Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/JkTAttgGYvbZAXwD19l9_s6w-iI.roa
File: JkTAttgGYvbZAXwD19l9_s6w-iI.roa (raw, json)
Hash identifier: gnLuackGKiyZ3+Ql0Y91JBwMpswBsiwTVpzWMF5bTgs=
Subject key identifier: 26:44:C0:B6:D8:06:62:F6:D9:01:7C:03:D7:D9:7D:FE:CE:B0:FA:22
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 083E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/JkTAttgGYvbZAXwD19l9_s6w-iI.roa
Signing time: Tue 29 Sep 2020 09:58:30 +0000
ROA not before: Tue 29 Sep 2020 09:58:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 210.71.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2110 (0x83e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:30 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2644C0B6D80662F6D9017C03D7D97DFECEB0FA22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:77:ff:de:a2:f6:b3:89:32:01:84:de:0b:f3:
43:42:6b:d3:7c:84:1e:7e:d4:76:69:4d:00:86:ff:
ad:b2:4e:71:cd:e3:ec:00:1f:a0:29:9a:c4:fa:39:
98:b9:b1:59:16:b6:9e:cf:da:c8:5f:f1:24:7c:bc:
72:25:50:1a:a8:8f:49:47:a4:fe:1c:26:59:67:98:
db:14:80:c7:b3:d9:e7:4a:c3:6a:f4:a1:79:cb:fb:
9d:a9:65:1b:03:17:80:e5:92:a1:cf:cc:b6:3c:d8:
6b:a3:0a:f2:53:f3:03:58:21:2f:94:23:ea:74:c1:
77:96:a2:a2:88:44:cb:cc:c9:88:38:80:4f:3d:ef:
7d:ce:94:1d:63:c6:90:77:f0:bc:d8:bb:8c:b9:6d:
cf:0b:84:7a:5d:a1:08:60:7e:eb:05:51:3d:4f:9a:
48:77:30:71:44:31:66:cc:38:78:99:22:ea:68:87:
f1:5b:de:fe:06:b3:6e:a4:f7:dd:cd:ff:cb:b8:82:
8a:c1:43:f5:ec:48:f7:c2:76:64:a1:a4:e8:11:1a:
08:38:b4:44:a2:9c:e7:0e:af:23:12:b3:b2:3d:38:
34:2f:a5:27:e0:2d:7d:4a:9f:fb:68:54:5a:62:a5:
d9:55:f9:70:01:34:5f:36:11:a5:0b:40:f5:34:00:
a1:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:44:C0:B6:D8:06:62:F6:D9:01:7C:03:D7:D9:7D:FE:CE:B0:FA:22
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/JkTAttgGYvbZAXwD19l9_s6w-iI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.71.128.0/17
Signature Algorithm: sha256WithRSAEncryption
44:d0:5a:be:60:69:86:1c:aa:07:39:14:fb:45:d4:fb:d1:28:
dd:c7:4f:08:da:aa:c3:62:45:d2:cd:fa:23:be:f0:de:65:c6:
f3:f7:a0:9f:cd:1c:09:8a:5e:38:47:86:31:7d:77:ce:b0:41:
5d:ac:7d:e6:bd:ef:c8:96:a9:1f:90:2f:cc:74:e1:f1:38:05:
58:21:28:c1:8d:60:95:1a:57:13:93:74:c6:f2:0d:20:13:10:
de:1b:e1:9a:19:69:be:f0:81:ca:c4:18:af:a0:f4:66:22:7b:
9c:39:6a:94:cd:7e:f2:02:01:bb:3a:85:1c:81:b5:94:eb:e7:
39:b2:11:02:3c:fe:33:5c:c5:00:b2:8e:7a:1b:62:da:28:da:
9b:c7:77:70:0e:e4:d6:d7:a9:30:28:80:e2:46:52:a2:5e:94:
39:8e:0d:7a:7a:32:c8:e5:6e:d3:b1:b7:e2:a3:0b:03:3c:91:
2b:0f:a5:b2:b9:eb:bc:04:d2:3d:24:28:08:08:7a:0e:d4:49:
23:36:88:70:34:27:8b:e6:e0:c6:cc:95:c1:ce:0f:da:0d:5d:
88:4d:f8:96:ab:94:fd:c0:63:83:b6:72:21:26:e0:0d:0a:fc:
4a:a7:86:24:18:ba:9a:78:9b:ae:83:15:b2:46:c4:ee:11:05:
71:35:58:a9
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCD4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMDA5Mjkw
OTU4MzBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDI2NDRDMEI2RDgwNjYy
RjZEOTAxN0MwM0Q3RDk3REZFQ0VCMEZBMjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2d//eovaziTIBhN4L80NCa9N8hB5+1HZpTQCG/62yTnHN4+wA
H6ApmsT6OZi5sVkWtp7P2shf8SR8vHIlUBqoj0lHpP4cJllnmNsUgMez2edKw2r0
oXnL+52pZRsDF4DlkqHPzLY82GujCvJT8wNYIS+UI+p0wXeWoqKIRMvMyYg4gE89
733OlB1jxpB38LzYu4y5bc8LhHpdoQhgfusFUT1Pmkh3MHFEMWbMOHiZIupoh/Fb
3v4Gs26k993N/8u4gorBQ/XsSPfCdmShpOgRGgg4tESinOcOryMSs7I9ODQvpSfg
LX1Kn/toVFpipdlV+XABNF82EaULQPU0AKFDAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUJkTAttgGYvbZAXwD19l9/s6w+iIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9Ka1RBdHRnR1l2YlpBWHdEMTls
OV9zNnctaUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQH0keA
MA0GCSqGSIb3DQEBCwUAA4IBAQBE0Fq+YGmGHKoHORT7RdT70Sjdx08I2qrDYkXS
zfojvvDeZcbz96CfzRwJil44R4YxfXfOsEFdrH3mve/IlqkfkC/MdOHxOAVYISjB
jWCVGlcTk3TG8g0gExDeG+GaGWm+8IHKxBivoPRmInucOWqUzX7yAgG7OoUcgbWU
6+c5shECPP4zXMUAso56G2LaKNqbx3dwDuTW16kwKIDiRlKiXpQ5jg16ejLI5W7T
sbfiowsDPJErD6Wyueu8BNI9JCgICHoO1EkjNohwNCeL5uDGzJXBzg/aDV2ITfiW
q5T9wGODtnIhJuANCvxKp4YkGLqaeJuugxWyRsTuEQVxNVip
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org