Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/lrsWhga29VCuQS_FuHkB6e9TyYo.roa
File: lrsWhga29VCuQS_FuHkB6e9TyYo.roa (raw, json)
Hash identifier: t5Iki9QQtlivJ9eQh5SKg/fAyxFll04SMm3zPijKZWw=
Subject key identifier: 96:BB:16:86:06:B6:F5:50:AE:41:2F:C5:B8:79:01:E9:EF:53:C9:8A
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0AE7
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lrsWhga29VCuQS_FuHkB6e9TyYo.roa
Signing time: Sun 07 Feb 2021 11:40:56 +0000
ROA not before: Sun 07 Feb 2021 11:40:56 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 33717
IP address blocks: 220.128.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2791 (0xae7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 7 11:40:56 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=96BB168606B6F550AE412FC5B87901E9EF53C98A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:00:4c:c8:8b:d8:6a:4e:b1:c0:8e:9e:20:d8:
67:88:32:62:18:c5:81:a8:68:69:c0:af:b7:39:50:
60:84:d6:5d:53:6a:d5:7c:08:d9:99:30:7f:c1:c0:
ce:d6:4a:35:24:50:94:eb:9f:04:8e:40:7a:b2:40:
fb:a1:d3:48:ee:49:2a:98:c8:34:74:57:99:ff:00:
30:b2:55:48:45:da:e5:6e:45:38:8f:a1:28:7c:53:
84:c0:91:eb:b9:cf:2f:0f:c6:ac:fb:77:39:10:ae:
20:b4:72:16:75:b4:69:9b:f2:fd:e7:9c:4b:2e:87:
4e:09:83:5d:ba:b7:92:45:06:ac:10:24:5c:47:28:
e7:fc:90:f9:3e:be:ed:9b:4f:ba:08:a5:d2:be:91:
ca:43:20:28:d2:84:ad:a3:46:3a:18:6c:2a:5d:24:
3a:ab:71:df:b9:72:5a:3e:77:07:e8:c9:ab:75:d9:
9f:e8:37:c2:9c:c4:bf:39:c5:0d:6c:31:1e:88:bf:
9f:b3:bc:d5:55:fe:20:ae:50:b9:9e:dc:d4:91:dc:
23:0a:30:ac:b8:16:6e:2d:15:69:85:54:85:23:01:
89:36:4c:2c:b5:80:d1:b5:8a:cd:bf:ff:f5:bc:2e:
dc:72:c1:95:c8:55:94:ce:4e:d3:85:9a:e4:4f:6b:
3f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:BB:16:86:06:B6:F5:50:AE:41:2F:C5:B8:79:01:E9:EF:53:C9:8A
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lrsWhga29VCuQS_FuHkB6e9TyYo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.51.0/24
Signature Algorithm: sha256WithRSAEncryption
75:6b:bc:18:91:09:69:78:8b:d5:4d:39:04:b2:3e:04:db:84:
0f:db:12:75:82:26:47:97:29:0b:a6:c5:95:eb:a4:9b:14:a0:
87:ee:b5:eb:1d:a4:fe:45:2b:46:e0:46:a1:aa:55:e2:e1:16:
20:ac:72:69:5d:dd:99:a3:98:e5:fa:8a:91:b8:70:12:4f:6c:
3f:43:5a:bd:cc:c0:fb:ec:db:e2:a0:95:f5:8e:e6:81:e9:3d:
8b:82:e8:d8:8a:c7:eb:d4:72:e8:b2:39:4b:f6:80:29:26:5b:
53:af:c0:d3:a6:cc:18:88:a3:a1:28:c4:5a:c2:46:66:7b:48:
8e:21:83:0c:1a:98:d0:ad:f5:9a:fd:88:14:81:d6:20:c0:a7:
ac:31:9b:8f:1b:c0:43:9c:8b:26:47:d1:74:fd:b8:93:0e:d6:
c6:8d:f4:81:a8:d4:50:8c:d6:7b:5c:1c:53:39:3c:13:d6:88:
5f:2a:fb:17:af:4f:f1:a4:25:11:ab:f8:80:c1:42:8f:48:4f:
8b:05:d1:34:cf:29:46:c3:7e:ec:a3:ca:75:d8:6e:80:9b:ba:
73:4d:12:2d:89:f8:51:b1:25:90:36:c2:6e:4e:88:71:d6:50:
6f:4f:4e:7e:6d:87:54:8f:0f:a0:b6:2d:09:7f:98:84:cf:3f:
6a:e0:f6:1c
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICCucwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTAyMDcx
MTQwNTZaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDk2QkIxNjg2MDZCNkY1
NTBBRTQxMkZDNUI4NzkwMUU5RUY1M0M5OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCpAEzIi9hqTrHAjp4g2GeIMmIYxYGoaGnAr7c5UGCE1l1TatV8
CNmZMH/BwM7WSjUkUJTrnwSOQHqyQPuh00juSSqYyDR0V5n/ADCyVUhF2uVuRTiP
oSh8U4TAkeu5zy8Pxqz7dzkQriC0chZ1tGmb8v3nnEsuh04Jg126t5JFBqwQJFxH
KOf8kPk+vu2bT7oIpdK+kcpDICjShK2jRjoYbCpdJDqrcd+5clo+dwfoyat12Z/o
N8KcxL85xQ1sMR6Iv5+zvNVV/iCuULme3NSR3CMKMKy4Fm4tFWmFVIUjAYk2TCy1
gNG1is2///W8LtxywZXIVZTOTtOFmuRPaz+nAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUlrsWhga29VCuQS/FuHkB6e9TyYowHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9scnNXaGdhMjlWQ3VRU19GdUhr
QjZlOVR5WW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3IAz
MA0GCSqGSIb3DQEBCwUAA4IBAQB1a7wYkQlpeIvVTTkEsj4E24QP2xJ1giZHlykL
psWV66SbFKCH7rXrHaT+RStG4EahqlXi4RYgrHJpXd2Zo5jl+oqRuHAST2w/Q1q9
zMD77NvioJX1juaB6T2LgujYisfr1HLosjlL9oApJltTr8DTpswYiKOhKMRawkZm
e0iOIYMMGpjQrfWa/YgUgdYgwKesMZuPG8BDnIsmR9F0/biTDtbGjfSBqNRQjNZ7
XBxTOTwT1ohfKvsXr0/xpCURq/iAwUKPSE+LBdE0zylGw37so8p12G6Am7pzTRIt
ifhRsSWQNsJuTohx1lBvT05+bYdUjw+gti0Jf5iEzz9q4PYc
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org