Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/-mUUCTYQffZ60BpiTNl8ZVOZblQ.roa
File: -mUUCTYQffZ60BpiTNl8ZVOZblQ.roa (raw, json)
Hash identifier: +DjoH74TZg/+dnRDD9pMd3j4Niyx4lJtENZyDOgrb10=
Subject key identifier: FA:65:14:09:36:10:7D:F6:7A:D0:1A:62:4C:D9:7C:65:53:99:6E:54
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C43
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-mUUCTYQffZ60BpiTNl8ZVOZblQ.roa
Signing time: Wed 29 Sep 2021 02:51:05 +0000
ROA not before: Wed 29 Sep 2021 02:51:05 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9505
IP address blocks: 220.128.48.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3139 (0xc43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:05 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=FA65140936107DF67AD01A624CD97C6553996E54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:82:64:52:99:8d:42:7a:18:fa:fd:fa:40:2c:
e9:c5:73:e1:f8:b5:63:46:ad:b1:3a:d9:10:5c:3b:
59:34:b0:be:68:c5:48:99:8d:c9:13:de:6e:48:34:
16:2f:65:37:d2:30:68:d4:2c:60:7f:bf:8a:cd:65:
69:e4:cf:0a:01:f3:0b:45:cc:f3:44:97:93:6c:ec:
9f:e4:7d:77:ea:8d:36:9c:d2:63:26:c5:4a:2e:75:
6d:3b:6f:2c:06:56:85:4d:91:6b:39:c7:99:ad:e7:
bc:02:47:49:6f:28:97:dd:0e:d6:5e:d9:00:98:f2:
87:59:bc:1e:45:2e:fd:e9:62:9f:a4:f2:dd:89:1b:
39:83:8f:dd:51:1f:56:9c:c1:10:af:ab:1d:9b:9f:
db:fc:bb:de:26:67:e0:c9:4e:9e:23:10:f1:e4:19:
c9:c8:aa:bd:13:90:ee:d5:13:39:be:a7:dd:15:02:
bc:8a:db:03:9c:d2:56:02:ea:5a:0d:c3:69:15:50:
91:00:8e:56:7d:01:aa:f0:79:20:66:39:51:94:c5:
03:9e:40:59:05:ee:31:2c:23:21:7f:f1:ec:04:be:
e8:58:4e:5a:bd:5a:3b:b1:9d:f0:84:05:29:f7:94:
d7:c3:55:60:7a:fd:e4:27:8a:f7:71:63:5f:5f:6b:
1d:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:65:14:09:36:10:7D:F6:7A:D0:1A:62:4C:D9:7C:65:53:99:6E:54
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-mUUCTYQffZ60BpiTNl8ZVOZblQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.48.0/21
Signature Algorithm: sha256WithRSAEncryption
a4:6b:20:dd:24:f3:91:bf:d8:18:bf:bb:f4:37:1a:c7:da:b3:
40:b4:89:6e:0b:93:78:39:77:cd:ae:0d:bf:df:02:df:6d:10:
25:c7:00:5c:10:43:c6:0f:56:16:c9:f3:19:63:7a:36:29:b9:
f1:17:81:82:bf:7e:9f:6a:8b:88:a8:71:14:1e:5b:58:a4:8a:
da:34:0c:c7:cf:12:0c:ca:eb:57:c3:40:b0:07:47:ed:ce:f9:
b2:88:3a:73:16:fa:cf:ee:41:af:5f:61:83:6c:1c:ce:65:38:
bd:5b:3f:6a:f7:62:6b:e7:69:ec:67:da:87:d1:58:c7:f6:43:
47:71:c1:72:ad:07:1b:00:d1:ed:dd:06:61:9e:85:b2:66:c3:
fe:09:1e:05:c5:ad:25:74:82:65:81:fb:be:65:86:d0:de:4f:
43:ec:02:d0:3c:6b:ab:d9:ab:22:f2:b0:f4:ee:6e:7a:85:64:
e9:28:c7:79:df:d2:86:7a:e0:3f:24:c1:c5:49:57:d1:f0:9d:
28:fa:6b:76:12:a9:20:7f:b1:8f:37:6d:08:a4:26:2d:21:d8:
8d:99:15:17:1a:68:d3:cc:50:f9:d9:da:19:24:66:c8:3d:1e:
74:c3:11:41:57:7b:24:7e:90:8b:a6:48:8f:69:e3:dc:2d:14:
d4:6b:78:aa
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDEMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTA5Mjkw
MjUxMDVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEZBNjUxNDA5MzYxMDdE
RjY3QUQwMUE2MjRDRDk3QzY1NTM5OTZFNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDugmRSmY1Cehj6/fpALOnFc+H4tWNGrbE62RBcO1k0sL5oxUiZ
jckT3m5INBYvZTfSMGjULGB/v4rNZWnkzwoB8wtFzPNEl5Ns7J/kfXfqjTac0mMm
xUoudW07bywGVoVNkWs5x5mt57wCR0lvKJfdDtZe2QCY8odZvB5FLv3pYp+k8t2J
GzmDj91RH1acwRCvqx2bn9v8u94mZ+DJTp4jEPHkGcnIqr0TkO7VEzm+p90VAryK
2wOc0lYC6loNw2kVUJEAjlZ9AarweSBmOVGUxQOeQFkF7jEsIyF/8ewEvuhYTlq9
WjuxnfCEBSn3lNfDVWB6/eQnivdxY19fax0PAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU+mUUCTYQffZ60BpiTNl8ZVOZblQwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8tbVVVQ1RZUWZmWjYwQnBpVE5s
OFpWT1pibFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD3IAw
MA0GCSqGSIb3DQEBCwUAA4IBAQCkayDdJPORv9gYv7v0NxrH2rNAtIluC5N4OXfN
rg2/3wLfbRAlxwBcEEPGD1YWyfMZY3o2KbnxF4GCv36faouIqHEUHltYpIraNAzH
zxIMyutXw0CwB0ftzvmyiDpzFvrP7kGvX2GDbBzOZTi9Wz9q92Jr52nsZ9qH0VjH
9kNHccFyrQcbANHt3QZhnoWyZsP+CR4Fxa0ldIJlgfu+ZYbQ3k9D7ALQPGur2asi
8rD07m56hWTpKMd539KGeuA/JMHFSVfR8J0o+mt2Eqkgf7GPN20IpCYtIdiNmRUX
GmjTzFD52doZJGbIPR50wxFBV3skfpCLpkiPaePcLRTUa3iq
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org