Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/H1uzFxrZ0aFiRd2ucNKhWVsWMfk.roa
File: H1uzFxrZ0aFiRd2ucNKhWVsWMfk.roa (raw, json)
Hash identifier: BnATIzGd3YjPUnbeL8SxAj87suc0sZkokXxX7AlvuRI=
Subject key identifier: 1F:5B:B3:17:1A:D9:D1:A1:62:45:DD:AE:70:D2:A1:59:5B:16:31:F9
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0886
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/H1uzFxrZ0aFiRd2ucNKhWVsWMfk.roa
Signing time: Tue 29 Sep 2020 09:58:51 +0000
ROA not before: Tue 29 Sep 2020 09:58:51 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131660
IP address blocks: 114.25.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2182 (0x886)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:51 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1F5BB3171AD9D1A16245DDAE70D2A1595B1631F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:6e:3b:cd:f4:3a:ac:a9:ec:d3:27:ae:8c:52:
c6:0a:9e:bb:66:11:35:d7:bb:c0:56:1b:d7:3b:e6:
02:01:bf:5a:38:25:0b:5b:7a:5e:ec:d5:8e:56:51:
27:9e:bf:cb:4e:ee:42:e1:e5:64:d6:6e:02:8b:aa:
90:e1:86:a3:29:a3:90:a7:17:87:f9:aa:65:82:3f:
42:81:03:d7:a5:67:7a:e3:8d:0d:99:92:6f:b9:49:
ca:ad:12:a3:2f:41:58:a5:09:c1:24:d9:66:67:d3:
21:aa:42:43:2a:87:c8:51:83:36:c3:f5:db:ae:e8:
84:ec:5a:98:4a:da:3c:8e:41:45:d5:ab:f4:ef:71:
32:ba:0e:c3:e5:32:36:e3:d2:46:b1:c7:2d:a6:58:
24:aa:ed:dd:d9:53:6c:f5:2e:bb:db:ca:6c:15:03:
59:22:3f:9c:e1:63:f9:51:b9:7e:65:fb:95:05:3d:
0e:df:39:a3:2e:19:b0:91:b2:dc:71:af:aa:0b:4e:
f3:b6:0b:84:b2:12:e3:a3:be:92:b4:5e:a8:c9:ec:
f2:76:80:99:8e:fc:38:e6:f9:24:2d:b6:eb:f4:0f:
8e:83:c7:16:1b:81:f0:cf:45:6f:14:cf:35:f5:4f:
51:8b:e0:ff:c8:45:da:43:e2:2d:54:82:dd:a7:2f:
42:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:5B:B3:17:1A:D9:D1:A1:62:45:DD:AE:70:D2:A1:59:5B:16:31:F9
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/H1uzFxrZ0aFiRd2ucNKhWVsWMfk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.25.250.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:fb:d3:4a:9a:26:54:9e:5b:af:60:10:5c:84:e5:e1:9d:7a:
5a:93:e9:13:2f:ab:b1:55:8c:64:7c:8b:38:a2:cd:ec:cc:9d:
2d:06:c9:14:2d:78:1f:d0:32:ad:42:0e:61:9c:d4:cb:7c:b5:
0a:47:c9:10:c8:1a:76:cb:31:6c:33:48:c2:1a:c1:57:73:14:
7b:43:6b:d3:bb:d3:28:c3:8a:11:93:77:f2:a0:02:7d:5b:4c:
2f:72:f7:2f:a9:4c:60:a3:8c:b5:81:d2:ae:c8:13:af:df:36:
bb:52:3e:f9:60:99:8d:67:4c:36:5b:73:d8:60:2f:26:c0:5f:
40:f1:dc:95:c0:40:27:d0:98:72:ad:80:ff:e0:5a:8d:a1:29:
d0:46:71:6c:c5:97:86:8c:f5:1f:f8:c6:b3:7b:13:81:75:cd:
d8:0a:7b:4b:c5:e6:63:0e:68:48:3e:12:66:85:b3:77:98:3d:
98:9a:80:a1:91:32:dc:3d:00:ca:74:6e:e9:8f:63:fd:9b:9c:
1a:85:a8:42:9c:45:cb:5c:bd:a1:cd:72:87:d2:3f:61:37:ea:
0e:60:3c:fe:1e:56:1b:72:85:07:76:09:48:b9:d0:3d:9b:3a:
03:92:70:f5:be:e2:cd:a5:38:b6:84:74:6f:38:c5:46:a8:da:
2c:34:b7:47
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCIYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMDA5Mjkw
OTU4NTFaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDFGNUJCMzE3MUFEOUQx
QTE2MjQ1RERBRTcwRDJBMTU5NUIxNjMxRjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDFbjvN9DqsqezTJ66MUsYKnrtmETXXu8BWG9c75gIBv1o4JQtb
el7s1Y5WUSeev8tO7kLh5WTWbgKLqpDhhqMpo5CnF4f5qmWCP0KBA9elZ3rjjQ2Z
km+5ScqtEqMvQVilCcEk2WZn0yGqQkMqh8hRgzbD9duu6ITsWphK2jyOQUXVq/Tv
cTK6DsPlMjbj0kaxxy2mWCSq7d3ZU2z1LrvbymwVA1kiP5zhY/lRuX5l+5UFPQ7f
OaMuGbCRstxxr6oLTvO2C4SyEuOjvpK0XqjJ7PJ2gJmO/Djm+SQttuv0D46DxxYb
gfDPRW8UzzX1T1GL4P/IRdpD4i1Ugt2nL0JDAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUH1uzFxrZ0aFiRd2ucNKhWVsWMfkwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9IMXV6RnhyWjBhRmlSZDJ1Y05L
aFdWc1dNZmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAchn6
MA0GCSqGSIb3DQEBCwUAA4IBAQCh+9NKmiZUnluvYBBchOXhnXpak+kTL6uxVYxk
fIs4os3szJ0tBskULXgf0DKtQg5hnNTLfLUKR8kQyBp2yzFsM0jCGsFXcxR7Q2vT
u9Mow4oRk3fyoAJ9W0wvcvcvqUxgo4y1gdKuyBOv3za7Uj75YJmNZ0w2W3PYYC8m
wF9A8dyVwEAn0JhyrYD/4FqNoSnQRnFsxZeGjPUf+MazexOBdc3YCntLxeZjDmhI
PhJmhbN3mD2YmoChkTLcPQDKdG7pj2P9m5wahahCnEXLXL2hzXKH0j9hN+oOYDz+
HlYbcoUHdglIudA9mzoDknD1vuLNpTi2hHRvOMVGqNosNLdH
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org