Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/G4DsUS0pInqBHG8k_1Z189-DvN4.roa
File: G4DsUS0pInqBHG8k_1Z189-DvN4.roa (raw, json)
Hash identifier: 0DXYRrSJYXzks6R7mhP5FHwAk+bNR6D2zcpepAMUUVI=
Subject key identifier: 1B:80:EC:51:2D:29:22:7A:81:1C:6F:24:FF:56:75:F3:DF:83:BC:DE
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/G4DsUS0pInqBHG8k_1Z189-DvN4.roa
Signing time: Thu 15 Sep 2022 02:48:39 +0000
ROA not before: Thu 15 Sep 2022 02:48:39 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17714
IP address blocks: 114.30.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:39 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1B80EC512D29227A811C6F24FF5675F3DF83BCDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:54:37:ea:64:0f:be:a9:09:ad:ee:f9:d9:39:
fa:84:d2:7b:f5:c4:7c:34:8b:28:3b:c8:64:53:63:
79:3c:bd:3a:fa:eb:11:1b:96:b0:d0:3f:cf:b5:dc:
c9:4c:17:aa:15:4f:98:62:79:1b:c4:42:db:ed:6e:
22:30:7c:8f:47:0e:f6:db:25:b4:49:df:bd:f9:b9:
66:6d:85:82:54:c5:0a:79:37:89:18:c5:c4:af:3d:
4f:c3:33:9b:ec:88:bf:3d:14:d8:40:8e:08:32:3c:
a8:ca:53:18:3e:b1:be:e0:fc:06:2c:3a:14:2b:3c:
a6:90:10:cd:c9:88:17:a8:0b:b0:2b:e5:eb:f8:47:
24:1f:bb:53:6d:ec:3e:ca:04:cb:2b:44:3e:a8:2e:
52:94:2b:a2:2e:e3:f3:86:b3:62:14:5f:fc:b4:bd:
26:51:3a:c0:1e:d2:18:cc:72:3a:24:28:27:c5:c3:
f3:47:5f:6f:56:d6:e4:cf:be:51:fd:be:73:8d:5e:
93:2d:37:58:88:f7:43:a5:ae:a3:bc:b4:cf:9c:12:
6d:a6:e2:cd:68:68:f3:f5:33:07:e2:d1:34:17:4b:
8f:73:1f:ea:23:44:08:00:18:ff:c1:af:d2:db:59:
d5:84:46:ab:00:54:f2:23:dc:dd:a9:4f:78:df:f1:
aa:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:80:EC:51:2D:29:22:7A:81:1C:6F:24:FF:56:75:F3:DF:83:BC:DE
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/G4DsUS0pInqBHG8k_1Z189-DvN4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.30.35.0/24
Signature Algorithm: sha256WithRSAEncryption
86:d1:5f:c4:41:43:a3:a8:5f:44:c5:a0:25:43:0b:93:ce:28:
72:97:e7:f0:c8:6b:2a:91:21:54:35:3c:ed:be:69:b1:52:e8:
ec:f3:94:1e:33:df:18:04:52:e1:50:a3:2d:ad:f0:0a:8a:86:
1e:76:8d:73:68:3d:07:43:c8:64:d8:1d:9b:63:4a:2b:3f:dd:
8a:5f:8a:ba:75:a5:55:03:39:e8:94:04:65:08:ad:db:72:a2:
6e:62:17:31:df:50:eb:89:64:e8:02:66:84:76:68:b4:cd:78:
0b:91:59:3b:24:87:b7:1b:b9:f1:c5:c5:75:c9:b2:ed:07:19:
0f:3d:c8:7c:d8:26:f2:d8:64:f4:7a:02:44:f8:2a:58:c9:2a:
ca:d5:ec:f4:64:35:cd:51:b5:62:11:67:46:4c:1b:d1:76:5f:
e4:a6:54:c5:cf:c1:15:50:d4:d4:76:3d:6c:c3:ce:a8:21:7d:
55:f1:a8:7a:5e:d3:bc:f1:0e:e4:2d:3f:6d:fa:7a:7e:ec:3d:
9b:ba:79:af:c9:35:eb:81:02:cd:07:16:1b:55:ce:7f:82:21:
ac:ae:8e:7b:c6:e6:f1:ab:c5:84:99:31:c2:4b:3d:6e:bd:88:
97:9d:70:a6:a3:1f:e9:5b:e3:06:62:be:a5:de:83:2b:91:4b:
8d:0d:2d:3d
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MzlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDFCODBFQzUxMkQyOTIy
N0E4MTFDNkYyNEZGNTY3NUYzREY4M0JDREUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTVDfqZA++qQmt7vnZOfqE0nv1xHw0iyg7yGRTY3k8vTr66xEb
lrDQP8+13MlMF6oVT5hieRvEQtvtbiIwfI9HDvbbJbRJ3735uWZthYJUxQp5N4kY
xcSvPU/DM5vsiL89FNhAjggyPKjKUxg+sb7g/AYsOhQrPKaQEM3JiBeoC7Ar5ev4
RyQfu1Nt7D7KBMsrRD6oLlKUK6Iu4/OGs2IUX/y0vSZROsAe0hjMcjokKCfFw/NH
X29W1uTPvlH9vnONXpMtN1iI90OlrqO8tM+cEm2m4s1oaPP1Mwfi0TQXS49zH+oj
RAgAGP/Br9LbWdWERqsAVPIj3N2pT3jf8apXAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUG4DsUS0pInqBHG8k/1Z189+DvN4wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9HNERzVVMwcElucUJIRzhrXzFa
MTg5LUR2TjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAch4j
MA0GCSqGSIb3DQEBCwUAA4IBAQCG0V/EQUOjqF9ExaAlQwuTzihyl+fwyGsqkSFU
NTztvmmxUujs85QeM98YBFLhUKMtrfAKioYedo1zaD0HQ8hk2B2bY0orP92KX4q6
daVVAznolARlCK3bcqJuYhcx31DriWToAmaEdmi0zXgLkVk7JIe3G7nxxcV1ybLt
BxkPPch82Cby2GT0egJE+CpYySrK1ez0ZDXNUbViEWdGTBvRdl/kplTFz8EVUNTU
dj1sw86oIX1V8ah6XtO88Q7kLT9t+np+7D2bunmvyTXrgQLNBxYbVc5/giGsro57
xubxq8WEmTHCSz1uvYiXnXCmox/pW+MGYr6l3oMrkUuNDS09
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org