Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/1ewJ-4o-gA98EH0LMCkbQm3I9U4.roa
File: 1ewJ-4o-gA98EH0LMCkbQm3I9U4.roa (raw, json)
Hash identifier: j2C9/du76ideTjCuO9TETWC1gRmtTq5HQHIr6cHzzBE=
Subject key identifier: D5:EC:09:FB:8A:3E:80:0F:7C:10:7D:0B:30:29:1B:42:6D:C8:F5:4E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C2D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1ewJ-4o-gA98EH0LMCkbQm3I9U4.roa
Signing time: Wed 29 Sep 2021 02:50:58 +0000
ROA not before: Wed 29 Sep 2021 02:50:58 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 220.128.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3117 (0xc2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:58 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D5EC09FB8A3E800F7C107D0B30291B426DC8F54E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:44:97:0f:0a:06:0f:08:92:bb:2e:5c:26:4a:
44:19:52:34:82:02:24:b8:f7:9b:a1:86:30:36:d3:
f3:43:fd:07:e3:0b:d2:24:d8:f2:a8:70:e4:b8:08:
ad:6c:b0:a4:54:32:20:d9:18:ad:6c:46:bf:c3:d2:
48:b6:80:f2:6e:07:e9:1d:76:ac:68:a8:3e:5f:92:
d3:3b:48:89:65:24:8f:2f:5d:e9:78:3b:a6:32:86:
27:dd:c5:9f:97:ea:f0:8f:35:7a:65:8c:e3:f3:90:
68:d2:bb:1b:cb:9e:14:cf:1d:e2:06:ce:66:1a:f0:
21:93:5e:f4:05:82:a8:da:1c:ca:61:1d:2d:e9:99:
68:5e:c7:5c:d1:56:f8:43:3b:e1:b6:e6:c3:ca:d7:
23:fd:fa:14:3b:4b:1b:6d:20:35:43:25:21:d1:28:
e7:1a:51:be:6c:66:68:92:54:aa:57:b7:0d:5d:7a:
9c:82:89:d9:76:83:66:3b:68:d7:49:b1:23:db:e5:
c9:c1:c6:26:90:ef:4e:f1:00:5f:ea:e0:c5:ef:a5:
b4:98:d9:cb:9e:e2:94:3b:82:0f:6f:80:4d:ab:af:
5a:b2:03:8b:9d:d4:9c:af:b3:27:8a:f5:78:fd:f0:
f8:c0:86:fd:c0:c1:74:f1:1a:30:ae:20:30:69:64:
f5:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:EC:09:FB:8A:3E:80:0F:7C:10:7D:0B:30:29:1B:42:6D:C8:F5:4E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1ewJ-4o-gA98EH0LMCkbQm3I9U4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.128.0/17
Signature Algorithm: sha256WithRSAEncryption
1f:3d:a7:ed:ba:14:d2:8c:f2:1c:6c:ac:95:28:df:55:e5:73:
ad:97:b0:e5:1d:4c:94:4b:00:00:21:97:f3:4a:d9:66:de:d7:
36:f5:90:a6:b0:ca:be:27:29:ac:56:65:0a:a4:49:82:8e:c1:
de:23:a3:d3:93:20:1e:a4:0a:bd:bd:0e:af:19:c3:33:93:de:
10:9b:0f:16:5d:55:cd:de:40:7a:81:3d:cc:65:84:89:cc:33:
e7:eb:b1:b2:ca:54:9a:a9:03:de:be:55:dc:23:31:c2:7a:18:
8e:d7:f8:03:ca:73:af:06:c0:10:c8:27:0a:97:23:b6:a2:6d:
88:b1:fa:be:a5:e0:8f:b2:36:e5:5b:c5:22:52:93:f8:92:80:
e8:87:b4:6d:54:1b:26:13:fa:8f:3f:4f:f8:3d:a7:de:32:c6:
84:78:71:f1:9e:b8:d6:cb:63:68:f7:84:92:80:e9:a4:14:cc:
14:cf:6c:03:80:d4:ba:17:f6:a9:f7:ca:41:11:c8:ac:8f:e3:
5c:20:dc:df:08:5a:25:6a:48:35:0e:fa:2c:88:97:00:71:1e:
12:fd:df:f4:9b:6f:58:36:85:eb:08:be:1a:20:77:c3:b2:e9:
a1:46:fc:f0:d1:5c:b2:44:c5:d5:95:63:5d:79:9a:f3:58:1d:
ea:6d:e2:a2
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDC0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTA5Mjkw
MjUwNThaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQ1RUMwOUZCOEEzRTgw
MEY3QzEwN0QwQjMwMjkxQjQyNkRDOEY1NEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyRJcPCgYPCJK7LlwmSkQZUjSCAiS495uhhjA20/ND/QfjC9Ik
2PKocOS4CK1ssKRUMiDZGK1sRr/D0ki2gPJuB+kddqxoqD5fktM7SIllJI8vXel4
O6YyhifdxZ+X6vCPNXpljOPzkGjSuxvLnhTPHeIGzmYa8CGTXvQFgqjaHMphHS3p
mWhex1zRVvhDO+G25sPK1yP9+hQ7SxttIDVDJSHRKOcaUb5sZmiSVKpXtw1depyC
idl2g2Y7aNdJsSPb5cnBxiaQ707xAF/q4MXvpbSY2cue4pQ7gg9vgE2rr1qyA4ud
1JyvsyeK9Xj98PjAhv3AwXTxGjCuIDBpZPVRAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU1ewJ+4o+gA98EH0LMCkbQm3I9U4wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8xZXdKLTRvLWdBOThFSDBMTUNr
YlFtM0k5VTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQH3ICA
MA0GCSqGSIb3DQEBCwUAA4IBAQAfPaftuhTSjPIcbKyVKN9V5XOtl7DlHUyUSwAA
IZfzStlm3tc29ZCmsMq+JymsVmUKpEmCjsHeI6PTkyAepAq9vQ6vGcMzk94Qmw8W
XVXN3kB6gT3MZYSJzDPn67GyylSaqQPevlXcIzHCehiO1/gDynOvBsAQyCcKlyO2
om2Isfq+peCPsjblW8UiUpP4koDoh7RtVBsmE/qPP0/4PafeMsaEeHHxnrjWy2No
94SSgOmkFMwUz2wDgNS6F/ap98pBEcisj+NcINzfCFolakg1DvosiJcAcR4S/d/0
m29YNoXrCL4aIHfDsumhRvzw0VyyRMXVlWNdeZrzWB3qbeKi
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org