Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/USnPdq-DJoXgWv-yxDYrYZNMAvo.roa
File: USnPdq-DJoXgWv-yxDYrYZNMAvo.roa (raw, json)
Hash identifier: 2rbNoj4BTPKKjxkBFdcAFz+jRguSTKKZpaHd7lWTe24=
Subject key identifier: 51:29:CF:76:AF:83:26:85:E0:5A:FF:B2:C4:36:2B:61:93:4C:02:FA
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0834
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/USnPdq-DJoXgWv-yxDYrYZNMAvo.roa
Signing time: Tue 29 Sep 2020 09:58:28 +0000
ROA not before: Tue 29 Sep 2020 09:58:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 211.20.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2100 (0x834)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5129CF76AF832685E05AFFB2C4362B61934C02FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8f:6d:6f:44:e5:ec:b7:10:b0:a3:84:5a:81:
79:41:4c:bc:32:43:ba:65:3e:83:46:7f:e6:65:33:
67:e2:ab:f0:b2:d9:da:19:9d:09:44:75:2a:70:fc:
82:b6:d2:6d:af:53:f8:cf:3b:f8:eb:36:69:fc:14:
ca:dc:a6:cf:72:c7:6e:95:a0:67:e8:fa:3f:5a:45:
60:e2:34:3f:7d:79:3b:68:f0:5a:7c:75:d7:23:e0:
74:78:fb:a5:90:de:ae:03:a9:61:0b:0f:df:cf:6f:
43:80:5c:26:fb:b6:f5:08:a1:cb:1b:51:22:12:17:
f2:07:7c:27:03:a9:c9:5d:d2:db:bc:8a:11:c0:ae:
15:11:0c:ae:d8:52:44:55:4b:3e:3c:73:64:ae:9f:
a5:24:01:90:26:67:6a:a0:71:14:4f:43:6b:2b:4d:
d1:06:32:b8:b0:11:ba:fe:ee:4c:1e:18:10:60:68:
92:12:7a:6c:47:02:46:74:95:20:aa:73:c4:48:07:
59:81:e0:e6:02:74:46:b1:b8:c8:76:56:14:da:cd:
f7:d6:31:3e:db:2d:ca:91:c1:2c:96:c6:22:85:7e:
0a:87:ce:36:db:13:eb:83:e8:33:ed:ff:7f:05:bb:
d8:6d:95:87:0c:50:a3:e2:fe:bc:8f:e7:80:1f:d0:
9f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:29:CF:76:AF:83:26:85:E0:5A:FF:B2:C4:36:2B:61:93:4C:02:FA
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/USnPdq-DJoXgWv-yxDYrYZNMAvo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.20.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b2:a1:80:7d:59:f0:9f:10:ac:17:e6:06:a4:53:ba:0a:ca:00:
e1:11:39:95:b1:e8:56:d5:de:e9:10:c3:64:5d:61:64:d1:12:
08:52:f4:1a:f8:33:e9:5c:78:e8:65:4e:71:e0:d6:66:f4:89:
2a:2f:b9:f7:64:73:d4:29:fe:d2:ca:c0:93:cd:e0:ba:fd:26:
24:93:2e:44:5d:74:26:6a:58:b5:e3:e6:b9:9b:f5:aa:aa:49:
9a:98:55:30:55:44:c8:da:8d:59:b8:cc:0f:4c:c7:25:cc:06:
0e:40:ec:26:ce:81:a8:8e:7d:ae:27:c6:b5:d9:df:c3:2a:69:
fb:73:30:2d:27:94:a7:14:4e:b6:6c:27:f9:69:ff:80:9a:42:
5c:82:72:4c:e1:40:af:ef:06:00:d0:4d:1f:d4:92:4a:e9:3b:
10:73:dd:a6:a9:e8:03:8c:b6:40:1b:cf:a9:f1:db:8e:c6:1a:
34:17:74:d3:77:7b:61:0b:12:bc:b9:c5:c4:05:dc:4d:05:5e:
7d:54:78:7b:a7:01:dd:85:f6:8b:23:9e:b8:5d:78:b8:d0:44:
2e:22:16:c9:42:a1:d0:aa:5d:68:c9:1c:ee:3c:d7:c7:c1:a8:
a4:a4:84:90:8c:02:a6:c9:7f:8a:1b:18:ed:61:37:eb:79:bd:
b4:a1:ed:be
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICCDQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMDA5Mjkw
OTU4MjhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDUxMjlDRjc2QUY4MzI2
ODVFMDVBRkZCMkM0MzYyQjYxOTM0QzAyRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMj21vROXstxCwo4RagXlBTLwyQ7plPoNGf+ZlM2fiq/Cy2doZ
nQlEdSpw/IK20m2vU/jPO/jrNmn8FMrcps9yx26VoGfo+j9aRWDiND99eTto8Fp8
ddcj4HR4+6WQ3q4DqWELD9/Pb0OAXCb7tvUIocsbUSISF/IHfCcDqcld0tu8ihHA
rhURDK7YUkRVSz48c2Sun6UkAZAmZ2qgcRRPQ2srTdEGMriwEbr+7kweGBBgaJIS
emxHAkZ0lSCqc8RIB1mB4OYCdEaxuMh2VhTazffWMT7bLcqRwSyWxiKFfgqHzjbb
E+uD6DPt/38Fu9htlYcMUKPi/ryP54Af0J8pAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUUSnPdq+DJoXgWv+yxDYrYZNMAvowHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9VU25QZHEtREpvWGdXdi15eERZ
cllaTk1Bdm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0xQw
DQYJKoZIhvcNAQELBQADggEBALKhgH1Z8J8QrBfmBqRTugrKAOEROZWx6FbV3ukQ
w2RdYWTREghS9Br4M+lceOhlTnHg1mb0iSovufdkc9Qp/tLKwJPN4Lr9JiSTLkRd
dCZqWLXj5rmb9aqqSZqYVTBVRMjajVm4zA9MxyXMBg5A7CbOgaiOfa4nxrXZ38Mq
aftzMC0nlKcUTrZsJ/lp/4CaQlyCckzhQK/vBgDQTR/UkkrpOxBz3aap6AOMtkAb
z6nx247GGjQXdNN3e2ELEry5xcQF3E0FXn1UeHunAd2F9osjnrhdeLjQRC4iFslC
odCqXWjJHO4818fBqKSkhJCMAqbJf4obGO1hN+t5vbSh7b4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org