Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/n2GBQ4uI3jC04xyW9hRCv1B8Hbo.roa
File: n2GBQ4uI3jC04xyW9hRCv1B8Hbo.roa (raw, json)
Hash identifier: foEJMrAiSlTwiztOrAFxzg2I+nowF0rPXatBpcrba3M=
Subject key identifier: 9F:61:81:43:8B:88:DE:30:B4:E3:1C:96:F6:14:42:BF:50:7C:1D:BA
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C6D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/n2GBQ4uI3jC04xyW9hRCv1B8Hbo.roa
Signing time: Wed 29 Sep 2021 02:51:15 +0000
ROA not before: Wed 29 Sep 2021 02:51:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9505
IP address blocks: 2001:b200::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3181 (0xc6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:51:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9F6181438B88DE30B4E31C96F61442BF507C1DBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:dd:2a:ac:5b:e1:3c:90:5d:e4:de:89:7a:58:
9c:23:07:99:1a:cd:62:2d:23:9d:26:7c:a8:c9:a5:
d8:cd:6f:25:75:e8:43:22:1e:86:b2:c0:b6:68:68:
3d:41:10:ae:4a:f7:a4:6a:64:17:51:8b:c7:e1:af:
fa:13:a9:23:7c:29:08:73:f1:88:42:38:b5:3b:55:
69:33:0f:c2:d7:11:40:13:7f:43:f1:0f:ba:cb:a5:
e9:72:8c:1b:73:c8:3d:f2:5b:5c:e9:b9:28:9b:77:
e0:ec:c0:f8:99:f7:12:9a:8b:6c:19:e0:71:a0:ab:
95:23:de:48:1c:5a:33:c7:bc:0f:d8:ce:81:8d:99:
5a:d8:e6:0d:9e:fb:db:c9:68:94:50:9a:fe:7b:4b:
ed:d2:1e:7e:48:2b:5c:d7:ec:25:28:8d:37:36:7b:
46:38:19:ca:43:73:4e:68:bc:ef:58:dd:93:49:10:
3b:4c:51:dd:17:23:0c:85:dd:b2:40:10:75:07:ac:
92:45:f9:98:3f:5d:39:93:f6:94:fc:57:16:c3:fe:
39:d3:00:97:60:5c:1c:ac:5a:78:b8:7c:1c:86:89:
a3:59:90:1f:d7:12:a6:2c:e2:c5:0b:a5:b4:7e:01:
aa:bf:6e:47:b0:50:b3:41:95:5a:6b:d4:63:24:16:
8f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:61:81:43:8B:88:DE:30:B4:E3:1C:96:F6:14:42:BF:50:7C:1D:BA
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/n2GBQ4uI3jC04xyW9hRCv1B8Hbo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b200::/32
Signature Algorithm: sha256WithRSAEncryption
65:37:e9:e2:93:d4:2d:a6:d3:1f:4d:4d:23:a0:da:e1:f6:fe:
a6:4a:f5:9e:0e:eb:d7:a2:da:bf:1e:5b:02:9f:21:5e:ed:9a:
38:37:66:fe:1d:c3:a3:38:a5:93:b4:c6:c8:cb:33:98:22:8c:
38:a6:9d:f3:78:51:79:f9:d3:94:f8:33:31:f5:6b:41:c9:43:
93:00:1a:a6:a5:54:88:2e:df:12:7c:08:f3:a3:84:82:0d:fc:
eb:0f:9f:57:f0:f9:3a:3b:07:34:a8:de:56:cc:39:b9:8f:50:
9f:5e:dd:06:0a:89:4e:a4:5a:78:bf:85:7d:42:44:f4:dc:af:
b5:3b:12:a2:75:12:a6:36:7e:de:f3:00:98:12:ff:6a:e5:40:
cd:06:8a:eb:6f:10:0d:76:d8:58:db:00:87:93:8c:2e:42:1e:
38:b0:bc:39:2a:78:76:6b:cb:fc:b5:3f:11:af:18:85:3a:30:
cd:a6:be:9c:cf:53:18:b4:fe:7c:87:0c:47:23:e9:0b:c2:eb:
3e:bc:8c:6d:ae:f8:5f:b7:4e:4b:79:4e:3b:59:5a:67:82:92:
12:e3:20:13:30:8c:d0:95:30:44:51:ce:ef:70:69:61:a9:1c:
ff:b0:4b:42:62:7f:99:44:1e:a3:ac:45:2a:1a:2e:b7:6b:07:
07:f9:b3:9b
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICDG0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTA5Mjkw
MjUxMTVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDlGNjE4MTQzOEI4OERF
MzBCNEUzMUM5NkY2MTQ0MkJGNTA3QzFEQkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDd3SqsW+E8kF3k3ol6WJwjB5kazWItI50mfKjJpdjNbyV16EMi
HoaywLZoaD1BEK5K96RqZBdRi8fhr/oTqSN8KQhz8YhCOLU7VWkzD8LXEUATf0Px
D7rLpelyjBtzyD3yW1zpuSibd+DswPiZ9xKai2wZ4HGgq5Uj3kgcWjPHvA/YzoGN
mVrY5g2e+9vJaJRQmv57S+3SHn5IK1zX7CUojTc2e0Y4GcpDc05ovO9Y3ZNJEDtM
Ud0XIwyF3bJAEHUHrJJF+Zg/XTmT9pT8VxbD/jnTAJdgXBysWni4fByGiaNZkB/X
EqYs4sULpbR+Aaq/bkewULNBlVpr1GMkFo+dAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUn2GBQ4uI3jC04xyW9hRCv1B8HbowHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9uMkdCUTR1STNqQzA0eHlXOWhS
Q3YxQjhIYm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAGy
ADANBgkqhkiG9w0BAQsFAAOCAQEAZTfp4pPULabTH01NI6Da4fb+pkr1ng7r16La
vx5bAp8hXu2aODdm/h3Dozilk7TGyMszmCKMOKad83hRefnTlPgzMfVrQclDkwAa
pqVUiC7fEnwI86OEgg386w+fV/D5OjsHNKjeVsw5uY9Qn17dBgqJTqRaeL+FfUJE
9NyvtTsSonUSpjZ+3vMAmBL/auVAzQaK628QDXbYWNsAh5OMLkIeOLC8OSp4dmvL
/LU/Ea8YhTowzaa+nM9TGLT+fIcMRyPpC8LrPryMba74X7dOS3lOO1laZ4KSEuMg
EzCM0JUwRFHO73BpYakc/7BLQmJ/mUQeo6xFKhout2sHB/mzmw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:09 2024 by rpki-client on console-ams.rpki-client.org