Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Kp28o5x15U_SmdP9d9O5Z6zSk2c.roa
File: Kp28o5x15U_SmdP9d9O5Z6zSk2c.roa (raw, json)
Hash identifier: gk6Fb0CwLy3cyO6q/82V6oEMqIowJskXM46fbNNH8/8=
Subject key identifier: 2A:9D:BC:A3:9C:75:E5:4F:D2:99:D3:FD:77:D3:B9:67:AC:D2:93:67
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Kp28o5x15U_SmdP9d9O5Z6zSk2c.roa
Signing time: Thu 15 Sep 2022 02:48:35 +0000
ROA not before: Thu 15 Sep 2022 02:48:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9678
IP address blocks: 203.66.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2A9DBCA39C75E54FD299D3FD77D3B967ACD29367
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:45:3d:41:fc:e8:a5:fc:a9:ab:9d:51:2a:57:
f4:ab:28:59:b3:e1:92:2c:5c:e9:fd:87:3b:4e:69:
77:2e:37:84:f9:54:22:2f:8b:d5:48:58:23:b6:27:
cd:6c:9e:bb:0d:55:f7:a9:d0:c5:50:8e:62:c1:ef:
8a:f5:e2:a7:94:4a:a0:56:84:7f:e7:72:64:f2:f0:
73:c1:d6:c0:6d:58:b3:7a:93:67:d5:50:ec:21:55:
1a:2d:5c:54:00:f5:ac:90:32:7a:4a:6f:ee:28:22:
0a:fb:df:c7:33:cb:65:0f:e8:2d:d6:e7:1f:35:50:
25:8d:29:e1:c5:92:7f:6a:1b:2b:18:fe:f3:e6:f7:
f3:56:8e:de:f6:99:62:90:bb:e6:0a:a4:17:0a:6c:
d2:b1:b9:7f:90:a0:bf:54:3f:63:41:1c:e6:9f:96:
fa:57:cf:ad:3f:f9:d3:44:31:4b:5a:c9:26:e4:da:
b9:f7:98:ff:72:b9:47:cd:e7:8d:62:07:b2:01:1e:
c9:69:a6:df:42:bb:ac:05:ff:58:f6:d0:dd:ca:95:
b3:cc:0a:78:8a:3c:58:d1:b8:ac:89:46:5e:e3:0c:
15:ef:07:dd:b2:3b:eb:a2:3e:22:9c:a5:30:59:6c:
b3:7b:63:66:48:b5:5b:e4:c7:f7:2e:cb:b9:41:56:
2b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:9D:BC:A3:9C:75:E5:4F:D2:99:D3:FD:77:D3:B9:67:AC:D2:93:67
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Kp28o5x15U_SmdP9d9O5Z6zSk2c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.151.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:68:bb:eb:2f:d7:e1:f5:3f:36:18:ce:2e:4e:56:27:2f:06:
db:e7:7e:94:e6:74:a9:5f:11:34:8c:7d:ba:f5:e4:67:fd:81:
2c:f7:2c:d9:89:1a:62:8e:00:dc:34:7f:16:97:5f:82:51:b8:
c8:de:d0:45:c4:cb:2d:ed:e6:8c:45:fd:49:9f:80:43:2b:be:
57:95:c5:ab:8f:4f:8c:e7:e3:11:6f:fe:24:d0:00:45:79:d5:
4a:05:43:e3:2b:09:f7:ae:09:46:82:c4:f5:83:b5:e1:16:0b:
5d:6f:72:95:76:7a:7d:66:49:85:b7:58:10:ed:5e:c4:a8:72:
8d:57:5f:fd:f6:08:18:c3:7c:c2:51:5f:4e:ef:2c:cc:38:62:
6d:a0:54:98:7b:4c:f8:24:43:06:eb:d6:0c:62:aa:22:3f:51:
80:2c:5a:eb:6c:1a:ae:60:e6:a8:4c:56:02:03:79:98:0d:11:
44:9f:94:2e:85:f7:67:ef:da:b9:ac:47:5d:85:c7:2b:c6:50:
34:42:90:57:35:60:7d:57:6a:50:3b:1c:62:fd:af:be:df:9b:
5f:61:84:f3:71:06:cf:b3:b5:23:5c:40:9c:7d:6f:d4:b8:36:
7e:52:55:26:f7:f6:e0:16:c8:50:4b:6c:7c:f5:5c:86:d3:1f:
1b:ee:44:20
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MzVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDJBOURCQ0EzOUM3NUU1
NEZEMjk5RDNGRDc3RDNCOTY3QUNEMjkzNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSRT1B/Oil/KmrnVEqV/SrKFmz4ZIsXOn9hztOaXcuN4T5VCIv
i9VIWCO2J81snrsNVfep0MVQjmLB74r14qeUSqBWhH/ncmTy8HPB1sBtWLN6k2fV
UOwhVRotXFQA9ayQMnpKb+4oIgr738czy2UP6C3W5x81UCWNKeHFkn9qGysY/vPm
9/NWjt72mWKQu+YKpBcKbNKxuX+QoL9UP2NBHOaflvpXz60/+dNEMUtaySbk2rn3
mP9yuUfN541iB7IBHslppt9Cu6wF/1j20N3KlbPMCniKPFjRuKyJRl7jDBXvB92y
O+uiPiKcpTBZbLN7Y2ZItVvkx/cuy7lBVis9AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUKp28o5x15U/SmdP9d9O5Z6zSk2cwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9LcDI4bzV4MTVVX1NtZFA5ZDlP
NVo2elNrMmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0KX
MA0GCSqGSIb3DQEBCwUAA4IBAQBOaLvrL9fh9T82GM4uTlYnLwbb536U5nSpXxE0
jH269eRn/YEs9yzZiRpijgDcNH8Wl1+CUbjI3tBFxMst7eaMRf1Jn4BDK75XlcWr
j0+M5+MRb/4k0ABFedVKBUPjKwn3rglGgsT1g7XhFgtdb3KVdnp9ZkmFt1gQ7V7E
qHKNV1/99ggYw3zCUV9O7yzMOGJtoFSYe0z4JEMG69YMYqoiP1GALFrrbBquYOao
TFYCA3mYDRFEn5Quhfdn79q5rEddhccrxlA0QpBXNWB9V2pQOxxi/a++35tfYYTz
cQbPs7UjXECcfW/UuDZ+UlUm9/bgFshQS2x89VyG0x8b7kQg
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org