Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/nzFVLtniHNx52whLv4SgD_oi4ww.roa
File: nzFVLtniHNx52whLv4SgD_oi4ww.roa (raw, json)
Hash identifier: KUE+0Frr6sfd6QuIb0y5J6zItDsUOWJSQVIpjnpWmrc=
Subject key identifier: 9F:31:55:2E:D9:E2:1C:DC:79:DB:08:4B:BF:84:A0:0F:FA:22:E3:0C
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0C21
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nzFVLtniHNx52whLv4SgD_oi4ww.roa
Signing time: Wed 29 Sep 2021 02:50:55 +0000
ROA not before: Wed 29 Sep 2021 02:50:55 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 210.71.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3105 (0xc21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 29 02:50:55 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9F31552ED9E21CDC79DB084BBF84A00FFA22E30C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ad:8c:5f:eb:1b:df:eb:89:9b:31:78:49:15:
49:e8:66:55:72:eb:12:36:d2:7d:9d:65:c1:44:91:
4a:35:aa:6c:56:ea:15:6d:21:a0:2b:b6:3f:1c:5f:
ee:25:c6:b3:66:6f:e8:96:a4:67:27:1f:e7:2a:64:
cc:f3:a0:e4:25:14:61:0b:16:54:c1:f4:fd:f6:08:
b9:57:10:bf:22:4c:df:80:6f:0e:48:3b:68:b5:68:
f4:e6:aa:90:6f:12:45:ad:5e:4d:dc:c3:eb:f1:6b:
51:4b:e1:79:82:6e:a4:70:39:08:80:ba:5a:ad:2d:
89:0b:ac:a0:45:28:ec:d7:63:2d:7f:25:b3:67:7a:
3e:51:0e:e8:9a:12:93:47:47:40:9d:c7:d7:ed:b5:
10:dc:81:fb:52:96:6e:65:1a:34:93:e8:66:b2:f1:
0a:42:ca:dc:36:b9:ae:e7:df:e8:44:03:b7:6f:10:
ec:a6:17:70:f0:f0:40:50:bd:1c:e2:8b:c0:92:7c:
63:13:5c:bf:9f:41:40:70:d5:31:00:82:a7:09:24:
de:2c:db:f8:ba:82:a7:4c:4e:97:5b:c6:c3:f2:b8:
a0:58:46:1b:a5:cf:79:59:54:f1:c3:e8:62:ce:13:
64:a1:31:3d:96:a8:d0:05:2e:c6:3c:27:80:c6:7b:
1d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:31:55:2E:D9:E2:1C:DC:79:DB:08:4B:BF:84:A0:0F:FA:22:E3:0C
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nzFVLtniHNx52whLv4SgD_oi4ww.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.71.128.0/17
Signature Algorithm: sha256WithRSAEncryption
1e:ec:80:c5:14:d2:bd:bd:6a:12:a4:1a:31:c1:fc:dd:3c:c7:
c6:77:09:7e:15:41:e4:ed:85:3e:17:46:de:4c:ce:d1:bc:35:
64:ed:ce:9f:a0:a8:b8:df:13:15:7c:49:94:34:02:2b:55:4a:
15:79:55:4a:ab:dd:7d:2d:d8:0c:1a:f5:3d:f8:f6:ab:74:a1:
f6:e7:6f:5c:48:8b:ab:9a:83:b2:7a:f1:c5:d4:73:1a:38:a5:
c2:c4:7e:d9:f2:a8:c1:f9:bd:64:e2:ec:02:10:da:0c:35:42:
1b:07:fd:b1:6d:4d:d0:da:3d:1d:ca:10:89:66:8f:3e:32:a7:
e0:7a:33:e6:e8:ea:b5:c4:ae:a4:24:21:92:0d:b1:3b:12:48:
69:89:bf:6f:a2:21:97:59:04:b1:02:5f:05:a2:e9:e7:73:ed:
dc:d1:57:19:da:9c:87:ed:a9:37:ed:53:20:6e:96:8e:dc:1f:
c9:3e:68:cf:81:b6:74:75:6d:4a:97:92:d6:e5:c8:a7:33:bd:
cf:bf:0a:fa:01:8a:14:b0:25:a6:3f:58:ae:7c:87:35:38:06:
ea:11:7a:9f:d5:52:d8:42:7d:29:3d:74:82:bd:9e:53:a7:ad:
cc:88:e3:79:d4:c5:a1:ef:68:ea:ed:18:c4:77:55:2f:32:49:
99:21:c6:51
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDCEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMTA5Mjkw
MjUwNTVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDlGMzE1NTJFRDlFMjFD
REM3OURCMDg0QkJGODRBMDBGRkEyMkUzMEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDkrYxf6xvf64mbMXhJFUnoZlVy6xI20n2dZcFEkUo1qmxW6hVt
IaArtj8cX+4lxrNmb+iWpGcnH+cqZMzzoOQlFGELFlTB9P32CLlXEL8iTN+Abw5I
O2i1aPTmqpBvEkWtXk3cw+vxa1FL4XmCbqRwOQiAulqtLYkLrKBFKOzXYy1/JbNn
ej5RDuiaEpNHR0Cdx9fttRDcgftSlm5lGjST6Gay8QpCytw2ua7n3+hEA7dvEOym
F3Dw8EBQvRzii8CSfGMTXL+fQUBw1TEAgqcJJN4s2/i6gqdMTpdbxsPyuKBYRhul
z3lZVPHD6GLOE2ShMT2WqNAFLsY8J4DGex2RAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUnzFVLtniHNx52whLv4SgD/oi4wwwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9uekZWTHRuaUhOeDUyd2hMdjRT
Z0Rfb2k0d3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQH0keA
MA0GCSqGSIb3DQEBCwUAA4IBAQAe7IDFFNK9vWoSpBoxwfzdPMfGdwl+FUHk7YU+
F0beTM7RvDVk7c6foKi43xMVfEmUNAIrVUoVeVVKq919LdgMGvU9+PardKH2529c
SIurmoOyevHF1HMaOKXCxH7Z8qjB+b1k4uwCENoMNUIbB/2xbU3Q2j0dyhCJZo8+
MqfgejPm6Oq1xK6kJCGSDbE7Ekhpib9voiGXWQSxAl8Founnc+3c0VcZ2pyH7ak3
7VMgbpaO3B/JPmjPgbZ0dW1Kl5LW5cinM73Pvwr6AYoUsCWmP1iufIc1OAbqEXqf
1VLYQn0pPXSCvZ5Tp63MiON51MWh72jq7RjEd1UvMkmZIcZR
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org