Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/FPJOPy8XDaiJgdW6SOizuSJhpnA.roa
File: FPJOPy8XDaiJgdW6SOizuSJhpnA.roa (raw, json)
Hash identifier: G36Ko/4XY1jatGfUcz06AtRnOwUOKQeIepE02eHd98I=
Subject key identifier: 14:F2:4E:3F:2F:17:0D:A8:89:81:D5:BA:48:E8:B3:B9:22:61:A6:70
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/FPJOPy8XDaiJgdW6SOizuSJhpnA.roa
Signing time: Thu 15 Sep 2022 02:48:29 +0000
ROA not before: Thu 15 Sep 2022 02:48:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 20940
IP address blocks: 203.74.67.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:29 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=14F24E3F2F170DA88981D5BA48E8B3B92261A670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c3:74:24:28:58:4f:2f:09:0d:17:3a:ef:a5:
a8:e0:fe:89:d1:be:e6:7a:52:6c:81:a0:00:22:61:
ea:ef:bb:41:f8:44:5a:e8:0e:65:23:a5:50:c2:66:
16:52:df:78:54:03:9f:68:cf:09:77:ce:93:5f:87:
79:a5:d7:c3:b6:94:90:79:42:17:c3:47:bb:47:71:
84:41:d7:84:71:f7:8c:2f:cd:29:37:37:41:20:87:
ee:2e:06:e7:3f:e8:ec:63:99:26:56:6a:a4:df:4a:
2d:a4:ad:ef:9e:46:7b:e2:a9:81:8e:43:da:35:3f:
94:ce:55:71:a2:92:9b:9a:a8:c6:36:ab:57:e5:0d:
58:b1:17:c8:4f:8f:13:75:2e:a5:ae:58:01:41:06:
64:7c:87:80:0b:71:9c:08:54:37:9a:d4:1e:16:da:
69:23:bf:d8:78:67:39:60:5b:01:fa:c5:ff:d4:2e:
d6:eb:17:d1:db:30:55:51:18:77:17:17:22:91:36:
54:cd:7f:92:b2:0f:49:e0:da:68:23:b1:91:79:89:
61:18:af:60:a3:c7:75:65:e2:07:6d:5f:c9:20:2d:
2f:8b:5f:64:fd:a7:00:ba:9a:22:e9:89:bc:de:57:
52:7d:3e:77:7f:e9:bf:fa:10:1e:aa:09:0a:12:e5:
46:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:F2:4E:3F:2F:17:0D:A8:89:81:D5:BA:48:E8:B3:B9:22:61:A6:70
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/FPJOPy8XDaiJgdW6SOizuSJhpnA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.67.0/25
Signature Algorithm: sha256WithRSAEncryption
c1:e3:63:b6:31:68:fa:ff:68:71:cb:06:65:47:98:dc:08:fa:
e2:29:27:0a:e2:2b:76:9e:f4:66:96:54:e0:b5:8b:e6:c1:d9:
de:6b:f4:58:c1:c5:08:ff:8d:fc:b6:d0:dd:8d:a7:f3:75:f5:
ee:c1:9d:9c:e2:66:e8:c1:28:fa:6d:14:a8:45:cd:e8:e9:78:
44:57:9c:5e:1d:a2:ec:40:1d:9f:34:dc:f7:3d:db:f4:06:b3:
0d:b4:63:ab:11:07:7e:7d:e3:3d:fd:47:a2:2c:4d:57:92:78:
89:6a:65:c1:80:34:74:e1:3e:5c:f2:fc:da:7b:30:f3:a5:bd:
aa:b2:6a:43:67:26:89:eb:2a:cb:2b:5b:10:10:1e:af:12:9c:
21:84:82:29:33:18:d8:0d:94:d0:7b:13:e3:9c:0a:1e:68:a4:
59:ba:97:78:09:57:73:e1:76:78:65:56:af:94:97:4d:3a:e2:
bd:1b:4d:92:21:f2:2e:49:05:c7:0b:da:4e:fb:83:a6:07:bb:
56:c5:02:fc:7c:c1:13:bd:30:af:4d:93:d0:5c:7c:fb:6e:a6:
a0:46:17:3a:82:4b:87:83:26:a3:98:ce:1e:c2:12:19:50:9e:
5a:eb:1c:a7:36:20:8b:95:80:e6:ca:94:ef:0a:60:7d:1b:60:
a8:99:c0:86
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MjlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDE0RjI0RTNGMkYxNzBE
QTg4OTgxRDVCQTQ4RThCM0I5MjI2MUE2NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCVw3QkKFhPLwkNFzrvpajg/onRvuZ6UmyBoAAiYervu0H4RFro
DmUjpVDCZhZS33hUA59ozwl3zpNfh3ml18O2lJB5QhfDR7tHcYRB14Rx94wvzSk3
N0Egh+4uBuc/6OxjmSZWaqTfSi2kre+eRnviqYGOQ9o1P5TOVXGikpuaqMY2q1fl
DVixF8hPjxN1LqWuWAFBBmR8h4ALcZwIVDea1B4W2mkjv9h4ZzlgWwH6xf/ULtbr
F9HbMFVRGHcXFyKRNlTNf5KyD0ng2mgjsZF5iWEYr2Cjx3Vl4gdtX8kgLS+LX2T9
pwC6miLpibzeV1J9Pnd/6b/6EB6qCQoS5UYlAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUFPJOPy8XDaiJgdW6SOizuSJhpnAwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9GUEpPUHk4WERhaUpnZFc2U09p
enVTSmhwbkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUHy0pD
ADANBgkqhkiG9w0BAQsFAAOCAQEAweNjtjFo+v9occsGZUeY3Aj64iknCuIrdp70
ZpZU4LWL5sHZ3mv0WMHFCP+N/LbQ3Y2n83X17sGdnOJm6MEo+m0UqEXN6Ol4RFec
Xh2i7EAdnzTc9z3b9AazDbRjqxEHfn3jPf1HoixNV5J4iWplwYA0dOE+XPL82nsw
86W9qrJqQ2cmiesqyytbEBAerxKcIYSCKTMY2A2U0HsT45wKHmikWbqXeAlXc+F2
eGVWr5SXTTrivRtNkiHyLkkFxwvaTvuDpge7VsUC/HzBE70wr02T0Fx8+26moEYX
OoJLh4Mmo5jOHsISGVCeWuscpzYgi5WA5sqU7wpgfRtgqJnAhg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org