Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/OBI7MmBLX8C7j4DDArfW6zgVUDc.roa
File: OBI7MmBLX8C7j4DDArfW6zgVUDc.roa (raw, json)
Hash identifier: lb1G5nviou/stEciNRyYEfZjy8JLMJIiY/n9NdfFmMA=
Subject key identifier: 38:12:3B:32:60:4B:5F:C0:BB:8F:80:C3:02:B7:D6:EB:38:15:50:37
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/OBI7MmBLX8C7j4DDArfW6zgVUDc.roa
Signing time: Thu 15 Sep 2022 02:48:38 +0000
ROA not before: Thu 15 Sep 2022 02:48:38 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 203.69.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:38 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=38123B32604B5FC0BB8F80C302B7D6EB38155037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:56:b8:fa:e8:d7:d8:f2:eb:f3:a9:9c:17:42:
a6:98:16:03:4c:90:5c:76:c8:aa:0d:41:ac:7a:f3:
10:7a:66:e0:c2:5c:81:38:9c:af:f7:1e:1b:10:77:
7b:ea:ad:c7:45:41:97:0b:a2:33:32:17:1a:ac:ae:
bb:06:4c:1b:24:26:f5:90:ec:e1:be:8b:d8:ea:16:
ac:18:90:be:ef:f8:5f:af:d6:45:4c:52:31:bf:78:
54:9d:ab:81:d0:cd:b4:78:54:31:3c:2c:93:01:24:
3e:f4:7c:d6:3a:15:d8:72:6f:ec:4f:08:1f:ae:01:
4c:b8:a6:e6:b4:89:14:f4:6c:bb:56:67:93:9b:d9:
da:d1:45:bd:64:97:06:c5:1d:76:a6:ca:54:99:86:
c7:7b:c4:bf:93:6e:4d:7a:00:9b:12:57:c6:81:e3:
5a:38:7c:9c:bf:8f:67:7a:90:d6:43:eb:a8:1e:4c:
5f:1e:f9:10:a1:a7:a2:b4:6d:80:ff:e5:a3:05:de:
eb:ae:a3:d3:1d:43:cb:b4:e5:8f:94:ca:6d:db:60:
87:22:26:76:78:a7:9c:c1:cd:77:17:54:c9:9c:c6:
0e:f0:2e:6b:5a:5b:4c:a7:ae:dc:d4:2c:38:ff:c9:
03:de:e1:ca:40:6d:e1:ab:c5:d7:a5:2e:3e:36:2d:
b0:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:12:3B:32:60:4B:5F:C0:BB:8F:80:C3:02:B7:D6:EB:38:15:50:37
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/OBI7MmBLX8C7j4DDArfW6zgVUDc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b8:83:8c:fd:42:26:21:cb:76:55:22:15:3e:a4:f3:f3:b7:a8:
b9:94:d1:b6:14:8a:0b:ee:84:c6:85:3b:43:30:13:ba:6c:52:
85:03:f4:b2:78:8a:70:e0:8b:9d:35:b0:36:b2:16:24:39:a2:
b2:8a:c9:01:45:fe:b3:fd:57:85:94:ae:64:a6:eb:f2:91:05:
24:60:df:78:7d:30:e1:c4:ac:c4:42:63:f8:9e:15:0a:64:39:
8b:eb:a0:b8:61:af:26:89:fa:5e:9a:86:f9:46:ff:06:c7:22:
51:59:29:9f:52:11:f0:4e:a9:2f:8d:5e:7c:0f:df:53:c4:4e:
a0:ef:bd:0f:6d:51:37:14:6b:e9:3f:64:96:cb:08:3e:dc:8e:
a1:15:b0:3b:36:1a:73:99:05:b0:d1:89:3c:77:d5:37:b1:24:
cc:2f:31:f9:37:e4:28:ac:b2:6e:13:c3:e7:65:e2:0f:e9:e7:
03:ee:2c:18:2a:bb:84:73:1c:27:00:dc:c8:95:20:87:be:64:
57:e5:98:97:3a:0e:77:e8:56:4b:a0:a5:98:f9:d3:33:18:f8:
9c:6f:e0:e3:c6:62:73:e8:6a:1a:03:c8:b3:c9:f4:76:26:fb:
e1:8b:a8:38:79:63:e1:d4:5e:de:79:43:f6:d4:85:c6:e4:a1:
9f:f2:fb:a3
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MzhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDM4MTIzQjMyNjA0QjVG
QzBCQjhGODBDMzAyQjdENkVCMzgxNTUwMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDWVrj66NfY8uvzqZwXQqaYFgNMkFx2yKoNQax68xB6ZuDCXIE4
nK/3HhsQd3vqrcdFQZcLojMyFxqsrrsGTBskJvWQ7OG+i9jqFqwYkL7v+F+v1kVM
UjG/eFSdq4HQzbR4VDE8LJMBJD70fNY6Fdhyb+xPCB+uAUy4pua0iRT0bLtWZ5Ob
2drRRb1klwbFHXamylSZhsd7xL+Tbk16AJsSV8aB41o4fJy/j2d6kNZD66geTF8e
+RChp6K0bYD/5aMF3uuuo9MdQ8u05Y+Uym3bYIciJnZ4p5zBzXcXVMmcxg7wLmta
W0ynrtzULDj/yQPe4cpAbeGrxdelLj42LbA3AgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUOBI7MmBLX8C7j4DDArfW6zgVUDcwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9PQkk3TW1CTFg4QzdqNEREQXJm
VzZ6Z1ZVRGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAy0Uw
DQYJKoZIhvcNAQELBQADggEBALiDjP1CJiHLdlUiFT6k8/O3qLmU0bYUigvuhMaF
O0MwE7psUoUD9LJ4inDgi501sDayFiQ5orKKyQFF/rP9V4WUrmSm6/KRBSRg33h9
MOHErMRCY/ieFQpkOYvroLhhryaJ+l6ahvlG/wbHIlFZKZ9SEfBOqS+NXnwP31PE
TqDvvQ9tUTcUa+k/ZJbLCD7cjqEVsDs2GnOZBbDRiTx31TexJMwvMfk35Cissm4T
w+dl4g/p5wPuLBgqu4RzHCcA3MiVIIe+ZFflmJc6DnfoVkugpZj50zMY+Jxv4OPG
YnPoahoDyLPJ9HYm++GLqDh5Y+HUXt55Q/bUhcbkoZ/y+6M=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org