Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ZmB3MA5Wz4qvTNXI3g2MyONGXuA.roa
File: ZmB3MA5Wz4qvTNXI3g2MyONGXuA.roa (raw, json)
Hash identifier: LO9W+eL+tBLnq8Cnr6VP44/NvyKVn51Ky07+pUqe3PY=
Subject key identifier: 66:60:77:30:0E:56:CF:8A:AF:4C:D5:C8:DE:0D:8C:C8:E3:46:5E:E0
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C7E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ZmB3MA5Wz4qvTNXI3g2MyONGXuA.roa
Signing time: Wed 29 Sep 2021 02:51:20 +0000
ROA not before: Wed 29 Sep 2021 02:51:20 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131660
IP address blocks: 2001:b000:591::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3198 (0xc7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:20 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=666077300E56CF8AAF4CD5C8DE0D8CC8E3465EE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2e:6d:12:14:2d:26:34:3a:8f:b7:24:fb:94:
ab:db:78:c6:d6:e5:24:c1:64:56:f0:42:ad:2a:77:
f3:4c:0b:b0:71:99:50:af:fa:3c:72:8a:30:81:3b:
df:30:73:5e:1b:73:17:2b:74:44:95:40:f1:43:00:
58:b2:d7:f2:ba:30:b4:a5:95:ab:49:2d:2c:49:d8:
12:87:76:d7:9b:aa:43:89:81:03:a8:1c:79:d5:d8:
dc:34:42:3f:11:7a:b2:3d:c5:99:20:00:fe:dc:63:
ca:0b:b6:35:0a:d5:43:5f:5a:a0:59:2f:a8:4d:2e:
d5:9b:53:aa:af:b2:fe:43:78:15:4f:84:8d:dc:1f:
02:67:fb:a2:16:3c:a3:38:a7:3e:6e:a6:ca:da:95:
64:bc:26:67:1f:80:ba:a2:b7:db:fe:c5:72:e7:f3:
c0:1b:53:54:3d:ed:4b:ab:27:3f:b8:5e:5b:15:3f:
df:b0:bb:ce:d7:73:8b:77:05:e1:e8:1b:c1:05:04:
f6:36:a6:5d:73:f4:89:a4:82:97:c1:2d:bd:2d:57:
ad:4b:8d:b7:0d:29:31:de:d6:6b:c0:05:9c:73:7c:
b2:8f:a9:10:33:2a:ef:c1:01:44:cc:4f:65:ad:98:
ed:25:d2:32:c7:ff:ae:63:58:94:1f:4a:76:3c:56:
31:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:60:77:30:0E:56:CF:8A:AF:4C:D5:C8:DE:0D:8C:C8:E3:46:5E:E0
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ZmB3MA5Wz4qvTNXI3g2MyONGXuA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:591::/48
Signature Algorithm: sha256WithRSAEncryption
37:e8:87:5a:ac:c0:7c:f8:27:7e:3f:04:5a:3a:9d:95:2b:8a:
15:88:f0:37:12:8f:5f:30:58:62:04:c2:a6:fc:e5:ef:b9:2a:
30:23:5f:7d:61:e4:96:cc:66:b5:c8:50:eb:59:dd:2a:2f:43:
8e:fc:16:a4:b6:3b:1e:70:3c:51:7d:71:70:04:ad:f5:05:86:
f8:61:9d:91:55:9c:86:f2:26:92:67:9d:4c:79:ec:3d:bb:fa:
91:69:58:34:b3:55:af:04:a4:5a:aa:aa:2c:6e:91:cb:f0:d9:
49:6e:6c:54:7a:44:07:2a:5a:42:d8:ea:d0:53:b2:37:89:73:
af:09:14:c6:8d:2f:13:55:59:93:23:61:11:ab:18:49:23:43:
68:7d:23:3e:5f:70:57:60:25:64:5e:af:43:71:14:ee:9b:b1:
b2:74:5c:65:53:e9:f5:80:4d:2d:dd:1d:b6:b2:60:1b:68:ad:
84:7a:78:1a:67:d2:df:0e:e6:78:1d:86:ba:71:fc:b6:a1:99:
65:14:a6:43:82:71:51:b2:55:ca:2d:38:95:9a:89:0f:2a:47:
eb:91:68:2f:a0:7e:9c:54:8b:bc:cc:75:91:e4:0a:f3:0b:fe:
91:82:e8:10:79:9d:07:e0:81:66:d6:0b:63:b2:a5:91:7a:f1:
aa:e8:a0:42
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICDH4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTA5Mjkw
MjUxMjBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDY2NjA3NzMwMEU1NkNG
OEFBRjRDRDVDOERFMEQ4Q0M4RTM0NjVFRTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDPLm0SFC0mNDqPtyT7lKvbeMbW5STBZFbwQq0qd/NMC7BxmVCv
+jxyijCBO98wc14bcxcrdESVQPFDAFiy1/K6MLSllatJLSxJ2BKHdtebqkOJgQOo
HHnV2Nw0Qj8RerI9xZkgAP7cY8oLtjUK1UNfWqBZL6hNLtWbU6qvsv5DeBVPhI3c
HwJn+6IWPKM4pz5upsralWS8JmcfgLqit9v+xXLn88AbU1Q97UurJz+4XlsVP9+w
u87Xc4t3BeHoG8EFBPY2pl1z9ImkgpfBLb0tV61LjbcNKTHe1mvABZxzfLKPqRAz
Ku/BAUTMT2WtmO0l0jLH/65jWJQfSnY8VjElAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUZmB3MA5Wz4qvTNXI3g2MyONGXuAwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9abUIzTUE1V3o0cXZUTlhJM2cy
TXlPTkdYdUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw
AAWRMA0GCSqGSIb3DQEBCwUAA4IBAQA36IdarMB8+Cd+PwRaOp2VK4oViPA3Eo9f
MFhiBMKm/OXvuSowI199YeSWzGa1yFDrWd0qL0OO/BaktjsecDxRfXFwBK31BYb4
YZ2RVZyG8iaSZ51Meew9u/qRaVg0s1WvBKRaqqosbpHL8NlJbmxUekQHKlpC2OrQ
U7I3iXOvCRTGjS8TVVmTI2ERqxhJI0NofSM+X3BXYCVkXq9DcRTum7GydFxlU+n1
gE0t3R22smAbaK2EengaZ9LfDuZ4HYa6cfy2oZllFKZDgnFRslXKLTiVmokPKkfr
kWgvoH6cVIu8zHWR5ArzC/6RgugQeZ0H4IFm1gtjsqWRevGq6KBC
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org