Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/HBNWca13fdO0YVqYm67zeNU3-N8.roa
File: HBNWca13fdO0YVqYm67zeNU3-N8.roa (raw, json)
Hash identifier: 56InY1kdChvm2Kj6Y+K0d0gEKK1yFibNj22PeciQcuY=
Subject key identifier: 1C:13:56:71:AD:77:7D:D3:B4:61:5A:98:9B:AE:F3:78:D5:37:F8:DF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AAB
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HBNWca13fdO0YVqYm67zeNU3-N8.roa
Signing time: Sun 07 Feb 2021 11:38:40 +0000
ROA not before: Sun 07 Feb 2021 11:38:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 211.75.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2731 (0xaab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:38:40 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=1C135671AD777DD3B4615A989BAEF378D537F8DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f3:09:51:85:0b:8a:cd:de:20:e2:de:90:d0:
dd:7f:09:4d:71:89:5b:11:26:79:a5:60:43:1e:6a:
96:49:36:e2:78:11:f9:95:4c:d9:19:53:9a:d2:b5:
06:aa:89:40:36:9e:d2:8a:4c:91:c5:5f:e1:6f:94:
59:1a:70:99:c7:60:3e:4b:5b:65:7d:71:6e:f2:eb:
bd:92:8e:84:2a:4d:b7:98:3e:04:83:b5:b2:59:74:
6e:18:16:1f:a6:9c:2d:99:b8:03:f8:dd:3e:24:89:
76:7b:bc:82:d1:a5:60:8f:63:85:96:6c:ee:cc:f9:
ba:b4:65:4b:a7:39:a0:e8:68:e4:da:6b:f4:7e:e5:
05:93:0c:26:18:9c:92:bd:2f:b2:fc:b1:7b:31:f7:
60:a2:71:34:48:73:8d:c2:65:fb:e6:53:f8:12:5c:
65:bc:7b:ba:f8:d6:fe:66:10:6f:72:89:07:30:d4:
05:f1:db:0a:8f:e3:a6:6b:2e:10:e6:41:49:92:15:
1d:34:68:8e:8f:91:33:fa:e9:94:05:f2:fb:55:1b:
cb:eb:ac:fa:92:87:14:e2:ac:12:b8:8b:97:56:e5:
aa:f4:c3:2e:ba:39:74:1d:a6:b7:fb:55:60:21:22:
81:d4:39:17:ad:93:63:75:14:63:cb:b1:06:5c:a8:
07:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:13:56:71:AD:77:7D:D3:B4:61:5A:98:9B:AE:F3:78:D5:37:F8:DF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HBNWca13fdO0YVqYm67zeNU3-N8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7d:6f:1a:2e:1e:ec:cb:82:90:6e:74:ea:fb:8e:22:e6:ff:b0:
af:7b:09:38:ee:1b:16:e8:5c:a9:d0:1a:39:66:d1:09:97:0a:
ae:f1:29:d3:7e:21:89:74:22:c4:44:5a:96:00:5f:51:2b:d3:
bd:09:16:e3:a0:b1:94:c8:d7:fb:86:8f:f7:15:ac:c2:10:9d:
8a:94:18:8f:68:19:41:22:be:96:5e:c5:0f:83:ac:07:71:64:
b0:a3:23:69:46:70:b2:8c:72:d8:de:e5:aa:b1:85:37:df:a6:
18:c3:05:d9:89:90:fb:51:12:93:91:0e:43:49:d7:c6:76:b6:
1a:bf:c9:b9:e6:b1:e1:e1:9f:aa:e3:6e:f7:ec:a4:21:9a:70:
d7:e9:cb:aa:9e:63:f5:e4:eb:86:b0:be:5c:64:fc:a2:26:23:
ca:ff:ad:11:c1:ed:32:42:7f:70:86:11:9e:c6:4a:5d:d4:d3:
cf:90:e1:70:84:98:c5:c2:9a:10:73:f3:ef:94:4e:80:68:de:
a0:78:94:58:0a:ed:2f:79:0b:6b:de:f0:1f:92:03:63:32:72:
63:19:24:56:75:28:65:bc:fd:f8:54:b5:3f:dd:69:04:25:ef:
95:43:55:af:63:3f:64:cc:ec:f0:34:2b:7d:05:df:a4:33:47:
f5:d6:51:a7
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCqswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTAyMDcx
MTM4NDBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDFDMTM1NjcxQUQ3NzdE
RDNCNDYxNUE5ODlCQUVGMzc4RDUzN0Y4REYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCu8wlRhQuKzd4g4t6Q0N1/CU1xiVsRJnmlYEMeapZJNuJ4EfmV
TNkZU5rStQaqiUA2ntKKTJHFX+FvlFkacJnHYD5LW2V9cW7y672SjoQqTbeYPgSD
tbJZdG4YFh+mnC2ZuAP43T4kiXZ7vILRpWCPY4WWbO7M+bq0ZUunOaDoaOTaa/R+
5QWTDCYYnJK9L7L8sXsx92CicTRIc43CZfvmU/gSXGW8e7r41v5mEG9yiQcw1AXx
2wqP46ZrLhDmQUmSFR00aI6PkTP66ZQF8vtVG8vrrPqShxTirBK4i5dW5ar0wy66
OXQdprf7VWAhIoHUORetk2N1FGPLsQZcqAeRAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUHBNWca13fdO0YVqYm67zeNU3+N8wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9IQk5XY2ExM2ZkTzBZVnFZbTY3
emVOVTMtTjgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA00sw
DQYJKoZIhvcNAQELBQADggEBAH1vGi4e7MuCkG506vuOIub/sK97CTjuGxboXKnQ
Gjlm0QmXCq7xKdN+IYl0IsREWpYAX1Er070JFuOgsZTI1/uGj/cVrMIQnYqUGI9o
GUEivpZexQ+DrAdxZLCjI2lGcLKMctje5aqxhTffphjDBdmJkPtREpORDkNJ18Z2
thq/ybnmseHhn6rjbvfspCGacNfpy6qeY/Xk64awvlxk/KImI8r/rRHB7TJCf3CG
EZ7GSl3U08+Q4XCEmMXCmhBz8++UToBo3qB4lFgK7S95C2ve8B+SA2MycmMZJFZ1
KGW8/fhUtT/daQQl75VDVa9jP2TM7PA0K30F36QzR/XWUac=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org