Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/kiAuTLMxj4PeiebRyOqsQqzCvSk.roa
File: kiAuTLMxj4PeiebRyOqsQqzCvSk.roa (raw, json)
Hash identifier: yUOkpeG1bnVCs4rltUqWlVQXUBTkNMW4lD+bJd+MKMs=
Subject key identifier: 92:20:2E:4C:B3:31:8F:83:DE:89:E6:D1:C8:EA:AC:42:AC:C2:BD:29
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kiAuTLMxj4PeiebRyOqsQqzCvSk.roa
Signing time: Thu 15 Sep 2022 02:48:24 +0000
ROA not before: Thu 15 Sep 2022 02:48:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 203.75.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:24 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=92202E4CB3318F83DE89E6D1C8EAAC42ACC2BD29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:70:1e:fc:10:72:ff:18:34:27:f3:10:5e:4b:
81:55:98:92:7e:dc:bc:31:d2:c5:84:4e:6d:ac:19:
d5:a0:ec:bb:1b:ea:47:05:e9:ed:28:d9:d0:08:a9:
47:d1:4f:b7:a7:2a:61:e7:2d:71:82:db:c7:6f:17:
bc:5b:f5:bd:35:a7:ca:d6:ac:26:2c:43:34:d2:73:
0a:83:b3:42:b7:c8:d4:a3:76:87:7c:1d:26:19:45:
01:45:2c:4c:da:ac:b2:0f:50:40:70:0b:ee:21:11:
89:00:50:f0:c6:59:9d:c3:da:80:6e:f3:75:e6:e6:
d5:4e:33:a1:d2:a3:28:ff:53:5a:59:0b:0b:ee:70:
64:d5:0b:48:d5:7d:4c:52:f6:fe:f2:af:10:fc:b2:
1c:d8:70:7c:52:c8:a0:80:88:7a:2d:1c:e6:d4:fa:
0a:7f:cd:09:b9:1b:bc:11:61:15:97:eb:ed:58:20:
a5:2b:59:6e:77:f8:d5:8d:01:1d:51:17:08:e0:0d:
bf:63:80:3f:8b:eb:cc:e7:a6:bc:4c:ea:8c:04:fa:
af:d6:29:2c:9b:32:c1:86:66:1b:db:43:e2:ef:a4:
77:fd:dd:e1:3a:16:dc:7c:76:19:ca:e1:90:cb:9a:
4d:29:c2:7d:d1:73:aa:e2:97:c9:f0:0a:f1:0c:63:
2a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:20:2E:4C:B3:31:8F:83:DE:89:E6:D1:C8:EA:AC:42:AC:C2:BD:29
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kiAuTLMxj4PeiebRyOqsQqzCvSk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4e:03:6c:83:7f:9a:4f:05:b2:22:43:4d:ec:45:eb:dd:2e:f0:
91:ac:75:57:35:6c:94:50:89:04:a8:90:4c:60:65:a7:cc:f4:
af:6c:22:53:98:89:94:24:21:2c:f9:21:5e:95:32:17:7b:ac:
59:d0:7b:21:7a:4e:ad:23:88:d3:5e:b1:49:95:6d:72:3a:80:
ff:ee:b6:d0:be:72:79:c8:88:84:ae:01:9b:d3:1b:9b:05:bd:
d5:6f:d1:4a:1c:85:b9:bd:f7:fd:1f:1b:af:6f:b4:7a:e3:ae:
27:65:ba:37:b1:f9:53:ab:a5:97:83:8f:97:cd:13:1f:82:f1:
9d:31:49:5f:df:5a:13:7c:ea:e1:48:a8:f7:5e:51:f2:26:cc:
63:09:83:9b:57:a7:fc:07:04:27:e7:e5:53:f7:af:ae:2d:2b:
27:d8:a6:32:3c:8c:da:16:53:89:bd:5f:a3:b6:87:b7:41:b3:
23:79:1c:37:cd:41:5f:71:65:6e:ea:08:ac:d2:62:72:23:10:
be:bb:30:47:ca:c6:36:d3:f9:54:91:59:26:f2:d4:68:3e:cd:
30:a7:b4:55:34:d7:ee:86:b4:b3:7d:70:c7:eb:2c:89:fd:78:
d1:52:1e:88:22:b3:55:34:51:4d:4a:e3:50:40:bb:0f:7a:e9:
d9:9a:b8:21
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MjRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDkyMjAyRTRDQjMzMThG
ODNERTg5RTZEMUM4RUFBQzQyQUNDMkJEMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCjcB78EHL/GDQn8xBeS4FVmJJ+3Lwx0sWETm2sGdWg7Lsb6kcF
6e0o2dAIqUfRT7enKmHnLXGC28dvF7xb9b01p8rWrCYsQzTScwqDs0K3yNSjdod8
HSYZRQFFLEzarLIPUEBwC+4hEYkAUPDGWZ3D2oBu83Xm5tVOM6HSoyj/U1pZCwvu
cGTVC0jVfUxS9v7yrxD8shzYcHxSyKCAiHotHObU+gp/zQm5G7wRYRWX6+1YIKUr
WW53+NWNAR1RFwjgDb9jgD+L68znprxM6owE+q/WKSybMsGGZhvbQ+LvpHf93eE6
Ftx8dhnK4ZDLmk0pwn3Rc6ril8nwCvEMYyqBAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUkiAuTLMxj4PeiebRyOqsQqzCvSkwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9raUF1VExNeGo0UGVpZWJSeU9x
c1FxekN2U2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAy0sw
DQYJKoZIhvcNAQELBQADggEBAE4DbIN/mk8FsiJDTexF690u8JGsdVc1bJRQiQSo
kExgZafM9K9sIlOYiZQkISz5IV6VMhd7rFnQeyF6Tq0jiNNesUmVbXI6gP/uttC+
cnnIiISuAZvTG5sFvdVv0Uochbm99/0fG69vtHrjridlujex+VOrpZeDj5fNEx+C
8Z0xSV/fWhN86uFIqPdeUfImzGMJg5tXp/wHBCfn5VP3r64tKyfYpjI8jNoWU4m9
X6O2h7dBsyN5HDfNQV9xZW7qCKzSYnIjEL67MEfKxjbT+VSRWSby1Gg+zTCntFU0
1+6GtLN9cMfrLIn9eNFSHogis1U0UU1K41BAuw966dmauCE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org