Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/EG3ApaHqMXjdsIvRjvo4OlQrxfc.roa
File: EG3ApaHqMXjdsIvRjvo4OlQrxfc.roa (raw, json)
Hash identifier: zjLwE8WHAGLlyn3h4Fpi2+NW8pU2y09G4KD5yZcT30w=
Subject key identifier: 10:6D:C0:A5:A1:EA:31:78:DD:B0:8B:D1:8E:FA:38:3A:54:2B:C5:F7
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0BE9
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/EG3ApaHqMXjdsIvRjvo4OlQrxfc.roa
Signing time: Wed 29 Sep 2021 02:50:39 +0000
ROA not before: Wed 29 Sep 2021 02:50:39 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131660
IP address blocks: 2001:b000:594::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3049 (0xbe9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:39 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=106DC0A5A1EA3178DDB08BD18EFA383A542BC5F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:67:51:bc:98:28:7f:e7:11:95:48:45:4c:ea:
9e:81:bf:39:2f:db:7b:18:b0:88:e2:5d:77:c1:6d:
cf:65:8a:59:41:a0:94:03:6a:03:0a:39:d8:15:88:
2d:b1:7d:ea:21:5e:46:62:26:7e:96:cc:c8:ec:8b:
cc:b0:8e:41:1a:90:b9:5d:1e:c4:41:eb:30:df:53:
e0:5a:32:d7:c9:b1:81:e5:7e:d0:89:01:29:79:d0:
1c:8d:23:9f:87:a3:bd:08:e4:13:cc:f7:7e:4e:77:
81:ac:9f:b5:29:9f:ce:e2:19:15:1c:ea:12:a5:a4:
a2:76:cb:ab:38:e3:a7:cd:8c:1a:54:94:ba:d7:47:
7e:86:59:09:77:a4:16:79:4c:c7:85:e2:8c:d4:a8:
ce:22:f6:a3:ce:0d:b7:36:16:1a:aa:d7:ec:ac:be:
5d:ff:88:fd:3c:56:f2:91:1e:0b:0f:01:01:81:0e:
ad:3d:2e:72:e6:9d:f5:30:0f:cf:0b:60:58:39:03:
8a:f0:35:d0:98:25:71:7c:3d:a9:1d:99:37:c6:9e:
cd:ec:4f:40:62:6e:aa:78:62:0d:37:30:22:c7:b4:
ae:f3:bb:fd:c3:1e:78:b2:7d:c2:03:b0:37:04:8b:
e6:a3:e9:ce:96:bf:79:17:9e:66:c4:1a:b6:57:a0:
e5:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:6D:C0:A5:A1:EA:31:78:DD:B0:8B:D1:8E:FA:38:3A:54:2B:C5:F7
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/EG3ApaHqMXjdsIvRjvo4OlQrxfc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:594::/48
Signature Algorithm: sha256WithRSAEncryption
90:88:98:a8:5f:5a:7c:85:05:71:0a:7b:67:3f:c8:f9:1d:20:
c5:ba:57:5b:0b:2a:e5:eb:a2:1f:74:7a:57:3b:16:e2:c5:f8:
fd:cf:7b:f6:15:24:d0:3b:6d:b9:15:58:6d:0e:b8:77:f4:3b:
64:64:6d:17:09:79:e2:2d:0d:7b:41:84:7e:51:89:6c:df:32:
52:86:56:82:c8:45:5a:4a:e2:2a:03:00:f0:3d:ed:22:3d:ed:
98:d8:e6:73:7e:7b:7e:6c:7a:92:fe:6d:a8:28:11:04:7d:8c:
7b:b1:0f:b8:1c:6c:f5:51:88:6a:78:89:f7:a7:4b:94:19:61:
ad:03:78:d3:18:45:2c:21:85:39:b6:dc:15:2f:3a:c1:ae:12:
9e:fe:10:b4:50:f5:8b:c7:29:99:f9:a8:51:4b:5c:6e:2b:bf:
19:a5:b0:6b:97:e3:16:20:a4:39:bb:76:65:7d:5d:90:97:27:
cf:0b:8c:b2:77:ee:ae:e0:62:2c:62:21:a9:56:98:ee:f4:ad:
45:0f:70:15:1f:a3:85:5a:43:8e:63:00:86:a9:14:30:87:63:
97:66:c5:a2:c3:d1:d6:96:f5:38:99:0b:20:68:6e:b9:db:f0:
3b:ed:11:7b:80:9a:78:59:cc:28:0a:1a:d0:75:67:b1:33:0a:
c5:7f:5c:f6
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICC+kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTA5Mjkw
MjUwMzlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDEwNkRDMEE1QTFFQTMx
NzhEREIwOEJEMThFRkEzODNBNTQyQkM1RjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdZ1G8mCh/5xGVSEVM6p6Bvzkv23sYsIjiXXfBbc9lillBoJQD
agMKOdgViC2xfeohXkZiJn6WzMjsi8ywjkEakLldHsRB6zDfU+BaMtfJsYHlftCJ
ASl50ByNI5+Ho70I5BPM935Od4Gsn7Upn87iGRUc6hKlpKJ2y6s446fNjBpUlLrX
R36GWQl3pBZ5TMeF4ozUqM4i9qPODbc2Fhqq1+ysvl3/iP08VvKRHgsPAQGBDq09
LnLmnfUwD88LYFg5A4rwNdCYJXF8PakdmTfGns3sT0Bibqp4Yg03MCLHtK7zu/3D
HniyfcIDsDcEi+aj6c6Wv3kXnmbEGrZXoOU/AgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUEG3ApaHqMXjdsIvRjvo4OlQrxfcwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9FRzNBcGFIcU1YamRzSXZSanZv
NE9sUXJ4ZmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw
AAWUMA0GCSqGSIb3DQEBCwUAA4IBAQCQiJioX1p8hQVxCntnP8j5HSDFuldbCyrl
66IfdHpXOxbixfj9z3v2FSTQO225FVhtDrh39DtkZG0XCXniLQ17QYR+UYls3zJS
hlaCyEVaSuIqAwDwPe0iPe2Y2OZzfnt+bHqS/m2oKBEEfYx7sQ+4HGz1UYhqeIn3
p0uUGWGtA3jTGEUsIYU5ttwVLzrBrhKe/hC0UPWLxymZ+ahRS1xuK78ZpbBrl+MW
IKQ5u3ZlfV2QlyfPC4yyd+6u4GIsYiGpVpju9K1FD3AVH6OFWkOOYwCGqRQwh2OX
ZsWiw9HWlvU4mQsgaG652/A77RF7gJp4WcwoChrQdWexMwrFf1z2
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org