Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/d_pyIHkfdWbabFmbQ7e4Cr2Rk1k.roa
File: d_pyIHkfdWbabFmbQ7e4Cr2Rk1k.roa (raw, json)
Hash identifier: obkzmf2SpGC1gSdUrkTczqO7n75osTCCdDWBIOYsHK4=
Subject key identifier: 77:FA:72:20:79:1F:75:66:DA:6C:59:9B:43:B7:B8:0A:BD:91:93:59
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/d_pyIHkfdWbabFmbQ7e4Cr2Rk1k.roa
Signing time: Thu 15 Sep 2022 02:48:05 +0000
ROA not before: Thu 15 Sep 2022 02:48:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 218.164.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:05 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=77FA7220791F7566DA6C599B43B7B80ABD919359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:5e:93:7d:4b:83:c0:58:e7:cd:0e:47:df:ea:
63:3a:47:7d:f2:7e:f2:af:87:88:fc:b6:d8:40:40:
6b:bb:b5:16:0c:f4:3b:82:13:f0:e5:e7:4f:2e:0b:
ee:0b:01:78:13:6c:24:ba:c4:db:c5:d8:eb:1a:c2:
f5:72:d3:3b:7d:af:a7:59:ea:8e:97:73:ff:cc:54:
ee:46:9b:db:63:28:1c:d5:c2:eb:60:56:cd:ad:ca:
3e:08:cb:9b:bc:f6:dd:ab:cd:53:6d:2b:73:6f:0d:
d3:b5:6e:1d:83:42:fd:80:ed:9f:2b:1a:99:61:9f:
90:40:94:3e:88:e5:14:94:94:4f:cb:cb:9f:b4:fc:
70:bd:29:d4:07:f7:12:0e:14:b2:cb:9d:0b:2a:06:
df:37:88:01:4e:bd:95:98:c2:6d:32:da:b1:e4:60:
40:b9:9e:c4:41:56:d0:0b:f0:75:5d:fa:4e:ae:ce:
67:68:de:05:9b:73:d7:28:a2:94:f1:b7:32:59:ec:
22:4c:d8:00:f9:df:3d:14:04:24:32:f7:fb:6e:83:
b2:63:c4:0f:93:a4:a2:62:ef:78:11:13:f5:9b:1a:
bf:a5:19:6f:95:57:02:86:7c:e0:9e:6c:83:75:f2:
1b:f2:87:09:85:e0:11:06:31:28:3d:09:a6:dd:d5:
fd:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:FA:72:20:79:1F:75:66:DA:6C:59:9B:43:B7:B8:0A:BD:91:93:59
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/d_pyIHkfdWbabFmbQ7e4Cr2Rk1k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.164.0.0/15
Signature Algorithm: sha256WithRSAEncryption
2e:66:e7:f3:38:b3:80:ee:fa:37:ee:b8:cb:b6:83:2c:a5:30:
d8:cb:f4:e5:03:39:41:08:97:9c:71:d4:dd:e2:bf:35:d7:11:
0f:92:5f:79:91:87:c8:a7:48:e5:7d:39:c8:8c:6f:bc:b3:ce:
5b:14:7e:50:96:8c:66:0b:5d:7e:36:a4:37:6c:6b:f8:be:fe:
02:47:ca:81:01:6a:05:ee:4f:ee:40:d6:69:1a:97:62:96:7d:
be:19:46:a3:3c:1a:d4:4f:50:54:44:ec:65:ae:3f:b7:93:7e:
44:04:e6:19:02:d7:46:a7:3f:05:71:2d:bb:01:1a:fc:05:d1:
05:ad:53:f5:76:78:69:30:15:e8:eb:dc:9e:51:04:3f:9d:ef:
66:35:08:72:81:a6:cc:7f:d8:0b:b1:6f:a2:fe:2c:43:27:ce:
14:8a:44:53:1b:3e:66:e3:a8:fd:4e:73:87:9b:e6:2b:55:75:
86:f7:cc:43:fa:8e:d9:1f:4b:78:a5:55:af:8e:18:4b:63:49:
a9:e4:83:b8:0f:11:dd:6c:e6:b7:f5:f9:23:fe:9f:a8:1b:3a:
c4:83:a1:39:10:d6:35:7f:8c:2a:88:97:68:33:ce:10:9c:a0:
4b:0c:eb:a0:87:27:92:e8:88:40:b0:73:40:ae:65:f1:6b:bb:
4e:cf:e4:e1
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MDVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDc3RkE3MjIwNzkxRjc1
NjZEQTZDNTk5QjQzQjdCODBBQkQ5MTkzNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdXpN9S4PAWOfNDkff6mM6R33yfvKvh4j8tthAQGu7tRYM9DuC
E/Dl508uC+4LAXgTbCS6xNvF2OsawvVy0zt9r6dZ6o6Xc//MVO5Gm9tjKBzVwutg
Vs2tyj4Iy5u89t2rzVNtK3NvDdO1bh2DQv2A7Z8rGplhn5BAlD6I5RSUlE/Ly5+0
/HC9KdQH9xIOFLLLnQsqBt83iAFOvZWYwm0y2rHkYEC5nsRBVtAL8HVd+k6uzmdo
3gWbc9coopTxtzJZ7CJM2AD53z0UBCQy9/tug7JjxA+TpKJi73gRE/WbGr+lGW+V
VwKGfOCebIN18hvyhwmF4BEGMSg9Cabd1f3hAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUd/pyIHkfdWbabFmbQ7e4Cr2Rk1kwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9kX3B5SUhrZmRXYmFiRm1iUTdl
NENyMlJrMWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMB2qQw
DQYJKoZIhvcNAQELBQADggEBAC5m5/M4s4Du+jfuuMu2gyylMNjL9OUDOUEIl5xx
1N3ivzXXEQ+SX3mRh8inSOV9OciMb7yzzlsUflCWjGYLXX42pDdsa/i+/gJHyoEB
agXuT+5A1mkal2KWfb4ZRqM8GtRPUFRE7GWuP7eTfkQE5hkC10anPwVxLbsBGvwF
0QWtU/V2eGkwFejr3J5RBD+d72Y1CHKBpsx/2Auxb6L+LEMnzhSKRFMbPmbjqP1O
c4eb5itVdYb3zEP6jtkfS3ilVa+OGEtjSankg7gPEd1s5rf1+SP+n6gbOsSDoTkQ
1jV/jCqIl2gzzhCcoEsM66CHJ5LoiECwc0CuZfFru07P5OE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org