQ3UZA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.67.128/27
Signature Algorithm: sha256WithRSAEncryption
72:32:de:a3:bd:5a:28:e0:a6:47:6d:5d:91:a0:3e:76:7d:f9:
3b:b4:79:5e:f6:ed:85:51:73:94:8a:69:77:71:58:ea:02:1c:
f9:22:a5:4e:4b:9e:18:50:d2:33:6c:b7:0e:05:60:97:aa:5d:
9b:2d:63:13:43:86:a3:a1:3a:26:17:3b:5d:41:43:99:e9:6c:
f4:dd:5f:c2:c4:81:a0:05:cf:56:3e:c1:3d:a1:58:93:19:43:
f5:16:a9:6f:46:51:93:d7:c9:28:21:45:03:bd:34:f4:c6:9b:
5d:6c:40:43:6c:4f:4b:17:eb:72:8c:b1:4c:26:33:f5:32:11:
38:b4:41:9a:14:18:65:c0:06:21:58:87:b1:ed:62:7c:67:87:
d1:5a:58:80:47:4c:e0:a0:07:ae:fa:b5:9a:02:2b:5a:39:4a:
1e:8c:cb:5d:fc:ad:57:41:5b:f3:62:a6:e8:0b:49:e8:6b:84:
e9:04:1e:b1:c9:da:d8:47:4e:85:19:ce:ca:37:04:9c:06:46:
b2:d2:c0:69:3b:8a:c9:d0:bb:05:c0:fb:0f:38:60:8b:d7:71:
ec:ce:b8:59:7e:75:b4:59:19:3d:e4:08:d2:f6:d5:ac:5d:fe:
8a:2a:dd:71:b0:af:e8:5a:34:68:76:4d:05:22:38:60:62:ad:
96:10:da:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:33 2025 by rpki-client