Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/CboGnl8tOkifa9UJ55gCqmjbn1w.roa
File: CboGnl8tOkifa9UJ55gCqmjbn1w.roa (raw, json)
Hash identifier: x2+BJBYG8SaMJA/7VDnV74KpyuVtb6JoB7T3UyI/Tw8=
Subject key identifier: 09:BA:06:9E:5F:2D:3A:48:9F:6B:D5:09:E7:98:02:AA:68:DB:9F:5C
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 085D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/CboGnl8tOkifa9UJ55gCqmjbn1w.roa
Signing time: Tue 29 Sep 2020 09:58:40 +0000
ROA not before: Tue 29 Sep 2020 09:58:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 33717
IP address blocks: 220.128.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2141 (0x85d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:40 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=09BA069E5F2D3A489F6BD509E79802AA68DB9F5C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f4:6e:3d:be:ff:31:1f:32:e9:cf:a6:9f:d4:
91:db:7a:3f:aa:45:72:c5:d7:a3:1f:0e:61:6f:fb:
25:21:da:16:29:36:70:d0:a6:ad:82:04:76:e5:42:
55:d2:df:92:d5:4d:45:84:a7:fe:cc:08:ff:cd:b3:
30:90:cf:28:99:a3:fa:c5:be:71:69:1c:ea:e1:4a:
6e:46:69:7c:b9:9d:62:88:ab:dd:e1:13:32:dc:81:
62:30:1e:01:2b:9a:ee:20:00:6a:0d:f3:88:ac:86:
fa:73:34:4e:07:b4:90:74:67:1f:8a:7b:17:4a:0d:
3e:12:6a:96:69:50:d9:42:64:c6:bc:23:3f:71:aa:
6f:0c:c5:25:18:c4:63:63:56:bc:fa:55:aa:6b:7e:
15:e9:d2:89:98:f0:9b:31:b1:03:dc:00:20:19:28:
f4:1b:22:ee:c1:d3:52:a9:ad:c3:32:3f:ed:de:f8:
3b:ae:bf:0e:46:e2:ef:c0:7d:d3:9a:06:99:ee:77:
4b:36:f6:39:3b:65:b4:a6:1f:5f:6c:d7:8e:30:3e:
c4:4d:e0:f1:2e:02:a0:36:c7:d1:01:68:f1:79:da:
22:c5:ee:e6:29:78:4d:3b:11:e2:5a:58:79:69:97:
2d:ca:a6:a1:d4:d7:d6:99:c4:63:2d:9a:8a:69:41:
a0:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:BA:06:9E:5F:2D:3A:48:9F:6B:D5:09:E7:98:02:AA:68:DB:9F:5C
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/CboGnl8tOkifa9UJ55gCqmjbn1w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.55.0/24
Signature Algorithm: sha256WithRSAEncryption
09:13:87:72:5d:ee:24:94:4c:41:17:8e:f0:95:5d:8b:0a:4c:
db:9f:52:22:71:69:bf:90:d7:85:4e:62:22:f3:10:3d:92:ff:
46:73:11:cd:a5:dd:94:cc:70:e5:d8:0f:2d:1e:cf:1b:40:85:
b2:5b:d4:bf:d7:0c:c5:c8:2d:ff:3b:f4:75:70:67:20:7c:dc:
4d:53:ac:0a:83:9b:45:d6:53:cf:62:3a:11:1b:8f:db:e1:38:
e4:76:12:ae:4a:b9:34:76:d7:92:52:4d:7f:de:80:c6:0c:d6:
2e:c6:fb:ef:09:0f:7e:d5:bb:8f:59:e1:3f:dd:1a:3e:f9:25:
2b:c6:ed:9d:20:fb:ab:f7:b3:a0:a5:3f:e5:76:e5:93:e2:91:
e9:77:98:60:93:c1:e7:ee:96:e9:73:67:17:09:98:fc:b5:42:
20:20:1d:5f:ac:61:04:1e:f2:75:57:7e:a3:de:ee:16:9e:ed:
0b:0d:af:19:d6:54:e4:cc:cb:dc:6c:31:7b:1f:1a:71:ed:c4:
b6:17:32:bc:60:25:0c:46:01:a8:df:4b:6f:5e:04:8e:0f:7a:
b0:4b:a9:70:e3:de:cc:86:48:c9:c0:9f:5f:00:89:36:2a:0f:
a3:db:32:aa:88:b0:56:12:1e:70:79:7f:95:ea:c5:8f:19:f9:
cb:db:1f:6b
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCF0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMDA5Mjkw
OTU4NDBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDA5QkEwNjlFNUYyRDNB
NDg5RjZCRDUwOUU3OTgwMkFBNjhEQjlGNUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQ9G49vv8xHzLpz6af1JHbej+qRXLF16MfDmFv+yUh2hYpNnDQ
pq2CBHblQlXS35LVTUWEp/7MCP/NszCQzyiZo/rFvnFpHOrhSm5GaXy5nWKIq93h
EzLcgWIwHgErmu4gAGoN84ishvpzNE4HtJB0Zx+KexdKDT4SapZpUNlCZMa8Iz9x
qm8MxSUYxGNjVrz6VaprfhXp0omY8JsxsQPcACAZKPQbIu7B01KprcMyP+3e+Duu
vw5G4u/AfdOaBpnud0s29jk7ZbSmH19s144wPsRN4PEuAqA2x9EBaPF52iLF7uYp
eE07EeJaWHlply3KpqHU19aZxGMtmoppQaCZAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUCboGnl8tOkifa9UJ55gCqmjbn1wwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9DYm9Hbmw4dE9raWZhOVVKNTVn
Q3FtamJuMXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3IA3
MA0GCSqGSIb3DQEBCwUAA4IBAQAJE4dyXe4klExBF47wlV2LCkzbn1IicWm/kNeF
TmIi8xA9kv9GcxHNpd2UzHDl2A8tHs8bQIWyW9S/1wzFyC3/O/R1cGcgfNxNU6wK
g5tF1lPPYjoRG4/b4TjkdhKuSrk0dteSUk1/3oDGDNYuxvvvCQ9+1buPWeE/3Ro+
+SUrxu2dIPur97OgpT/lduWT4pHpd5hgk8Hn7pbpc2cXCZj8tUIgIB1frGEEHvJ1
V36j3u4Wnu0LDa8Z1lTkzMvcbDF7Hxpx7cS2FzK8YCUMRgGo30tvXgSOD3qwS6lw
497MhkjJwJ9fAIk2Kg+j2zKqiLBWEh5weX+V6sWPGfnL2x9r
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org