Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/lkvlCzsYEMq99kvnRZw5e1FMB2M.roa
File: lkvlCzsYEMq99kvnRZw5e1FMB2M.roa (raw, json)
Hash identifier: FoHtLYIXeku4BKjvQvu+EFFiv8AUSPX/DO0BhPOffZ0=
Subject key identifier: 96:4B:E5:0B:3B:18:10:CA:BD:F6:4B:E7:45:9C:39:7B:51:4C:07:63
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lkvlCzsYEMq99kvnRZw5e1FMB2M.roa
Signing time: Thu 15 Sep 2022 02:48:21 +0000
ROA not before: Thu 15 Sep 2022 02:48:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 137280
IP address blocks: 203.69.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3446 (0xd76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 15 02:48:21 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=964BE50B3B1810CABDF64BE7459C397B514C0763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:77:7b:e8:95:a0:bf:33:eb:09:c7:87:99:9e:
a8:b8:5f:6e:38:96:a3:4c:b3:57:81:59:bd:85:6c:
bf:6f:65:91:43:07:ea:a8:25:01:49:27:e4:7d:8f:
f3:a7:1f:84:80:13:71:86:65:96:2a:84:83:8a:1e:
60:d8:96:d9:cc:6f:47:10:e6:3f:08:6d:20:81:87:
33:87:dd:bc:f8:0f:06:03:26:4b:fe:66:49:f4:5f:
ea:99:5d:d8:6a:b1:6a:e8:e1:1d:88:98:7d:96:9c:
06:d5:2a:04:d6:17:51:43:c6:d2:d0:8a:42:9a:97:
2e:7b:6e:ba:6d:db:61:b9:3a:af:9c:69:bd:a6:69:
54:c5:d1:71:27:7f:d2:b0:32:be:45:bf:b5:2c:d1:
41:6b:29:17:6f:38:8b:7d:05:1d:82:29:40:ea:f8:
a1:81:01:73:ca:e7:dd:29:fa:59:98:f0:c8:d7:1e:
b0:09:f1:38:06:81:41:07:2c:a1:a9:ff:b8:c9:f6:
13:27:2a:83:cc:92:b3:20:b3:f9:3a:2c:bc:13:ab:
40:f2:69:34:20:c7:f5:bf:91:b0:1c:9f:38:30:1f:
9a:2a:95:31:2e:48:6d:9f:d0:92:6b:95:3c:a7:4c:
c4:91:ce:c9:6c:85:82:f3:ef:93:ca:5c:3d:76:7f:
7e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:4B:E5:0B:3B:18:10:CA:BD:F6:4B:E7:45:9C:39:7B:51:4C:07:63
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lkvlCzsYEMq99kvnRZw5e1FMB2M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.19.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:3d:6f:08:6a:74:26:18:4e:6a:01:34:8d:e5:e7:17:3b:ae:
64:76:ea:7e:3f:4a:a7:c4:ed:25:d0:73:cb:6c:a2:19:0c:06:
f7:1b:95:ca:e7:a5:e3:85:d6:9b:63:4a:63:5e:18:66:f2:b9:
9d:db:62:9a:5d:37:37:82:bf:ea:37:14:a3:0f:af:a9:ff:97:
b6:a8:d5:5b:bf:eb:15:6c:bc:8a:44:cd:17:05:61:eb:16:5a:
17:bc:cc:d7:73:66:75:a1:a6:7f:5a:54:53:1d:11:19:94:ae:
4b:45:fa:04:b1:cd:51:5a:dd:7f:af:60:a9:36:ad:ca:e9:00:
ff:dd:ad:30:3c:58:4a:22:ce:d1:57:bf:14:7d:9e:78:b0:2a:
ed:e7:08:8c:e0:bb:d2:f9:dd:bb:22:95:bc:3c:4b:02:1b:fb:
37:04:84:ee:3d:7a:fc:ba:e1:6c:21:b8:71:da:c0:24:7f:fb:
b8:de:19:14:75:3e:fb:6b:b4:bf:23:31:5b:b3:a6:26:0d:f0:
7e:32:25:a5:02:4e:d4:7e:f2:ef:c1:98:ab:e8:a3:cb:9d:9d:
c0:50:53:a5:e3:26:c6:50:80:b3:b1:bd:13:e9:19:87:43:38:
68:b2:ec:e3:90:ea:c7:4a:c8:d9:71:55:88:fc:e0:bc:c0:73:
ea:f8:b8:51
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MjFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDk2NEJFNTBCM0IxODEw
Q0FCREY2NEJFNzQ1OUMzOTdCNTE0QzA3NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNd3volaC/M+sJx4eZnqi4X244lqNMs1eBWb2FbL9vZZFDB+qo
JQFJJ+R9j/OnH4SAE3GGZZYqhIOKHmDYltnMb0cQ5j8IbSCBhzOH3bz4DwYDJkv+
Zkn0X+qZXdhqsWro4R2ImH2WnAbVKgTWF1FDxtLQikKaly57brpt22G5Oq+cab2m
aVTF0XEnf9KwMr5Fv7Us0UFrKRdvOIt9BR2CKUDq+KGBAXPK590p+lmY8MjXHrAJ
8TgGgUEHLKGp/7jJ9hMnKoPMkrMgs/k6LLwTq0DyaTQgx/W/kbAcnzgwH5oqlTEu
SG2f0JJrlTynTMSRzslshYLz75PKXD12f37JAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUlkvlCzsYEMq99kvnRZw5e1FMB2MwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9sa3ZsQ3pzWUVNcTk5a3ZuUlp3
NWUxRk1CMk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0UT
MA0GCSqGSIb3DQEBCwUAA4IBAQDKPW8IanQmGE5qATSN5ecXO65kdup+P0qnxO0l
0HPLbKIZDAb3G5XK56XjhdabY0pjXhhm8rmd22KaXTc3gr/qNxSjD6+p/5e2qNVb
v+sVbLyKRM0XBWHrFloXvMzXc2Z1oaZ/WlRTHREZlK5LRfoEsc1RWt1/r2CpNq3K
6QD/3a0wPFhKIs7RV78UfZ54sCrt5wiM4LvS+d27IpW8PEsCG/s3BITuPXr8uuFs
Ibhx2sAkf/u43hkUdT77a7S/IzFbs6YmDfB+MiWlAk7UfvLvwZir6KPLnZ3AUFOl
4ybGUICzsb0T6RmHQzhosuzjkOrHSsjZcVWI/OC8wHPq+LhR
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org