Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/_vdkEOhkGc7KMmt9QoPhl-DIQeM.roa
File: _vdkEOhkGc7KMmt9QoPhl-DIQeM.roa (raw, json)
Hash identifier: P6wugG5EdL7kD84uUB5WgY37vIRIFzvkXr5CKVDg96g=
Subject key identifier: FE:F7:64:10:E8:64:19:CE:CA:32:6B:7D:42:83:E1:97:E0:C8:41:E3
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 082A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_vdkEOhkGc7KMmt9QoPhl-DIQeM.roa
Signing time: Tue 29 Sep 2020 09:58:25 +0000
ROA not before: Tue 29 Sep 2020 09:58:25 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 3462
IP address blocks: 2001:b000::/21 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2090 (0x82a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 09:58:25 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FEF76410E86419CECA326B7D4283E197E0C841E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f2:dc:cf:20:97:4d:78:ff:a3:5e:29:4e:87:
8d:97:b3:17:8e:36:57:a7:e7:ad:14:8b:bf:12:fa:
3b:31:e6:99:93:2b:92:17:dc:d0:bb:6e:2d:b5:ce:
d6:67:e0:41:51:42:9c:e3:77:0f:a3:a1:d9:22:66:
ab:69:74:da:a3:52:12:91:9c:e0:8d:bd:ec:fb:2d:
a9:00:fb:64:01:7f:7b:5c:27:8f:01:41:a7:3f:2b:
bb:5b:af:bb:d4:dc:5f:9d:f9:de:d2:1e:9e:51:34:
03:96:10:e4:7e:64:79:6b:ba:bb:59:d9:d8:90:0d:
16:26:45:42:c6:be:f0:9e:0e:9d:30:01:3a:00:d8:
e0:69:7c:9c:3f:47:6d:9d:1a:2a:b1:69:f1:ef:60:
86:ed:0b:8a:e7:47:4c:95:c5:7a:c5:b9:d8:c1:a9:
dd:a5:e9:2c:b5:f0:a6:5d:28:89:36:af:6b:92:b7:
3f:80:3e:64:c4:bc:89:8f:4d:0d:6a:4b:6e:2b:bb:
cc:ff:43:c4:7e:2b:3a:65:74:dc:06:e7:8e:ce:87:
20:b8:8b:37:7f:e6:87:7f:c3:81:27:95:22:a0:58:
c5:db:ea:67:15:1c:0a:d1:79:ba:74:8d:28:28:91:
53:93:2d:c8:3b:e6:f2:28:6e:3e:9d:fd:09:9e:c8:
d8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F7:64:10:E8:64:19:CE:CA:32:6B:7D:42:83:E1:97:E0:C8:41:E3
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_vdkEOhkGc7KMmt9QoPhl-DIQeM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000::/21
Signature Algorithm: sha256WithRSAEncryption
17:8c:72:10:ac:68:0d:2e:1e:68:ee:6a:d0:49:27:24:0b:16:
52:ea:8d:9e:95:09:dd:ff:56:87:04:cf:cc:cf:2d:bf:ff:2c:
53:c3:54:63:89:a8:36:0a:ed:24:05:99:7e:6c:30:be:7f:d7:
df:20:6f:93:43:7d:23:6f:b4:75:f0:43:dd:43:9d:f1:97:42:
42:00:60:a0:c9:c0:9a:31:02:9f:b9:a6:74:97:a6:fa:94:f0:
8c:8a:29:b7:b6:b4:54:bd:a8:54:37:a6:50:39:7f:65:79:84:
c7:96:f2:34:c2:9a:41:45:1b:f9:6f:57:15:0a:eb:30:39:ed:
07:e0:e9:12:dc:c3:03:d7:97:d0:a9:a1:ce:a2:bf:79:6b:62:
ed:29:4d:9e:d1:ea:2b:ae:75:cc:20:13:53:69:51:6c:ea:e3:
35:00:78:25:10:ce:5a:e1:cb:a7:73:d0:54:cc:bb:95:f3:2f:
c8:9d:ad:9d:c9:e4:b4:cf:12:a2:5a:09:5c:fb:c4:15:3f:b2:
cd:a8:05:09:dc:37:8f:ad:d1:ee:fe:96:bd:3b:7d:8e:61:c4:
99:b3:f7:ed:fd:88:b5:fd:39:12:81:ac:58:4f:f7:91:e5:b6:
44:c1:f8:71:65:9e:27:20:5d:9e:39:aa:a5:68:d4:16:72:8d:
8a:e3:9f:97
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCCowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMDA5Mjkw
OTU4MjVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEZFRjc2NDEwRTg2NDE5
Q0VDQTMyNkI3RDQyODNFMTk3RTBDODQxRTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCz8tzPIJdNeP+jXilOh42XsxeONlen560Ui78S+jsx5pmTK5IX
3NC7bi21ztZn4EFRQpzjdw+jodkiZqtpdNqjUhKRnOCNvez7LakA+2QBf3tcJ48B
Qac/K7tbr7vU3F+d+d7SHp5RNAOWEOR+ZHlrurtZ2diQDRYmRULGvvCeDp0wAToA
2OBpfJw/R22dGiqxafHvYIbtC4rnR0yVxXrFudjBqd2l6Sy18KZdKIk2r2uStz+A
PmTEvImPTQ1qS24ru8z/Q8R+KzpldNwG547OhyC4izd/5od/w4EnlSKgWMXb6mcV
HArRebp0jSgokVOTLcg75vIobj6d/QmeyNgVAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU/vdkEOhkGc7KMmt9QoPhl+DIQeMwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9fdmRrRU9oa0djN0tNbXQ5UW9Q
aGwtRElRZU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAAjAGAwQDIAGw
MA0GCSqGSIb3DQEBCwUAA4IBAQAXjHIQrGgNLh5o7mrQSSckCxZS6o2elQnd/1aH
BM/Mzy2//yxTw1Rjiag2Cu0kBZl+bDC+f9ffIG+TQ30jb7R18EPdQ53xl0JCAGCg
ycCaMQKfuaZ0l6b6lPCMiim3trRUvahUN6ZQOX9leYTHlvI0wppBRRv5b1cVCusw
Oe0H4OkS3MMD15fQqaHOor95a2LtKU2e0eorrnXMIBNTaVFs6uM1AHglEM5a4cun
c9BUzLuV8y/Ina2dyeS0zxKiWglc+8QVP7LNqAUJ3DePrdHu/pa9O32OYcSZs/ft
/Yi1/TkSgaxYT/eR5bZEwfhxZZ4nIF2eOaqlaNQWco2K45+X
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org