Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/-jb5bHyTtAvnPbeipjJDidYJkJI.roa
File: -jb5bHyTtAvnPbeipjJDidYJkJI.roa (raw, json)
Hash identifier: ZkCuF7mS4qsGLQwYfZaeZP3+AOAv31B/WgwKUG4a2xk=
Subject key identifier: FA:36:F9:6C:7C:93:B4:0B:E7:3D:B7:A2:A6:32:43:89:D6:09:90:92
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-jb5bHyTtAvnPbeipjJDidYJkJI.roa
Signing time: Thu 15 Sep 2022 02:48:06 +0000
ROA not before: Thu 15 Sep 2022 02:48:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17421
IP address blocks: 42.64.0.0/12 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:06 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FA36F96C7C93B40BE73DB7A2A6324389D6099092
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:76:e3:43:0b:6e:ce:cc:99:5e:21:fa:08:d5:
7e:55:55:00:68:ab:6e:91:00:55:e9:50:d6:59:74:
d6:c8:0f:a3:cb:1b:8c:58:53:3f:79:99:16:45:16:
b6:8a:f8:20:ce:9c:51:cc:5b:52:ec:8f:0b:08:1c:
ff:22:7c:7e:89:ae:5d:e0:8d:57:03:61:85:da:1b:
53:35:b5:5f:d1:26:85:dc:46:12:e9:66:f8:eb:dd:
3c:65:62:24:d6:64:b6:97:a5:9e:a3:44:bb:f6:d3:
fa:a8:65:27:ba:ca:10:ed:7a:25:63:f7:49:9b:5f:
4f:58:91:fe:20:5c:0e:33:de:87:2a:8a:4c:88:70:
95:74:df:42:b5:8d:39:7e:36:1c:f9:f5:70:9f:ed:
68:bd:e6:8f:d0:98:5c:e0:6e:b8:3b:0a:05:60:2c:
52:1c:9b:46:d6:f5:87:e4:43:44:bd:59:80:08:89:
94:c7:26:fd:56:5a:64:5f:46:53:71:07:71:07:61:
8a:d3:b1:e7:09:fe:41:e8:44:6a:8f:df:fa:0c:ec:
e7:75:fb:88:5f:99:e0:c9:09:fd:76:09:59:55:1c:
7c:8a:e7:95:1d:ca:da:39:77:e0:88:85:cd:9d:0d:
c7:80:70:56:56:e2:61:aa:b7:e0:21:90:eb:6c:da:
55:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:36:F9:6C:7C:93:B4:0B:E7:3D:B7:A2:A6:32:43:89:D6:09:90:92
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-jb5bHyTtAvnPbeipjJDidYJkJI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
42.64.0.0/12
Signature Algorithm: sha256WithRSAEncryption
2b:21:db:79:48:0a:19:c0:69:a4:83:d4:eb:da:a0:34:f5:d0:
79:fb:93:7d:7f:9e:44:65:7e:3d:54:ee:1a:54:89:df:12:b9:
6d:ff:6a:7a:3f:24:d0:0a:c9:75:69:68:18:b6:a3:6d:95:70:
4d:f6:2f:0a:b3:37:6f:c9:8c:a0:8f:e6:26:36:64:05:fc:e1:
95:82:17:51:29:6c:42:80:29:15:c9:fb:5e:06:4a:1f:68:a2:
4b:e4:7d:d5:86:f1:3f:30:ba:93:3f:ce:c8:80:0e:03:6a:db:
9b:38:d4:6f:d6:62:77:52:7a:cf:a1:66:44:1d:4e:f6:e2:8e:
67:d6:40:5c:c7:b7:25:35:67:8b:70:d5:0e:70:61:46:cf:66:
4c:be:a4:1d:c1:07:64:96:93:34:6f:c4:81:cf:7d:4c:0c:78:
9c:48:04:4a:f1:32:82:77:21:c7:ed:a9:09:c0:b6:6b:e9:60:
cf:ca:61:cc:1a:ff:0b:f8:29:4b:8e:d8:03:c0:40:79:cb:1c:
1a:25:ca:11:cd:38:be:9e:a9:76:6a:58:ac:2d:07:d4:01:9c:
1f:bb:a6:e7:5b:d8:54:00:92:57:51:c3:2e:16:92:7f:f7:50:
c8:ee:47:fc:d7:3d:08:05:04:ce:a7:9b:49:fe:f1:f0:59:06:
57:ff:de:80
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MDZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEZBMzZGOTZDN0M5M0I0
MEJFNzNEQjdBMkE2MzI0Mzg5RDYwOTkwOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDBduNDC27OzJleIfoI1X5VVQBoq26RAFXpUNZZdNbID6PLG4xY
Uz95mRZFFraK+CDOnFHMW1LsjwsIHP8ifH6Jrl3gjVcDYYXaG1M1tV/RJoXcRhLp
Zvjr3TxlYiTWZLaXpZ6jRLv20/qoZSe6yhDteiVj90mbX09Ykf4gXA4z3ocqikyI
cJV030K1jTl+Nhz59XCf7Wi95o/QmFzgbrg7CgVgLFIcm0bW9YfkQ0S9WYAIiZTH
Jv1WWmRfRlNxB3EHYYrTsecJ/kHoRGqP3/oM7Od1+4hfmeDJCf12CVlVHHyK55Ud
yto5d+CIhc2dDceAcFZW4mGqt+AhkOts2lUFAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQU+jb5bHyTtAvnPbeipjJDidYJkJIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8tamI1Ykh5VHRBdm5QYmVpcGpK
RGlkWUprSkkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMEKkAw
DQYJKoZIhvcNAQELBQADggEBACsh23lIChnAaaSD1OvaoDT10Hn7k31/nkRlfj1U
7hpUid8SuW3/ano/JNAKyXVpaBi2o22VcE32LwqzN2/JjKCP5iY2ZAX84ZWCF1Ep
bEKAKRXJ+14GSh9ookvkfdWG8T8wupM/zsiADgNq25s41G/WYndSes+hZkQdTvbi
jmfWQFzHtyU1Z4tw1Q5wYUbPZky+pB3BB2SWkzRvxIHPfUwMeJxIBErxMoJ3Icft
qQnAtmvpYM/KYcwa/wv4KUuO2APAQHnLHBolyhHNOL6eqXZqWKwtB9QBnB+7pudb
2FQAkldRwy4Wkn/3UMjuR/zXPQgFBM6nm0n+8fBZBlf/3oA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org