Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/U0xJvtLiV9lgRqZhanIs_aELFM8.roa
File: U0xJvtLiV9lgRqZhanIs_aELFM8.roa (raw, json)
Hash identifier: 8DMcCtASGtKjM3LU23G/AbPxjfHnFBcDOJap+mDf9GM=
Subject key identifier: 53:4C:49:BE:D2:E2:57:D9:60:46:A6:61:6A:72:2C:FD:A1:0B:14:CF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0xJvtLiV9lgRqZhanIs_aELFM8.roa
Signing time: Thu 15 Sep 2022 02:48:28 +0000
ROA not before: Thu 15 Sep 2022 02:48:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131660
IP address blocks: 2001:b000:59c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=534C49BED2E257D96046A6616A722CFDA10B14CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:d5:c1:4e:09:69:c3:5e:9f:dd:04:89:2c:56:
e7:1c:c1:3a:cf:f3:2f:8e:2e:a1:2a:f6:03:eb:e6:
3f:a0:75:2c:d7:c5:89:91:c2:09:f1:23:61:5d:60:
e2:56:fd:34:6b:03:76:90:32:3f:7a:55:73:a3:ee:
f2:d6:b6:c7:89:7d:16:6a:7c:fe:29:07:ab:5a:ea:
ea:0d:10:9a:20:28:80:04:69:27:64:ca:ec:2f:33:
44:67:69:79:69:40:ec:1e:da:92:ad:00:2f:dc:8b:
34:26:d0:d3:9d:47:9f:c7:f0:3f:b4:38:3b:87:8e:
f0:ab:f7:62:2e:da:13:cd:4d:d1:b0:43:51:ff:3c:
f0:56:92:28:38:88:05:8e:63:62:0c:ab:eb:44:98:
8c:d5:49:f0:c2:cd:d4:04:42:c0:96:0f:1d:32:f9:
4c:47:e9:51:89:53:38:7e:12:9b:36:6e:ca:81:14:
c8:1b:0a:9f:db:d4:f9:9f:6b:45:d9:6c:20:dd:12:
bb:6b:d8:f6:1b:cd:ed:fb:5f:5c:1b:b1:83:ec:d8:
ba:c1:54:66:51:93:b2:87:0b:c4:f2:ba:08:3c:c6:
be:e1:84:1a:f7:35:00:ed:21:9e:5a:1e:a3:34:ce:
40:7b:28:b2:89:8c:28:30:34:25:f6:50:f8:66:80:
ec:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:4C:49:BE:D2:E2:57:D9:60:46:A6:61:6A:72:2C:FD:A1:0B:14:CF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0xJvtLiV9lgRqZhanIs_aELFM8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:59c::/48
Signature Algorithm: sha256WithRSAEncryption
c8:17:93:92:cf:0c:91:01:99:af:52:af:a9:2c:70:e9:a6:1d:
83:a9:b9:a0:fc:53:cb:cb:05:0a:1c:bb:17:02:50:a8:9a:e6:
af:ee:11:5e:a2:56:dd:d3:8f:20:67:b6:8f:65:70:14:38:4e:
ee:61:20:17:b8:12:66:85:1d:e4:c9:da:ee:f0:09:30:65:66:
c1:1f:c7:53:ae:29:89:76:d4:37:77:9b:24:1a:13:3a:90:ce:
8f:20:31:eb:fd:7c:33:85:a8:7a:9f:c2:03:61:10:cb:98:93:
a4:c3:32:c1:dd:5e:d8:08:76:a1:53:7b:e8:f4:d8:ab:74:33:
fc:24:e6:96:d8:e4:50:db:7b:59:0d:47:dc:ff:30:d2:fb:a7:
a7:87:3f:c3:59:33:fc:b8:91:0d:8a:8d:26:7c:b1:45:0e:cb:
b8:38:9e:0c:d0:8b:cb:bc:08:47:f9:b3:93:e7:e2:35:4b:ed:
8e:7b:90:48:46:84:e6:e0:54:63:af:34:98:ba:be:41:32:44:
5e:8e:c7:d7:06:a3:04:bf:ba:45:6a:a6:f4:5d:7c:07:76:cc:
a3:d5:d6:f9:3a:6a:58:11:8d:40:81:19:26:cb:49:d6:1f:85:
1d:5a:fd:2f:00:6e:20:cd:e5:c7:a1:37:5d:27:c7:cc:be:37:
a8:2a:13:2e
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MjhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDUzNEM0OUJFRDJFMjU3
RDk2MDQ2QTY2MTZBNzIyQ0ZEQTEwQjE0Q0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDx1cFOCWnDXp/dBIksVuccwTrP8y+OLqEq9gPr5j+gdSzXxYmR
wgnxI2FdYOJW/TRrA3aQMj96VXOj7vLWtseJfRZqfP4pB6ta6uoNEJogKIAEaSdk
yuwvM0RnaXlpQOwe2pKtAC/cizQm0NOdR5/H8D+0ODuHjvCr92Iu2hPNTdGwQ1H/
PPBWkig4iAWOY2IMq+tEmIzVSfDCzdQEQsCWDx0y+UxH6VGJUzh+Eps2bsqBFMgb
Cp/b1Pmfa0XZbCDdErtr2PYbze37X1wbsYPs2LrBVGZRk7KHC8Tyugg8xr7hhBr3
NQDtIZ5aHqM0zkB7KLKJjCgwNCX2UPhmgOxbAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUU0xJvtLiV9lgRqZhanIs/aELFM8wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9VMHhKdnRMaVY5bGdScVpoYW5J
c19hRUxGTTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw
AAWcMA0GCSqGSIb3DQEBCwUAA4IBAQDIF5OSzwyRAZmvUq+pLHDpph2Dqbmg/FPL
ywUKHLsXAlComuav7hFeolbd048gZ7aPZXAUOE7uYSAXuBJmhR3kydru8AkwZWbB
H8dTrimJdtQ3d5skGhM6kM6PIDHr/Xwzhah6n8IDYRDLmJOkwzLB3V7YCHahU3vo
9NirdDP8JOaW2ORQ23tZDUfc/zDS+6enhz/DWTP8uJENio0mfLFFDsu4OJ4M0IvL
vAhH+bOT5+I1S+2Oe5BIRoTm4FRjrzSYur5BMkRejsfXBqMEv7pFaqb0XXwHdsyj
1db5OmpYEY1AgRkmy0nWH4UdWv0vAG4gzeXHoTddJ8fMvjeoKhMu
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org